2 * Copyright © 2008,2010 Intel Corporation
4 * Permission is hereby granted, free of charge, to any person obtaining a
5 * copy of this software and associated documentation files (the "Software"),
6 * to deal in the Software without restriction, including without limitation
7 * the rights to use, copy, modify, merge, publish, distribute, sublicense,
8 * and/or sell copies of the Software, and to permit persons to whom the
9 * Software is furnished to do so, subject to the following conditions:
11 * The above copyright notice and this permission notice (including the next
12 * paragraph) shall be included in all copies or substantial portions of the
15 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
16 * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
17 * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL
18 * THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
19 * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING
20 * FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS
24 * Eric Anholt <eric@anholt.net>
25 * Chris Wilson <chris@chris-wilson.co.uk>
30 #include <drm/i915_drm.h>
32 #include "i915_trace.h"
33 #include "intel_drv.h"
34 #include <linux/dma_remapping.h>
35 #include <linux/uaccess.h>
37 #define __EXEC_OBJECT_HAS_PIN (1<<31)
38 #define __EXEC_OBJECT_HAS_FENCE (1<<30)
39 #define __EXEC_OBJECT_NEEDS_MAP (1<<29)
40 #define __EXEC_OBJECT_NEEDS_BIAS (1<<28)
42 #define BATCH_OFFSET_BIAS (256*1024)
45 struct list_head vmas;
48 struct i915_vma *lut[0];
49 struct hlist_head buckets[0];
53 static struct eb_vmas *
54 eb_create(struct drm_i915_gem_execbuffer2 *args)
56 struct eb_vmas *eb = NULL;
58 if (args->flags & I915_EXEC_HANDLE_LUT) {
59 unsigned size = args->buffer_count;
60 size *= sizeof(struct i915_vma *);
61 size += sizeof(struct eb_vmas);
62 eb = kmalloc(size, GFP_TEMPORARY | __GFP_NOWARN | __GFP_NORETRY);
66 unsigned size = args->buffer_count;
67 unsigned count = PAGE_SIZE / sizeof(struct hlist_head) / 2;
68 BUILD_BUG_ON_NOT_POWER_OF_2(PAGE_SIZE / sizeof(struct hlist_head));
69 while (count > 2*size)
71 eb = kzalloc(count*sizeof(struct hlist_head) +
72 sizeof(struct eb_vmas),
79 eb->and = -args->buffer_count;
81 INIT_LIST_HEAD(&eb->vmas);
86 eb_reset(struct eb_vmas *eb)
89 memset(eb->buckets, 0, (eb->and+1)*sizeof(struct hlist_head));
93 eb_lookup_vmas(struct eb_vmas *eb,
94 struct drm_i915_gem_exec_object2 *exec,
95 const struct drm_i915_gem_execbuffer2 *args,
96 struct i915_address_space *vm,
97 struct drm_file *file)
99 struct drm_i915_gem_object *obj;
100 struct list_head objects;
103 INIT_LIST_HEAD(&objects);
104 spin_lock(&file->table_lock);
105 /* Grab a reference to the object and release the lock so we can lookup
106 * or create the VMA without using GFP_ATOMIC */
107 for (i = 0; i < args->buffer_count; i++) {
108 obj = to_intel_bo(idr_find(&file->object_idr, exec[i].handle));
110 spin_unlock(&file->table_lock);
111 DRM_DEBUG("Invalid object handle %d at index %d\n",
117 if (!list_empty(&obj->obj_exec_link)) {
118 spin_unlock(&file->table_lock);
119 DRM_DEBUG("Object %p [handle %d, index %d] appears more than once in object list\n",
120 obj, exec[i].handle, i);
125 drm_gem_object_reference(&obj->base);
126 list_add_tail(&obj->obj_exec_link, &objects);
128 spin_unlock(&file->table_lock);
131 while (!list_empty(&objects)) {
132 struct i915_vma *vma;
134 obj = list_first_entry(&objects,
135 struct drm_i915_gem_object,
139 * NOTE: We can leak any vmas created here when something fails
140 * later on. But that's no issue since vma_unbind can deal with
141 * vmas which are not actually bound. And since only
142 * lookup_or_create exists as an interface to get at the vma
143 * from the (obj, vm) we don't run the risk of creating
144 * duplicated vmas for the same vm.
146 vma = i915_gem_obj_lookup_or_create_vma(obj, vm);
148 DRM_DEBUG("Failed to lookup VMA\n");
153 /* Transfer ownership from the objects list to the vmas list. */
154 list_add_tail(&vma->exec_list, &eb->vmas);
155 list_del_init(&obj->obj_exec_link);
157 vma->exec_entry = &exec[i];
161 uint32_t handle = args->flags & I915_EXEC_HANDLE_LUT ? i : exec[i].handle;
162 vma->exec_handle = handle;
163 hlist_add_head(&vma->exec_node,
164 &eb->buckets[handle & eb->and]);
173 while (!list_empty(&objects)) {
174 obj = list_first_entry(&objects,
175 struct drm_i915_gem_object,
177 list_del_init(&obj->obj_exec_link);
178 drm_gem_object_unreference(&obj->base);
181 * Objects already transfered to the vmas list will be unreferenced by
188 static struct i915_vma *eb_get_vma(struct eb_vmas *eb, unsigned long handle)
191 if (handle >= -eb->and)
193 return eb->lut[handle];
195 struct hlist_head *head;
196 struct i915_vma *vma;
198 head = &eb->buckets[handle & eb->and];
199 hlist_for_each_entry(vma, head, exec_node) {
200 if (vma->exec_handle == handle)
208 i915_gem_execbuffer_unreserve_vma(struct i915_vma *vma)
210 struct drm_i915_gem_exec_object2 *entry;
211 struct drm_i915_gem_object *obj = vma->obj;
213 if (!drm_mm_node_allocated(&vma->node))
216 entry = vma->exec_entry;
218 if (entry->flags & __EXEC_OBJECT_HAS_FENCE)
219 i915_gem_object_unpin_fence(obj);
221 if (entry->flags & __EXEC_OBJECT_HAS_PIN)
224 entry->flags &= ~(__EXEC_OBJECT_HAS_FENCE | __EXEC_OBJECT_HAS_PIN);
227 static void eb_destroy(struct eb_vmas *eb)
229 while (!list_empty(&eb->vmas)) {
230 struct i915_vma *vma;
232 vma = list_first_entry(&eb->vmas,
235 list_del_init(&vma->exec_list);
236 i915_gem_execbuffer_unreserve_vma(vma);
237 drm_gem_object_unreference(&vma->obj->base);
242 static inline int use_cpu_reloc(struct drm_i915_gem_object *obj)
244 return (HAS_LLC(obj->base.dev) ||
245 obj->base.write_domain == I915_GEM_DOMAIN_CPU ||
246 obj->cache_level != I915_CACHE_NONE);
249 /* Used to convert any address to canonical form.
250 * Starting from gen8, some commands (e.g. STATE_BASE_ADDRESS,
251 * MI_LOAD_REGISTER_MEM and others, see Broadwell PRM Vol2a) require the
252 * addresses to be in a canonical form:
253 * "GraphicsAddress[63:48] are ignored by the HW and assumed to be in correct
254 * canonical form [63:48] == [47]."
