2 * Copyright (c) 2008 Yahoo!, Inc.
4 * Written by: John Baldwin <jhb@FreeBSD.org>
6 * Redistribution and use in source and binary forms, with or without
7 * modification, are permitted provided that the following conditions
9 * 1. Redistributions of source code must retain the above copyright
10 * notice, this list of conditions and the following disclaimer.
11 * 2. Redistributions in binary form must reproduce the above copyright
12 * notice, this list of conditions and the following disclaimer in the
13 * documentation and/or other materials provided with the distribution.
14 * 3. Neither the name of the author nor the names of any co-contributors
15 * may be used to endorse or promote products derived from this software
16 * without specific prior written permission.
18 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
19 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
20 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
21 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
22 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
23 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
24 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
25 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
26 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
27 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
30 * Avago Technologies (LSI) MPT-Fusion Host Adapter FreeBSD userland interface
33 * Copyright (c) 2011-2015 LSI Corp.
34 * Copyright (c) 2013-2016 Avago Technologies
35 * All rights reserved.
37 * Redistribution and use in source and binary forms, with or without
38 * modification, are permitted provided that the following conditions
40 * 1. Redistributions of source code must retain the above copyright
41 * notice, this list of conditions and the following disclaimer.
42 * 2. Redistributions in binary form must reproduce the above copyright
43 * notice, this list of conditions and the following disclaimer in the
44 * documentation and/or other materials provided with the distribution.
46 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
47 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
48 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
49 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
50 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
51 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
52 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
53 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
54 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
55 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
58 * Avago Technologies (LSI) MPT-Fusion Host Adapter FreeBSD
60 * $FreeBSD: head/sys/dev/mpr/mpr_user.c 332122 2018-04-06 17:35:35Z brooks $
63 /* TODO Move headers to mprvar */
64 #include <sys/types.h>
65 #include <sys/param.h>
66 #include <sys/systm.h>
67 #include <sys/kernel.h>
68 #include <sys/module.h>
72 #include <sys/malloc.h>
74 #include <sys/sysctl.h>
75 #include <sys/ioccom.h>
76 #include <sys/endian.h>
77 #include <sys/queue.h>
78 #include <sys/kthread.h>
79 #include <sys/taskqueue.h>
81 #include <sys/sysent.h>
82 #include <sys/device.h>
83 #include <sys/eventhandler.h>
87 #include <bus/cam/cam.h>
88 #include <bus/cam/cam_ccb.h>
90 #include <dev/raid/mpr/mpi/mpi2_type.h>
91 #include <dev/raid/mpr/mpi/mpi2.h>
92 #include <dev/raid/mpr/mpi/mpi2_ioc.h>
93 #include <dev/raid/mpr/mpi/mpi2_cnfg.h>
94 #include <dev/raid/mpr/mpi/mpi2_init.h>
95 #include <dev/raid/mpr/mpi/mpi2_tool.h>
96 #include <dev/raid/mpr/mpi/mpi2_pci.h>
97 #include <dev/raid/mpr/mpr_ioctl.h>
98 #include <dev/raid/mpr/mprvar.h>
99 #include <dev/raid/mpr/mpr_table.h>
100 #include <dev/raid/mpr/mpr_sas.h>
101 #include <bus/pci/pcivar.h>