256 #define GEN8_HIGH_ADDRESS_BIT 47
257 static inline uint64_t gen8_canonical_addr(uint64_t address)
259 return sign_extend64(address, GEN8_HIGH_ADDRESS_BIT);
262 static inline uint64_t gen8_noncanonical_addr(uint64_t address)
264 return address & ((1ULL << (GEN8_HIGH_ADDRESS_BIT + 1)) - 1);
267 static inline uint64_t
268 relocation_target(struct drm_i915_gem_relocation_entry *reloc,
269 uint64_t target_offset)
271 return gen8_canonical_addr((int)reloc->delta + target_offset);
275 relocate_entry_cpu(struct drm_i915_gem_object *obj,
276 struct drm_i915_gem_relocation_entry *reloc,
277 uint64_t target_offset)
279 struct drm_device *dev = obj->base.dev;
280 uint32_t page_offset = offset_in_page(reloc->offset);
281 uint64_t delta = relocation_target(reloc, target_offset);
285 ret = i915_gem_object_set_to_cpu_domain(obj, true);
289 vaddr = kmap_atomic(i915_gem_object_get_dirty_page(obj,
290 reloc->offset >> PAGE_SHIFT));
291 *(uint32_t *)(vaddr + page_offset) = lower_32_bits(delta);
293 if (INTEL_INFO(dev)->gen >= 8) {
294 page_offset = offset_in_page(page_offset + sizeof(uint32_t));
296 if (page_offset == 0) {
297 kunmap_atomic(vaddr);
298 vaddr = kmap_atomic(i915_gem_object_get_dirty_page(obj,
299 (reloc->offset + sizeof(uint32_t)) >> PAGE_SHIFT));
302 *(uint32_t *)(vaddr + page_offset) = upper_32_bits(delta);
305 kunmap_atomic(vaddr);
311 relocate_entry_gtt(struct drm_i915_gem_object *obj,
312 struct drm_i915_gem_relocation_entry *reloc,
313 uint64_t target_offset)
315 struct drm_device *dev = obj->base.dev;
316 struct drm_i915_private *dev_priv = dev->dev_private;
317 uint64_t delta = relocation_target(reloc, target_offset);
319 void __iomem *reloc_page;
322 ret = i915_gem_object_set_to_gtt_domain(obj, true);
326 ret = i915_gem_object_put_fence(obj);
330 /* Map the page containing the relocation we're going to perform. */
331 offset = i915_gem_obj_ggtt_offset(obj);
332 offset += reloc->offset;
333 reloc_page = io_mapping_map_atomic_wc(dev_priv->gtt.mappable,
335 iowrite32(lower_32_bits(delta), reloc_page + offset_in_page(offset));
337 if (INTEL_INFO(dev)->gen >= 8) {
338 offset += sizeof(uint32_t);
340 if (offset_in_page(offset) == 0) {
341 io_mapping_unmap_atomic(reloc_page);
343 io_mapping_map_atomic_wc(dev_priv->gtt.mappable,
347 iowrite32(upper_32_bits(delta),
348 reloc_page + offset_in_page(offset));
351 io_mapping_unmap_atomic(reloc_page);
357 clflush_write32(void *addr, uint32_t value)
359 /* This is not a fast path, so KISS. */
360 drm_clflush_virt_range(addr, sizeof(uint32_t));
361 *(uint32_t *)addr = value;
362 drm_clflush_virt_range(addr, sizeof(uint32_t));
366 relocate_entry_clflush(struct drm_i915_gem_object *obj,
367 struct drm_i915_gem_relocation_entry *reloc,
368 uint64_t target_offset)
370 struct drm_device *dev = obj->base.dev;
371 uint32_t page_offset = offset_in_page(reloc->offset);
372 uint64_t delta = relocation_target(reloc, target_offset);
376 ret = i915_gem_object_set_to_gtt_domain(obj, true);
380 vaddr = kmap_atomic(i915_gem_object_get_dirty_page(obj,
381 reloc->offset >> PAGE_SHIFT));
382 clflush_write32(vaddr + page_offset, lower_32_bits(delta));
384 if (INTEL_INFO(dev)->gen >= 8) {
385 page_offset = offset_in_page(page_offset + sizeof(uint32_t));
387 if (page_offset == 0) {
388 kunmap_atomic(vaddr);
389 vaddr = kmap_atomic(i915_gem_object_get_dirty_page(obj,
390 (reloc->offset + sizeof(uint32_t)) >> PAGE_SHIFT));
393 clflush_write32(vaddr + page_offset, upper_32_bits(delta));
396 kunmap_atomic(vaddr);
402 i915_gem_execbuffer_relocate_entry(struct drm_i915_gem_object *obj,
404 struct drm_i915_gem_relocation_entry *reloc)
406 struct drm_device *dev = obj->base.dev;
407 struct drm_gem_object *target_obj;
408 struct drm_i915_gem_object *target_i915_obj;
409 struct i915_vma *target_vma;
410 uint64_t target_offset;
413 /* we've already hold a reference to all valid objects */
414 target_vma = eb_get_vma(eb, reloc->target_handle);
415 if (unlikely(target_vma == NULL))
417 target_i915_obj = target_vma->obj;
418 target_obj = &target_vma->obj->base;
420 target_offset = gen8_canonical_addr(target_vma->node.start);
422 /* Sandybridge PPGTT errata: We need a global gtt mapping for MI and
423 * pipe_control writes because the gpu doesn't properly redirect them
424 * through the ppgtt for non_secure batchbuffers. */
425 if (unlikely(IS_GEN6(dev) &&
426 reloc->write_domain == I915_GEM_DOMAIN_INSTRUCTION)) {
427 ret = i915_vma_bind(target_vma, target_i915_obj->cache_level,
429 if (WARN_ONCE(ret, "Unexpected failure to bind target VMA!"))
433 /* Validate that the target is in a valid r/w GPU domain */
434 if (unlikely(reloc->write_domain & (reloc->write_domain - 1))) {
435 DRM_DEBUG("reloc with multiple write domains: "
436 "obj %p target %d offset %d "
437 "read %08x write %08x",
438 obj, reloc->target_handle,
441 reloc->write_domain);
444 if (unlikely((reloc->write_domain | reloc->read_domains)
445 & ~I915_GEM_GPU_DOMAINS)) {
446 DRM_DEBUG("reloc with read/write non-GPU domains: "
447 "obj %p target %d offset %d "
448 "read %08x write %08x",
449 obj, reloc->target_handle,
452 reloc->write_domain);
456 target_obj->pending_read_domains |= reloc->read_domains;
457 target_obj->pending_write_domain |= reloc->write_domain;
459 /* If the relocation already has the right value in it, no
460 * more work needs to be done.
462 if (target_offset == reloc->presumed_offset)
465 /* Check that the relocation address is valid... */
466 if (unlikely(reloc->offset >
467 obj->base.size - (INTEL_INFO(dev)->gen >= 8 ? 8 : 4))) {
468 DRM_DEBUG("Relocation beyond object bounds: "
469 "obj %p target %d offset %d size %d.\n",
470 obj, reloc->target_handle,
472 (int) obj->base.size);
475 if (unlikely(reloc->offset & 3)) {
476 DRM_DEBUG("Relocation not 4-byte aligned: "
477 "obj %p target %d offset %d.\n",
478 obj, reloc->target_handle,
479 (int) reloc->offset);
483 /* We can't wait for rendering with pagefaults disabled */
484 if (obj->active && pagefault_disabled())
487 if (use_cpu_reloc(obj))
488 ret = relocate_entry_cpu(obj, reloc, target_offset);
489 else if (obj->map_and_fenceable)
490 ret = relocate_entry_gtt(obj, reloc, target_offset);
491 else if (static_cpu_has(X86_FEATURE_CLFLUSH))
492 ret = relocate_entry_clflush(obj, reloc, target_offset);
494 WARN_ONCE(1, "Impossible case in relocation handling\n");
501 /* and update the user's relocation entry */
502 reloc->presumed_offset = target_offset;
508 i915_gem_execbuffer_relocate_vma(struct i915_vma *vma,
511 #define N_RELOC(x) ((x) / sizeof(struct drm_i915_gem_relocation_entry))
512 struct drm_i915_gem_relocation_entry stack_reloc[N_RELOC(512)];
513 struct drm_i915_gem_relocation_entry __user *user_relocs;
514 struct drm_i915_gem_exec_object2 *entry = vma->exec_entry;
517 user_relocs = u64_to_user_ptr(entry->relocs_ptr);
519 remain = entry->relocation_count;
521 struct drm_i915_gem_relocation_entry *r = stack_reloc;
523 if (count > ARRAY_SIZE(stack_reloc))
524 count = ARRAY_SIZE(stack_reloc);
527 if (__copy_from_user_inatomic(r, user_relocs, count*sizeof(r[0])))
531 u64 offset = r->presumed_offset;
533 ret = i915_gem_execbuffer_relocate_entry(vma->obj, eb, r);
537 if (r->presumed_offset != offset &&
538 __put_user(r->presumed_offset, &user_relocs->presumed_offset)) {
552 i915_gem_execbuffer_relocate_vma_slow(struct i915_vma *vma,
554 struct drm_i915_gem_relocation_entry *relocs)
556 const struct drm_i915_gem_exec_object2 *entry = vma->exec_entry;
559 for (i = 0; i < entry->relocation_count; i++) {
560 ret = i915_gem_execbuffer_relocate_entry(vma->obj, eb, &relocs[i]);
569 i915_gem_execbuffer_relocate(struct eb_vmas *eb)
571 struct i915_vma *vma;
574 /* This is the fast path and we cannot handle a pagefault whilst
575 * holding the struct mutex lest the user pass in the relocations
576 * contained within a mmaped bo. For in such a case we, the page
577 * fault handler would call i915_gem_fault() and we would try to
578 * acquire the struct mutex again. Obviously this is bad and so
579 * lockdep complains vehemently.
582 list_for_each_entry(vma, &eb->vmas, exec_list) {
583 ret = i915_gem_execbuffer_relocate_vma(vma, eb);
592 static bool only_mappable_for_reloc(unsigned int flags)
594 return (flags & (EXEC_OBJECT_NEEDS_FENCE | __EXEC_OBJECT_NEEDS_MAP)) ==
595 __EXEC_OBJECT_NEEDS_MAP;
599 i915_gem_execbuffer_reserve_vma(struct i915_vma *vma,
600 struct intel_engine_cs *ring,
603 struct drm_i915_gem_object *obj = vma->obj;
604 struct drm_i915_gem_exec_object2 *entry = vma->exec_entry;
609 if (entry->flags & EXEC_OBJECT_NEEDS_GTT)
612 if (!drm_mm_node_allocated(&vma->node)) {
613 /* Wa32bitGeneralStateOffset & Wa32bitInstructionBaseOffset,
614 * limit address to the first 4GBs for unflagged objects.
616 if ((entry->flags & EXEC_OBJECT_SUPPORTS_48B_ADDRESS) == 0)
617 flags |= PIN_ZONE_4G;
618 if (entry->flags & __EXEC_OBJECT_NEEDS_MAP)
619 flags |= PIN_GLOBAL | PIN_MAPPABLE;
620 if (entry->flags & __EXEC_OBJECT_NEEDS_BIAS)
621 flags |= BATCH_OFFSET_BIAS | PIN_OFFSET_BIAS;
622 if (entry->flags & EXEC_OBJECT_PINNED)
623 flags |= entry->offset | PIN_OFFSET_FIXED;
624 if ((flags & PIN_MAPPABLE) == 0)
628 ret = i915_gem_object_pin(obj, vma->vm, entry->alignment, flags);
629 if ((ret == -ENOSPC || ret == -E2BIG) &&
630 only_mappable_for_reloc(entry->flags))
631 ret = i915_gem_object_pin(obj, vma->vm,
633 flags & ~PIN_MAPPABLE);
637 entry->flags |= __EXEC_OBJECT_HAS_PIN;
639 if (entry->flags & EXEC_OBJECT_NEEDS_FENCE) {
640 ret = i915_gem_object_get_fence(obj);
644 if (i915_gem_object_pin_fence(obj))
645 entry->flags |= __EXEC_OBJECT_HAS_FENCE;
648 if (entry->offset != vma->node.start) {
649 entry->offset = vma->node.start;
653 if (entry->flags & EXEC_OBJECT_WRITE) {
654 obj->base.pending_read_domains = I915_GEM_DOMAIN_RENDER;
655 obj->base.pending_write_domain = I915_GEM_DOMAIN_RENDER;
662 need_reloc_mappable(struct i915_vma *vma)
664 struct drm_i915_gem_exec_object2 *entry = vma->exec_entry;
666 if (entry->relocation_count == 0)
672 /* See also use_cpu_reloc() */
673 if (HAS_LLC(vma->obj->base.dev))
676 if (vma->obj->base.write_domain == I915_GEM_DOMAIN_CPU)
683 eb_vma_misplaced(struct i915_vma *vma)
685 struct drm_i915_gem_exec_object2 *entry = vma->exec_entry;
686 struct drm_i915_gem_object *obj = vma->obj;
688 WARN_ON(entry->flags & __EXEC_OBJECT_NEEDS_MAP && !vma->is_ggtt);
690 if (entry->alignment &&
691 vma->node.start & (entry->alignment - 1))
694 if (entry->flags & EXEC_OBJECT_PINNED &&
695 vma->node.start != entry->offset)
698 if (entry->flags & __EXEC_OBJECT_NEEDS_BIAS &&
699 vma->node.start < BATCH_OFFSET_BIAS)
702 /* avoid costly ping-pong once a batch bo ended up non-mappable */
703 if (entry->flags & __EXEC_OBJECT_NEEDS_MAP && !obj->map_and_fenceable)
704 return !only_mappable_for_reloc(entry->flags);
706 if ((entry->flags & EXEC_OBJECT_SUPPORTS_48B_ADDRESS) == 0 &&
707 (vma->node.start + vma->node.size - 1) >> 32)
714 i915_gem_execbuffer_reserve(struct intel_engine_cs *ring,
715 struct list_head *vmas,
716 struct intel_context *ctx,
719 struct drm_i915_gem_object *obj;
720 struct i915_vma *vma;
721 struct i915_address_space *vm;
722 struct list_head ordered_vmas;
723 struct list_head pinned_vmas;
724 bool has_fenced_gpu_access = INTEL_INFO(ring->dev)->gen < 4;
727 i915_gem_retire_requests_ring(ring);
729 vm = list_first_entry(vmas, struct i915_vma, exec_list)->vm;
731 INIT_LIST_HEAD(&ordered_vmas);
732 INIT_LIST_HEAD(&pinned_vmas);
733 while (!list_empty(vmas)) {
734 struct drm_i915_gem_exec_object2 *entry;
735 bool need_fence, need_mappable;
737 vma = list_first_entry(vmas, struct i915_vma, exec_list);
739 entry = vma->exec_entry;
741 if (ctx->flags & CONTEXT_NO_ZEROMAP)
742 entry->flags |= __EXEC_OBJECT_NEEDS_BIAS;
744 if (!has_fenced_gpu_access)
745 entry->flags &= ~EXEC_OBJECT_NEEDS_FENCE;
747 entry->flags & EXEC_OBJECT_NEEDS_FENCE &&
748 obj->tiling_mode != I915_TILING_NONE;
749 need_mappable = need_fence || need_reloc_mappable(vma);
751 if (entry->flags & EXEC_OBJECT_PINNED)
752 list_move_tail(&vma->exec_list, &pinned_vmas);
753 else if (need_mappable) {
754 entry->flags |= __EXEC_OBJECT_NEEDS_MAP;
755 list_move(&vma->exec_list, &ordered_vmas);
757 list_move_tail(&vma->exec_list, &ordered_vmas);
759 obj->base.pending_read_domains = I915_GEM_GPU_DOMAINS & ~I915_GEM_DOMAIN_COMMAND;
760 obj->base.pending_write_domain = 0;
762 list_splice(&ordered_vmas, vmas);
763 list_splice(&pinned_vmas, vmas);
765 /* Attempt to pin all of the buffers into the GTT.