102 #include <bus/pci/pcireg.h>
104 static d_open_t mpr_open;
105 static d_close_t mpr_close;
106 static d_ioctl_t mpr_ioctl_devsw;
108 static struct dev_ops mpr_ops = {
109 { "mpr", 0, D_MPSAFE },
111 .d_close = mpr_close,
112 .d_ioctl = mpr_ioctl_devsw,
115 typedef int (mpr_user_f)(struct mpr_command *, struct mpr_usr_command *);
116 static mpr_user_f mpi_pre_ioc_facts;
117 static mpr_user_f mpi_pre_port_facts;
118 static mpr_user_f mpi_pre_fw_download;
119 static mpr_user_f mpi_pre_fw_upload;
120 static mpr_user_f mpi_pre_sata_passthrough;
121 static mpr_user_f mpi_pre_smp_passthrough;
122 static mpr_user_f mpi_pre_config;
123 static mpr_user_f mpi_pre_sas_io_unit_control;
125 static int mpr_user_read_cfg_header(struct mpr_softc *,
126 struct mpr_cfg_page_req *);
127 static int mpr_user_read_cfg_page(struct mpr_softc *,
128 struct mpr_cfg_page_req *, void *);
129 static int mpr_user_read_extcfg_header(struct mpr_softc *,
130 struct mpr_ext_cfg_page_req *);
131 static int mpr_user_read_extcfg_page(struct mpr_softc *,
132 struct mpr_ext_cfg_page_req *, void *);
133 static int mpr_user_write_cfg_page(struct mpr_softc *,
134 struct mpr_cfg_page_req *, void *);
135 static int mpr_user_setup_request(struct mpr_command *,
136 struct mpr_usr_command *);
137 static int mpr_user_command(struct mpr_softc *, struct mpr_usr_command *);
139 static int mpr_user_pass_thru(struct mpr_softc *sc, mpr_pass_thru_t *data);
140 static void mpr_user_get_adapter_data(struct mpr_softc *sc,
141 mpr_adapter_data_t *data);
142 static void mpr_user_read_pci_info(struct mpr_softc *sc, mpr_pci_info_t *data);
143 static uint8_t mpr_get_fw_diag_buffer_number(struct mpr_softc *sc,
145 static int mpr_post_fw_diag_buffer(struct mpr_softc *sc,
146 mpr_fw_diagnostic_buffer_t *pBuffer, uint32_t *return_code);
147 static int mpr_release_fw_diag_buffer(struct mpr_softc *sc,
148 mpr_fw_diagnostic_buffer_t *pBuffer, uint32_t *return_code,
150 static int mpr_diag_register(struct mpr_softc *sc,
151 mpr_fw_diag_register_t *diag_register, uint32_t *return_code);
152 static int mpr_diag_unregister(struct mpr_softc *sc,
153 mpr_fw_diag_unregister_t *diag_unregister, uint32_t *return_code);
154 static int mpr_diag_query(struct mpr_softc *sc, mpr_fw_diag_query_t *diag_query,
155 uint32_t *return_code);
156 static int mpr_diag_read_buffer(struct mpr_softc *sc,
157 mpr_diag_read_buffer_t *diag_read_buffer, uint8_t *ioctl_buf,
158 uint32_t *return_code);
159 static int mpr_diag_release(struct mpr_softc *sc,
160 mpr_fw_diag_release_t *diag_release, uint32_t *return_code);
161 static int mpr_do_diag_action(struct mpr_softc *sc, uint32_t action,
162 uint8_t *diag_action, uint32_t length, uint32_t *return_code);
163 static int mpr_user_diag_action(struct mpr_softc *sc, mpr_diag_action_t *data);
164 static void mpr_user_event_query(struct mpr_softc *sc, mpr_event_query_t *data);
165 static void mpr_user_event_enable(struct mpr_softc *sc,
166 mpr_event_enable_t *data);
167 static int mpr_user_event_report(struct mpr_softc *sc,
168 mpr_event_report_t *data);
169 static int mpr_user_reg_access(struct mpr_softc *sc, mpr_reg_access_t *data);
170 static int mpr_user_btdh(struct mpr_softc *sc, mpr_btdh_mapping_t *data);
172 static MALLOC_DEFINE(M_MPRUSER, "mpr_user", "Buffers for mpr(4) ioctls");
174 /* Macros from compat/freebsd32/freebsd32.h */
175 #define PTRIN(v) (void *)(uintptr_t)(v)
176 #define PTROUT(v) (uint32_t)(uintptr_t)(v)
178 #define CP(src,dst,fld) do { (dst).fld = (src).fld; } while (0)
179 #define PTRIN_CP(src,dst,fld) \
180 do { (dst).fld = PTRIN((src).fld); } while (0)
181 #define PTROUT_CP(src,dst,fld) \
182 do { (dst).fld = PTROUT((src).fld); } while (0)
185 * MPI functions that support IEEE SGLs for SAS3.