766 * This is done in 3 phases:
768 * 1a. Unbind all objects that do not match the GTT constraints for
769 * the execbuffer (fenceable, mappable, alignment etc).
770 * 1b. Increment pin count for already bound objects.
771 * 2. Bind new objects.
772 * 3. Decrement pin count.
774 * This avoid unnecessary unbinding of later objects in order to make
775 * room for the earlier objects *unless* we need to defragment.
781 /* Unbind any ill-fitting objects or pin. */
782 list_for_each_entry(vma, vmas, exec_list) {
783 if (!drm_mm_node_allocated(&vma->node))
786 if (eb_vma_misplaced(vma))
787 ret = i915_vma_unbind(vma);
789 ret = i915_gem_execbuffer_reserve_vma(vma, ring, need_relocs);
794 /* Bind fresh objects */
795 list_for_each_entry(vma, vmas, exec_list) {
796 if (drm_mm_node_allocated(&vma->node))
799 ret = i915_gem_execbuffer_reserve_vma(vma, ring, need_relocs);
805 if (ret != -ENOSPC || retry++)
808 /* Decrement pin count for bound objects */
809 list_for_each_entry(vma, vmas, exec_list)
810 i915_gem_execbuffer_unreserve_vma(vma);
812 ret = i915_gem_evict_vm(vm, true);
819 i915_gem_execbuffer_relocate_slow(struct drm_device *dev,
820 struct drm_i915_gem_execbuffer2 *args,
821 struct drm_file *file,
822 struct intel_engine_cs *ring,
824 struct drm_i915_gem_exec_object2 *exec,
825 struct intel_context *ctx)
827 struct drm_i915_gem_relocation_entry *reloc;
828 struct i915_address_space *vm;
829 struct i915_vma *vma;
833 unsigned count = args->buffer_count;
835 vm = list_first_entry(&eb->vmas, struct i915_vma, exec_list)->vm;
837 /* We may process another execbuffer during the unlock... */
838 while (!list_empty(&eb->vmas)) {
839 vma = list_first_entry(&eb->vmas, struct i915_vma, exec_list);
840 list_del_init(&vma->exec_list);
841 i915_gem_execbuffer_unreserve_vma(vma);
842 drm_gem_object_unreference(&vma->obj->base);
845 mutex_unlock(&dev->struct_mutex);
848 for (i = 0; i < count; i++)
849 total += exec[i].relocation_count;
851 reloc_offset = drm_malloc_ab(count, sizeof(*reloc_offset));
852 reloc = drm_malloc_ab(total, sizeof(*reloc));
853 if (reloc == NULL || reloc_offset == NULL) {
854 drm_free_large(reloc);
855 drm_free_large(reloc_offset);
856 mutex_lock(&dev->struct_mutex);
861 for (i = 0; i < count; i++) {
862 struct drm_i915_gem_relocation_entry __user *user_relocs;
863 u64 invalid_offset = (u64)-1;
866 user_relocs = u64_to_user_ptr(exec[i].relocs_ptr);
868 if (copy_from_user(reloc+total, user_relocs,
869 exec[i].relocation_count * sizeof(*reloc))) {
871 mutex_lock(&dev->struct_mutex);
875 /* As we do not update the known relocation offsets after
876 * relocating (due to the complexities in lock handling),
877 * we need to mark them as invalid now so that we force the
878 * relocation processing next time. Just in case the target
879 * object is evicted and then rebound into its old
880 * presumed_offset before the next execbuffer - if that
881 * happened we would make the mistake of assuming that the
882 * relocations were valid.
884 for (j = 0; j < exec[i].relocation_count; j++) {
885 if (__copy_to_user(&user_relocs[j].presumed_offset,
887 sizeof(invalid_offset))) {
889 mutex_lock(&dev->struct_mutex);
894 reloc_offset[i] = total;
895 total += exec[i].relocation_count;
898 ret = i915_mutex_lock_interruptible(dev);
900 mutex_lock(&dev->struct_mutex);
904 /* reacquire the objects */
906 ret = eb_lookup_vmas(eb, exec, args, vm, file);
910 need_relocs = (args->flags & I915_EXEC_NO_RELOC) == 0;
911 ret = i915_gem_execbuffer_reserve(ring, &eb->vmas, ctx, &need_relocs);
915 list_for_each_entry(vma, &eb->vmas, exec_list) {
916 int offset = vma->exec_entry - exec;
917 ret = i915_gem_execbuffer_relocate_vma_slow(vma, eb,
918 reloc + reloc_offset[offset]);
923 /* Leave the user relocations as are, this is the painfully slow path,
924 * and we want to avoid the complication of dropping the lock whilst
925 * having buffers reserved in the aperture and so causing spurious
926 * ENOSPC for random operations.
930 drm_free_large(reloc);
931 drm_free_large(reloc_offset);
936 i915_gem_execbuffer_move_to_gpu(struct drm_i915_gem_request *req,
937 struct list_head *vmas)
939 const unsigned other_rings = ~intel_ring_flag(req->ring);
940 struct i915_vma *vma;
941 uint32_t flush_domains = 0;
942 bool flush_chipset = false;
945 list_for_each_entry(vma, vmas, exec_list) {
946 struct drm_i915_gem_object *obj = vma->obj;
948 if (obj->active & other_rings) {
949 ret = i915_gem_object_sync(obj, req->ring, &req);
954 if (obj->base.write_domain & I915_GEM_DOMAIN_CPU)
955 flush_chipset |= i915_gem_clflush_object(obj, false);
957 flush_domains |= obj->base.write_domain;
961 i915_gem_chipset_flush(req->ring->dev);
963 if (flush_domains & I915_GEM_DOMAIN_GTT)
966 /* Unconditionally invalidate gpu caches and ensure that we do flush
967 * any residual writes from the previous batch.
969 return intel_ring_invalidate_all_caches(req);
973 i915_gem_check_execbuffer(struct drm_i915_gem_execbuffer2 *exec)
975 if (exec->flags & __I915_EXEC_UNKNOWN_FLAGS)
978 /* Kernel clipping was a DRI1 misfeature */
979 if (exec->num_cliprects || exec->cliprects_ptr)
982 if (exec->DR4 == 0xffffffff) {
983 DRM_DEBUG("UXA submitting garbage DR4, fixing up\n");
986 if (exec->DR1 || exec->DR4)
989 if ((exec->batch_start_offset | exec->batch_len) & 0x7)
996 validate_exec_list(struct drm_device *dev,
997 struct drm_i915_gem_exec_object2 *exec,
1000 unsigned relocs_total = 0;
1001 unsigned relocs_max = UINT_MAX / sizeof(struct drm_i915_gem_relocation_entry);
1002 unsigned invalid_flags;
1005 invalid_flags = __EXEC_OBJECT_UNKNOWN_FLAGS;
1006 if (USES_FULL_PPGTT(dev))
1007 invalid_flags |= EXEC_OBJECT_NEEDS_GTT;
1009 for (i = 0; i < count; i++) {
1010 char __user *ptr = u64_to_user_ptr(exec[i].relocs_ptr);
1011 int length; /* limited by fault_in_pages_readable() */
1013 if (exec[i].flags & invalid_flags)
1016 /* Offset can be used as input (EXEC_OBJECT_PINNED), reject
1017 * any non-page-aligned or non-canonical addresses.
1019 if (exec[i].flags & EXEC_OBJECT_PINNED) {
1020 if (exec[i].offset !=
1021 gen8_canonical_addr(exec[i].offset & PAGE_MASK))
1024 /* From drm_mm perspective address space is continuous,
1025 * so from this point we're always using non-canonical
1028 exec[i].offset = gen8_noncanonical_addr(exec[i].offset);
1031 if (exec[i].alignment && !is_power_of_2(exec[i].alignment))
1034 /* First check for malicious input causing overflow in
1035 * the worst case where we need to allocate the entire
1036 * relocation tree as a single array.
1038 if (exec[i].relocation_count > relocs_max - relocs_total)
1040 relocs_total += exec[i].relocation_count;
1042 length = exec[i].relocation_count *
1043 sizeof(struct drm_i915_gem_relocation_entry);
1045 * We must check that the entire relocation array is safe
1046 * to read, but since we may need to update the presumed
1047 * offsets during execution, check for full write access.
1049 if (!access_ok(VERIFY_WRITE, ptr, length))
1052 if (likely(!i915.prefault_disable)) {
1053 if (fault_in_multipages_readable(ptr, length))
1061 static struct intel_context *
1062 i915_gem_validate_context(struct drm_device *dev, struct drm_file *file,
1063 struct intel_engine_cs *ring, const u32 ctx_id)
1065 struct intel_context *ctx = NULL;
1066 struct i915_ctx_hang_stats *hs;
1068 if (ring->id != RCS && ctx_id != DEFAULT_CONTEXT_HANDLE)
1069 return ERR_PTR(-EINVAL);
1071 ctx = i915_gem_context_get(file->driver_priv, ctx_id);
1075 hs = &ctx->hang_stats;
1077 DRM_DEBUG("Context %u tried to submit while banned\n", ctx_id);
1078 return ERR_PTR(-EIO);
1081 if (i915.enable_execlists && !ctx->engine[ring->id].state) {
1082 int ret = intel_lr_context_deferred_alloc(ctx, ring);
1084 DRM_DEBUG("Could not create LRC %u: %d\n", ctx_id, ret);
1085 return ERR_PTR(ret);
1093 i915_gem_execbuffer_move_to_active(struct list_head *vmas,
1094 struct drm_i915_gem_request *req)
1096 struct intel_engine_cs *ring = i915_gem_request_get_ring(req);
1097 struct i915_vma *vma;
1099 list_for_each_entry(vma, vmas, exec_list) {
1100 struct drm_i915_gem_exec_object2 *entry = vma->exec_entry;
1101 struct drm_i915_gem_object *obj = vma->obj;
1102 u32 old_read = obj->base.read_domains;
1103 u32 old_write = obj->base.write_domain;
1105 obj->dirty = 1; /* be paranoid */
1106 obj->base.write_domain = obj->base.pending_write_domain;
1107 if (obj->base.write_domain == 0)
1108 obj->base.pending_read_domains |= obj->base.read_domains;
1109 obj->base.read_domains = obj->base.pending_read_domains;
1111 i915_vma_move_to_active(vma, req);
1112 if (obj->base.write_domain) {
1113 i915_gem_request_assign(&obj->last_write_req, req);
1115 intel_fb_obj_invalidate(obj, ORIGIN_CS);
1117 /* update for the implicit flush after a batch */
1118 obj->base.write_domain &= ~I915_GEM_GPU_DOMAINS;
1120 if (entry->flags & EXEC_OBJECT_NEEDS_FENCE) {
1121 i915_gem_request_assign(&obj->last_fenced_req, req);
1122 if (entry->flags & __EXEC_OBJECT_HAS_FENCE) {
1123 struct drm_i915_private *dev_priv = to_i915(ring->dev);
1124 list_move_tail(&dev_priv->fence_regs[obj->fence_reg].lru_list,
1125 &dev_priv->mm.fence_list);
1129 trace_i915_gem_object_change_domain(obj, old_read, old_write);
1134 i915_gem_execbuffer_retire_commands(struct i915_execbuffer_params *params)
1136 /* Unconditionally force add_request to emit a full flush. */
1137 params->ring->gpu_caches_dirty = true;
1139 /* Add a breadcrumb for the completion of the batch buffer */
1140 __i915_add_request(params->request, params->batch_obj, true);
1144 i915_reset_gen7_sol_offsets(struct drm_device *dev,
1145 struct drm_i915_gem_request *req)
1147 struct intel_engine_cs *ring = req->ring;
1148 struct drm_i915_private *dev_priv = dev->dev_private;
1151 if (!IS_GEN7(dev) || ring != &dev_priv->ring[RCS]) {
1152 DRM_DEBUG("sol reset is gen7/rcs only\n");
1156 ret = intel_ring_begin(req, 4 * 3);
1160 for (i = 0; i < 4; i++) {