187 static uint8_t ieee_sgl_func_list[] = {
188 MPI2_FUNCTION_SCSI_IO_REQUEST,
189 MPI2_FUNCTION_RAID_SCSI_IO_PASSTHROUGH,
190 MPI2_FUNCTION_SMP_PASSTHROUGH,
191 MPI2_FUNCTION_SATA_PASSTHROUGH,
192 MPI2_FUNCTION_FW_UPLOAD,
193 MPI2_FUNCTION_FW_DOWNLOAD,
194 MPI2_FUNCTION_TARGET_ASSIST,
195 MPI2_FUNCTION_TARGET_STATUS_SEND,
196 MPI2_FUNCTION_TOOLBOX
200 mpr_attach_user(struct mpr_softc *sc)
204 unit = device_get_unit(sc->mpr_dev);
205 sc->mpr_cdev = make_dev(&mpr_ops, unit, UID_ROOT, GID_OPERATOR, 0640,
208 if (sc->mpr_cdev == NULL)
211 sc->mpr_cdev->si_drv1 = sc;
216 mpr_detach_user(struct mpr_softc *sc)
219 /* XXX: do a purge of pending requests? */
220 if (sc->mpr_cdev != NULL)
221 destroy_dev(sc->mpr_cdev);
225 mpr_open(struct dev_open_args *ap)
232 mpr_close(struct dev_close_args *ap)
239 mpr_user_read_cfg_header(struct mpr_softc *sc,
240 struct mpr_cfg_page_req *page_req)
242 MPI2_CONFIG_PAGE_HEADER *hdr;
243 struct mpr_config_params params;
246 hdr = ¶ms.hdr.Struct;
247 params.action = MPI2_CONFIG_ACTION_PAGE_HEADER;
248 params.page_address = le32toh(page_req->page_address);
249 hdr->PageVersion = 0;
251 hdr->PageNumber = page_req->header.PageNumber;
252 hdr->PageType = page_req->header.PageType;
253 params.buffer = NULL;
255 params.callback = NULL;
257 if ((error = mpr_read_config_page(sc, ¶ms)) != 0) {
259 * Leave the request. Without resetting the chip, it's
260 * still owned by it and we'll just get into trouble
261 * freeing it now. Mark it as abandoned so that if it
262 * shows up later it can be freed.
264 mpr_printf(sc, "read_cfg_header timed out\n");
268 page_req->ioc_status = htole16(params.status);
269 if ((page_req->ioc_status & MPI2_IOCSTATUS_MASK) ==
270 MPI2_IOCSTATUS_SUCCESS) {
271 bcopy(hdr, &page_req->header, sizeof(page_req->header));
278 mpr_user_read_cfg_page(struct mpr_softc *sc, struct mpr_cfg_page_req *page_req,
281 MPI2_CONFIG_PAGE_HEADER *reqhdr, *hdr;
282 struct mpr_config_params params;
286 hdr = ¶ms.hdr.Struct;
287 hdr->PageVersion = reqhdr->PageVersion;
288 hdr->PageLength = reqhdr->PageLength;
289 hdr->PageNumber = reqhdr->PageNumber;
290 hdr->PageType = reqhdr->PageType & MPI2_CONFIG_PAGETYPE_MASK;
291 params.action = MPI2_CONFIG_ACTION_PAGE_READ_CURRENT;
292 params.page_address = le32toh(page_req->page_address);
294 params.length = le32toh(page_req->len);
295 params.callback = NULL;
297 if ((error = mpr_read_config_page(sc, ¶ms)) != 0) {
298 mpr_printf(sc, "mpr_user_read_cfg_page timed out\n");
302 page_req->ioc_status = htole16(params.status);
307 mpr_user_read_extcfg_header(struct mpr_softc *sc,
308 struct mpr_ext_cfg_page_req *ext_page_req)
310 MPI2_CONFIG_EXTENDED_PAGE_HEADER *hdr;
311 struct mpr_config_params params;
314 hdr = ¶ms.hdr.Ext;
315 params.action = MPI2_CONFIG_ACTION_PAGE_HEADER;
316 hdr->PageVersion = ext_page_req->header.PageVersion;
317 hdr->PageType = MPI2_CONFIG_PAGETYPE_EXTENDED;
318 hdr->ExtPageLength = 0;
319 hdr->PageNumber = ext_page_req->header.PageNumber;
320 hdr->ExtPageType = ext_page_req->header.ExtPageType;
321 params.page_address = le32toh(ext_page_req->page_address);
322 params.buffer = NULL;
324 params.callback = NULL;
326 if ((error = mpr_read_config_page(sc, ¶ms)) != 0) {
328 * Leave the request. Without resetting the chip, it's
329 * still owned by it and we'll just get into trouble
330 * freeing it now. Mark it as abandoned so that if it
331 * shows up later it can be freed.