1161 intel_ring_emit(ring, MI_LOAD_REGISTER_IMM(1));
1162 intel_ring_emit_reg(ring, GEN7_SO_WRITE_OFFSET(i));
1163 intel_ring_emit(ring, 0);
1166 intel_ring_advance(ring);
1171 static struct drm_i915_gem_object*
1172 i915_gem_execbuffer_parse(struct intel_engine_cs *ring,
1173 struct drm_i915_gem_exec_object2 *shadow_exec_entry,
1175 struct drm_i915_gem_object *batch_obj,
1176 u32 batch_start_offset,
1180 struct drm_i915_gem_object *shadow_batch_obj;
1181 struct i915_vma *vma;
1184 shadow_batch_obj = i915_gem_batch_pool_get(&ring->batch_pool,
1185 PAGE_ALIGN(batch_len));
1186 if (IS_ERR(shadow_batch_obj))
1187 return shadow_batch_obj;
1189 ret = i915_parse_cmds(ring,
1198 ret = i915_gem_obj_ggtt_pin(shadow_batch_obj, 0, 0);
1202 i915_gem_object_unpin_pages(shadow_batch_obj);
1204 memset(shadow_exec_entry, 0, sizeof(*shadow_exec_entry));
1206 vma = i915_gem_obj_to_ggtt(shadow_batch_obj);
1207 vma->exec_entry = shadow_exec_entry;
1208 vma->exec_entry->flags = __EXEC_OBJECT_HAS_PIN;
1209 drm_gem_object_reference(&shadow_batch_obj->base);
1210 list_add_tail(&vma->exec_list, &eb->vmas);
1212 shadow_batch_obj->base.pending_read_domains = I915_GEM_DOMAIN_COMMAND;
1214 return shadow_batch_obj;
1217 i915_gem_object_unpin_pages(shadow_batch_obj);
1218 if (ret == -EACCES) /* unhandled chained batch */
1221 return ERR_PTR(ret);
1225 i915_gem_ringbuffer_submission(struct i915_execbuffer_params *params,
1226 struct drm_i915_gem_execbuffer2 *args,
1227 struct list_head *vmas)
1229 struct drm_device *dev = params->dev;
1230 struct intel_engine_cs *ring = params->ring;
1231 struct drm_i915_private *dev_priv = dev->dev_private;
1232 u64 exec_start, exec_len;
1237 ret = i915_gem_execbuffer_move_to_gpu(params->request, vmas);
1241 ret = i915_switch_context(params->request);
1245 WARN(params->ctx->ppgtt && params->ctx->ppgtt->pd_dirty_rings & (1<<ring->id),
1246 "%s didn't clear reload\n", ring->name);
1248 instp_mode = args->flags & I915_EXEC_CONSTANTS_MASK;
1249 instp_mask = I915_EXEC_CONSTANTS_MASK;
1250 switch (instp_mode) {
1251 case I915_EXEC_CONSTANTS_REL_GENERAL:
1252 case I915_EXEC_CONSTANTS_ABSOLUTE:
1253 case I915_EXEC_CONSTANTS_REL_SURFACE:
1254 if (instp_mode != 0 && ring != &dev_priv->ring[RCS]) {
1255 DRM_DEBUG("non-0 rel constants mode on non-RCS\n");
1259 if (instp_mode != dev_priv->relative_constants_mode) {
1260 if (INTEL_INFO(dev)->gen < 4) {
1261 DRM_DEBUG("no rel constants on pre-gen4\n");
1265 if (INTEL_INFO(dev)->gen > 5 &&
1266 instp_mode == I915_EXEC_CONSTANTS_REL_SURFACE) {
1267 DRM_DEBUG("rel surface constants mode invalid on gen5+\n");
1271 /* The HW changed the meaning on this bit on gen6 */
1272 if (INTEL_INFO(dev)->gen >= 6)
1273 instp_mask &= ~I915_EXEC_CONSTANTS_REL_SURFACE;
1277 DRM_DEBUG("execbuf with unknown constants: %d\n", instp_mode);
1281 if (ring == &dev_priv->ring[RCS] &&
1282 instp_mode != dev_priv->relative_constants_mode) {
1283 ret = intel_ring_begin(params->request, 4);
1287 intel_ring_emit(ring, MI_NOOP);
1288 intel_ring_emit(ring, MI_LOAD_REGISTER_IMM(1));
1289 intel_ring_emit_reg(ring, INSTPM);
1290 intel_ring_emit(ring, instp_mask << 16 | instp_mode);
1291 intel_ring_advance(ring);
1293 dev_priv->relative_constants_mode = instp_mode;
1296 if (args->flags & I915_EXEC_GEN7_SOL_RESET) {
1297 ret = i915_reset_gen7_sol_offsets(dev, params->request);
1302 exec_len = args->batch_len;
1303 exec_start = params->batch_obj_vm_offset +
1304 params->args_batch_start_offset;
1307 exec_len = params->batch_obj->base.size;
1309 ret = ring->dispatch_execbuffer(params->request,
1310 exec_start, exec_len,
1311 params->dispatch_flags);
1315 trace_i915_gem_ring_dispatch(params->request, params->dispatch_flags);
1317 i915_gem_execbuffer_move_to_active(vmas, params->request);
1318 i915_gem_execbuffer_retire_commands(params);
1324 * Find one BSD ring to dispatch the corresponding BSD command.
1325 * The ring index is returned.
1328 gen8_dispatch_bsd_ring(struct drm_i915_private *dev_priv, struct drm_file *file)
1330 struct drm_i915_file_private *file_priv = file->driver_priv;
1332 /* Check whether the file_priv has already selected one ring. */
1333 if ((int)file_priv->bsd_ring < 0) {
1334 /* If not, use the ping-pong mechanism to select one. */
1335 mutex_lock(&dev_priv->dev->struct_mutex);
1336 file_priv->bsd_ring = dev_priv->mm.bsd_ring_dispatch_index;
1337 dev_priv->mm.bsd_ring_dispatch_index ^= 1;
1338 mutex_unlock(&dev_priv->dev->struct_mutex);
1341 return file_priv->bsd_ring;
1344 static struct drm_i915_gem_object *
1345 eb_get_batch(struct eb_vmas *eb)
1347 struct i915_vma *vma = list_entry(eb->vmas.prev, typeof(*vma), exec_list);
1350 * SNA is doing fancy tricks with compressing batch buffers, which leads
1351 * to negative relocation deltas. Usually that works out ok since the
1352 * relocate address is still positive, except when the batch is placed
1353 * very low in the GTT. Ensure this doesn't happen.
1355 * Note that actual hangs have only been observed on gen7, but for
1356 * paranoia do it everywhere.
1358 if ((vma->exec_entry->flags & EXEC_OBJECT_PINNED) == 0)
1359 vma->exec_entry->flags |= __EXEC_OBJECT_NEEDS_BIAS;
1364 #define I915_USER_RINGS (4)
1366 static const enum intel_ring_id user_ring_map[I915_USER_RINGS + 1] = {
1367 [I915_EXEC_DEFAULT] = RCS,
1368 [I915_EXEC_RENDER] = RCS,
1369 [I915_EXEC_BLT] = BCS,
1370 [I915_EXEC_BSD] = VCS,
1371 [I915_EXEC_VEBOX] = VECS
1375 eb_select_ring(struct drm_i915_private *dev_priv,
1376 struct drm_file *file,
1377 struct drm_i915_gem_execbuffer2 *args,
1378 struct intel_engine_cs **ring)
1380 unsigned int user_ring_id = args->flags & I915_EXEC_RING_MASK;
1382 if (user_ring_id > I915_USER_RINGS) {
1383 DRM_DEBUG("execbuf with unknown ring: %u\n", user_ring_id);
1387 if ((user_ring_id != I915_EXEC_BSD) &&
1388 ((args->flags & I915_EXEC_BSD_MASK) != 0)) {
1389 DRM_DEBUG("execbuf with non bsd ring but with invalid "
1390 "bsd dispatch flags: %d\n", (int)(args->flags));
1394 if (user_ring_id == I915_EXEC_BSD && HAS_BSD2(dev_priv)) {
1395 unsigned int bsd_idx = args->flags & I915_EXEC_BSD_MASK;
1397 if (bsd_idx == I915_EXEC_BSD_DEFAULT) {
1398 bsd_idx = gen8_dispatch_bsd_ring(dev_priv, file);
1399 } else if (bsd_idx >= I915_EXEC_BSD_RING1 &&
1400 bsd_idx <= I915_EXEC_BSD_RING2) {
1401 bsd_idx >>= I915_EXEC_BSD_SHIFT;
1404 DRM_DEBUG("execbuf with unknown bsd ring: %u\n",
1409 *ring = &dev_priv->ring[_VCS(bsd_idx)];
1411 *ring = &dev_priv->ring[user_ring_map[user_ring_id]];
1414 if (!intel_ring_initialized(*ring)) {
1415 DRM_DEBUG("execbuf with invalid ring: %u\n", user_ring_id);
1423 i915_gem_do_execbuffer(struct drm_device *dev, void *data,
1424 struct drm_file *file,
1425 struct drm_i915_gem_execbuffer2 *args,
1426 struct drm_i915_gem_exec_object2 *exec)
1428 struct drm_i915_private *dev_priv = dev->dev_private;
1429 struct drm_i915_gem_request *req = NULL;
1431 struct drm_i915_gem_object *batch_obj;
1432 struct drm_i915_gem_exec_object2 shadow_exec_entry;
1433 struct intel_engine_cs *ring;
1434 struct intel_context *ctx;
1435 struct i915_address_space *vm;
1436 struct i915_execbuffer_params params_master; /* XXX: will be removed later */
1437 struct i915_execbuffer_params *params = ¶ms_master;
1438 const u32 ctx_id = i915_execbuffer2_get_context_id(*args);
1443 if (!i915_gem_check_execbuffer(args))
1446 ret = validate_exec_list(dev, exec, args->buffer_count);
1451 if (args->flags & I915_EXEC_SECURE) {
1452 if (!file->is_master || !capable(CAP_SYS_ADMIN))
1455 dispatch_flags |= I915_DISPATCH_SECURE;
1457 if (args->flags & I915_EXEC_IS_PINNED)
1458 dispatch_flags |= I915_DISPATCH_PINNED;
1460 ret = eb_select_ring(dev_priv, file, args, &ring);
1464 if (args->buffer_count < 1) {
1465 DRM_DEBUG("execbuf with %d buffers\n", args->buffer_count);
1469 if (args->flags & I915_EXEC_RESOURCE_STREAMER) {
1470 if (!HAS_RESOURCE_STREAMER(dev)) {
1471 DRM_DEBUG("RS is only allowed for Haswell, Gen8 and above\n");
1474 if (ring->id != RCS) {
1475 DRM_DEBUG("RS is not available on %s\n",
1480 dispatch_flags |= I915_DISPATCH_RS;
1483 intel_runtime_pm_get(dev_priv);
1485 ret = i915_mutex_lock_interruptible(dev);
1489 ctx = i915_gem_validate_context(dev, file, ring, ctx_id);
1491 mutex_unlock(&dev->struct_mutex);
1496 i915_gem_context_reference(ctx);
1499 vm = &ctx->ppgtt->base;
1501 vm = &dev_priv->gtt.base;
1503 memset(¶ms_master, 0x00, sizeof(params_master));
1505 eb = eb_create(args);
1507 i915_gem_context_unreference(ctx);
1508 mutex_unlock(&dev->struct_mutex);
1513 /* Look up object handles */
1514 ret = eb_lookup_vmas(eb, exec, args, vm, file);
1518 /* take note of the batch buffer before we might reorder the lists */
1519 batch_obj = eb_get_batch(eb);
1521 /* Move the objects en-masse into the GTT, evicting if necessary. */
1522 need_relocs = (args->flags & I915_EXEC_NO_RELOC) == 0;
1523 ret = i915_gem_execbuffer_reserve(ring, &eb->vmas, ctx, &need_relocs);
1527 /* The objects are in their final locations, apply the relocations. */
1529 ret = i915_gem_execbuffer_relocate(eb);
1531 if (ret == -EFAULT) {
1532 ret = i915_gem_execbuffer_relocate_slow(dev, args, file, ring,
1534 BUG_ON(!mutex_is_locked(&dev->struct_mutex));
1540 /* Set the pending read domains for the batch buffer to COMMAND */
1541 if (batch_obj->base.pending_write_domain) {
1542 DRM_DEBUG("Attempting to use self-modifying batch buffer\n");
1547 params->args_batch_start_offset = args->batch_start_offset;
1548 if (i915_needs_cmd_parser(ring) && args->batch_len) {
1549 struct drm_i915_gem_object *parsed_batch_obj;
1551 parsed_batch_obj = i915_gem_execbuffer_parse(ring,
1555 args->batch_start_offset,
1558 if (IS_ERR(parsed_batch_obj)) {
1559 ret = PTR_ERR(parsed_batch_obj);
1564 * parsed_batch_obj == batch_obj means batch not fully parsed:
1565 * Accept, but don't promote to secure.
1568 if (parsed_batch_obj != batch_obj) {
1570 * Batch parsed and accepted:
1572 * Set the DISPATCH_SECURE bit to remove the NON_SECURE
1573 * bit from MI_BATCH_BUFFER_START commands issued in
1574 * the dispatch_execbuffer implementations. We
1575 * specifically don't want that set on batches the
1576 * command parser has accepted.
1578 dispatch_flags |= I915_DISPATCH_SECURE;
1579 params->args_batch_start_offset = 0;
1580 batch_obj = parsed_batch_obj;
1584 batch_obj->base.pending_read_domains |= I915_GEM_DOMAIN_COMMAND;
1586 /* snb/ivb/vlv conflate the "batch in ppgtt" bit with the "non-secure
1587 * batch" bit. Hence we need to pin secure batches into the global gtt.
1588 * hsw should have this fixed, but bdw mucks it up again. */
1589 if (dispatch_flags & I915_DISPATCH_SECURE) {
1591 * So on first glance it looks freaky that we pin the batch here
1592 * outside of the reservation loop. But:
1593 * - The batch is already pinned into the relevant ppgtt, so we
1594 * already have the backing storage fully allocated.
1595 * - No other BO uses the global gtt (well contexts, but meh),
1596 * so we don't really have issues with multiple objects not
1597 * fitting due to fragmentation.
1598 * So this is actually safe.
1600 ret = i915_gem_obj_ggtt_pin(batch_obj, 0, 0);
1604 params->batch_obj_vm_offset = i915_gem_obj_ggtt_offset(batch_obj);
1606 params->batch_obj_vm_offset = i915_gem_obj_offset(batch_obj, vm);
1608 /* Allocate a request for this batch buffer nice and early. */
1609 req = i915_gem_request_alloc(ring, ctx);
1612 goto err_batch_unpin;
1615 ret = i915_gem_request_add_to_client(req, file);
1617 goto err_batch_unpin;
1620 * Save assorted stuff away to pass through to *_submission().