333 mpr_printf(sc, "mpr_user_read_extcfg_header timed out\n");
337 ext_page_req->ioc_status = htole16(params.status);
338 if ((ext_page_req->ioc_status & MPI2_IOCSTATUS_MASK) ==
339 MPI2_IOCSTATUS_SUCCESS) {
340 ext_page_req->header.PageVersion = hdr->PageVersion;
341 ext_page_req->header.PageNumber = hdr->PageNumber;
342 ext_page_req->header.PageType = hdr->PageType;
343 ext_page_req->header.ExtPageLength = hdr->ExtPageLength;
344 ext_page_req->header.ExtPageType = hdr->ExtPageType;
351 mpr_user_read_extcfg_page(struct mpr_softc *sc,
352 struct mpr_ext_cfg_page_req *ext_page_req, void *buf)
354 MPI2_CONFIG_EXTENDED_PAGE_HEADER *reqhdr, *hdr;
355 struct mpr_config_params params;
359 hdr = ¶ms.hdr.Ext;
360 params.action = MPI2_CONFIG_ACTION_PAGE_READ_CURRENT;
361 params.page_address = le32toh(ext_page_req->page_address);
362 hdr->PageVersion = reqhdr->PageVersion;
363 hdr->PageType = MPI2_CONFIG_PAGETYPE_EXTENDED;
364 hdr->PageNumber = reqhdr->PageNumber;
365 hdr->ExtPageType = reqhdr->ExtPageType;
366 hdr->ExtPageLength = reqhdr->ExtPageLength;
368 params.length = le32toh(ext_page_req->len);
369 params.callback = NULL;
371 if ((error = mpr_read_config_page(sc, ¶ms)) != 0) {
372 mpr_printf(sc, "mpr_user_read_extcfg_page timed out\n");
376 ext_page_req->ioc_status = htole16(params.status);
381 mpr_user_write_cfg_page(struct mpr_softc *sc,
382 struct mpr_cfg_page_req *page_req, void *buf)
384 MPI2_CONFIG_PAGE_HEADER *reqhdr, *hdr;
385 struct mpr_config_params params;
390 hdr = ¶ms.hdr.Struct;
391 hdr_attr = reqhdr->PageType & MPI2_CONFIG_PAGEATTR_MASK;
392 if (hdr_attr != MPI2_CONFIG_PAGEATTR_CHANGEABLE &&
393 hdr_attr != MPI2_CONFIG_PAGEATTR_PERSISTENT) {
394 mpr_printf(sc, "page type 0x%x not changeable\n",
395 reqhdr->PageType & MPI2_CONFIG_PAGETYPE_MASK);
400 * There isn't any point in restoring stripped out attributes
401 * if you then mask them going down to issue the request.