1621 * NB: This data should be 'persistent' and not local as it will
1622 * kept around beyond the duration of the IOCTL once the GPU
1623 * scheduler arrives.
1626 params->file = file;
1627 params->ring = ring;
1628 params->dispatch_flags = dispatch_flags;
1629 params->batch_obj = batch_obj;
1631 params->request = req;
1633 ret = dev_priv->gt.execbuf_submit(params, args, &eb->vmas);
1637 * FIXME: We crucially rely upon the active tracking for the (ppgtt)
1638 * batch vma for correctness. For less ugly and less fragility this
1639 * needs to be adjusted to also track the ggtt batch vma properly as
1642 if (dispatch_flags & I915_DISPATCH_SECURE)
1643 i915_gem_object_ggtt_unpin(batch_obj);
1646 /* the request owns the ref now */
1647 i915_gem_context_unreference(ctx);
1651 * If the request was created but not successfully submitted then it
1652 * must be freed again. If it was submitted then it is being tracked
1653 * on the active request list and no clean up is required here.
1655 if (ret && !IS_ERR_OR_NULL(req))
1656 i915_gem_request_cancel(req);
1658 mutex_unlock(&dev->struct_mutex);
1661 /* intel_gpu_busy should also get a ref, so it will free when the device
1662 * is really idle. */
1663 intel_runtime_pm_put(dev_priv);
1668 * Legacy execbuffer just creates an exec2 list from the original exec object
1669 * list array and passes it to the real function.
1672 i915_gem_execbuffer(struct drm_device *dev, void *data,
1673 struct drm_file *file)
1675 struct drm_i915_gem_execbuffer *args = data;
1676 struct drm_i915_gem_execbuffer2 exec2;
1677 struct drm_i915_gem_exec_object *exec_list = NULL;
1678 struct drm_i915_gem_exec_object2 *exec2_list = NULL;
1681 if (args->buffer_count < 1) {
1682 DRM_DEBUG("execbuf with %d buffers\n", args->buffer_count);
1686 /* Copy in the exec list from userland */
1687 exec_list = drm_malloc_ab(sizeof(*exec_list), args->buffer_count);
1688 exec2_list = drm_malloc_ab(sizeof(*exec2_list), args->buffer_count);
1689 if (exec_list == NULL || exec2_list == NULL) {
1690 DRM_DEBUG("Failed to allocate exec list for %d buffers\n",
1691 args->buffer_count);
1692 drm_free_large(exec_list);
1693 drm_free_large(exec2_list);
1696 ret = copy_from_user(exec_list,
1697 u64_to_user_ptr(args->buffers_ptr),
1698 sizeof(*exec_list) * args->buffer_count);
1700 DRM_DEBUG("copy %d exec entries failed %d\n",
1701 args->buffer_count, ret);
1702 drm_free_large(exec_list);
1703 drm_free_large(exec2_list);
1707 for (i = 0; i < args->buffer_count; i++) {
1708 exec2_list[i].handle = exec_list[i].handle;
1709 exec2_list[i].relocation_count = exec_list[i].relocation_count;
1710 exec2_list[i].relocs_ptr = exec_list[i].relocs_ptr;
1711 exec2_list[i].alignment = exec_list[i].alignment;
1712 exec2_list[i].offset = exec_list[i].offset;
1713 if (INTEL_INFO(dev)->gen < 4)
1714 exec2_list[i].flags = EXEC_OBJECT_NEEDS_FENCE;
1716 exec2_list[i].flags = 0;
1719 exec2.buffers_ptr = args->buffers_ptr;
1720 exec2.buffer_count = args->buffer_count;
1721 exec2.batch_start_offset = args->batch_start_offset;
1722 exec2.batch_len = args->batch_len;
1723 exec2.DR1 = args->DR1;
1724 exec2.DR4 = args->DR4;
1725 exec2.num_cliprects = args->num_cliprects;
1726 exec2.cliprects_ptr = args->cliprects_ptr;
1727 exec2.flags = I915_EXEC_RENDER;
1728 i915_execbuffer2_set_context_id(exec2, 0);
1730 ret = i915_gem_do_execbuffer(dev, data, file, &exec2, exec2_list);
1732 struct drm_i915_gem_exec_object __user *user_exec_list =
1733 u64_to_user_ptr(args->buffers_ptr);
1735 /* Copy the new buffer offsets back to the user's exec list. */
1736 for (i = 0; i < args->buffer_count; i++) {
1737 exec2_list[i].offset =
1738 gen8_canonical_addr(exec2_list[i].offset);
1739 ret = __copy_to_user(&user_exec_list[i].offset,
1740 &exec2_list[i].offset,
1741 sizeof(user_exec_list[i].offset));
1744 DRM_DEBUG("failed to copy %d exec entries "
1745 "back to user (%d)\n",
1746 args->buffer_count, ret);
1752 drm_free_large(exec_list);
1753 drm_free_large(exec2_list);
1758 i915_gem_execbuffer2(struct drm_device *dev, void *data,
1759 struct drm_file *file)
1761 struct drm_i915_gem_execbuffer2 *args = data;
1762 struct drm_i915_gem_exec_object2 *exec2_list = NULL;
1765 if (args->buffer_count < 1 ||
1766 args->buffer_count > UINT_MAX / sizeof(*exec2_list)) {
1767 DRM_DEBUG("execbuf2 with %d buffers\n", args->buffer_count);
1771 if (args->rsvd2 != 0) {
1772 DRM_DEBUG("dirty rvsd2 field\n");
1776 exec2_list = kmalloc(sizeof(*exec2_list)*args->buffer_count,
1777 GFP_TEMPORARY | __GFP_NOWARN | __GFP_NORETRY);
1778 if (exec2_list == NULL)
1779 exec2_list = drm_malloc_ab(sizeof(*exec2_list),
1780 args->buffer_count);
1781 if (exec2_list == NULL) {
1782 DRM_DEBUG("Failed to allocate exec list for %d buffers\n",
1783 args->buffer_count);
1786 ret = copy_from_user(exec2_list,
1787 u64_to_user_ptr(args->buffers_ptr),
1788 sizeof(*exec2_list) * args->buffer_count);
1790 DRM_DEBUG("copy %d exec entries failed %d\n",
1791 args->buffer_count, ret);
1792 drm_free_large(exec2_list);
1796 ret = i915_gem_do_execbuffer(dev, data, file, args, exec2_list);
1798 /* Copy the new buffer offsets back to the user's exec list. */
1799 struct drm_i915_gem_exec_object2 __user *user_exec_list =
1800 u64_to_user_ptr(args->buffers_ptr);
1803 for (i = 0; i < args->buffer_count; i++) {
1804 exec2_list[i].offset =
1805 gen8_canonical_addr(exec2_list[i].offset);
1806 ret = __copy_to_user(&user_exec_list[i].offset,
1807 &exec2_list[i].offset,
1808 sizeof(user_exec_list[i].offset));
1811 DRM_DEBUG("failed to copy %d exec entries "
1813 args->buffer_count);
1819 drm_free_large(exec2_list);
projects / linux.git / blob