404 hdr->PageVersion = reqhdr->PageVersion;
405 hdr->PageLength = reqhdr->PageLength;
406 hdr->PageNumber = reqhdr->PageNumber;
407 hdr->PageType = reqhdr->PageType;
408 params.action = MPI2_CONFIG_ACTION_PAGE_WRITE_CURRENT;
409 params.page_address = le32toh(page_req->page_address);
411 params.length = le32toh(page_req->len);
412 params.callback = NULL;
414 if ((error = mpr_write_config_page(sc, ¶ms)) != 0) {
415 mpr_printf(sc, "mpr_write_cfg_page timed out\n");
419 page_req->ioc_status = htole16(params.status);
424 mpr_init_sge(struct mpr_command *cm, void *req, void *sge)
428 space = (int)cm->cm_sc->reqframesz;
429 off = (uintptr_t)sge - (uintptr_t)req;
431 KASSERT(off < space, ("bad pointers %p %p, off %d, space %d",
432 req, sge, off, space));
435 cm->cm_sglsize = space - off;
439 * Prepare the mpr_command for an IOC_FACTS request.
442 mpi_pre_ioc_facts(struct mpr_command *cm, struct mpr_usr_command *cmd)
444 MPI2_IOC_FACTS_REQUEST *req = (void *)cm->cm_req;
445 MPI2_IOC_FACTS_REPLY *rpl;
447 if (cmd->req_len != sizeof *req)
449 if (cmd->rpl_len != sizeof *rpl)
458 * Prepare the mpr_command for a PORT_FACTS request.
461 mpi_pre_port_facts(struct mpr_command *cm, struct mpr_usr_command *cmd)
463 MPI2_PORT_FACTS_REQUEST *req = (void *)cm->cm_req;
464 MPI2_PORT_FACTS_REPLY *rpl;
466 if (cmd->req_len != sizeof *req)
468 if (cmd->rpl_len != sizeof *rpl)
477 * Prepare the mpr_command for a FW_DOWNLOAD request.
480 mpi_pre_fw_download(struct mpr_command *cm, struct mpr_usr_command *cmd)
482 MPI25_FW_DOWNLOAD_REQUEST *req = (void *)cm->cm_req;
483 MPI2_FW_DOWNLOAD_REPLY *rpl;
486 if (cmd->req_len != sizeof *req)
488 if (cmd->rpl_len != sizeof *rpl)
494 error = copyin(cmd->buf, cm->cm_data, cmd->len);
498 mpr_init_sge(cm, req, &req->SGL);
501 * For now, the F/W image must be provided in a single request.
503 if ((req->MsgFlags & MPI2_FW_DOWNLOAD_MSGFLGS_LAST_SEGMENT) == 0)
505 if (req->TotalImageSize != cmd->len)
508 req->ImageOffset = 0;
509 req->ImageSize = cmd->len;
511 cm->cm_flags |= MPR_CM_FLAGS_DATAOUT;
513 return (mpr_push_ieee_sge(cm, &req->SGL, 0));
517 * Prepare the mpr_command for a FW_UPLOAD request.
520 mpi_pre_fw_upload(struct mpr_command *cm, struct mpr_usr_command *cmd)
522 MPI25_FW_UPLOAD_REQUEST *req = (void *)cm->cm_req;
523 MPI2_FW_UPLOAD_REPLY *rpl;
525 if (cmd->req_len != sizeof *req)
527 if (cmd->rpl_len != sizeof *rpl)
530 mpr_init_sge(cm, req, &req->SGL);
532 /* Perhaps just asking what the size of the fw is? */
536 req->ImageOffset = 0;
537 req->ImageSize = cmd->len;
539 cm->cm_flags |= MPR_CM_FLAGS_DATAIN;
541 return (mpr_push_ieee_sge(cm, &req->SGL, 0));
545 * Prepare the mpr_command for a SATA_PASSTHROUGH request.
548 mpi_pre_sata_passthrough(struct mpr_command *cm, struct mpr_usr_command *cmd)
550 MPI2_SATA_PASSTHROUGH_REQUEST *req = (void *)cm->cm_req;
551 MPI2_SATA_PASSTHROUGH_REPLY *rpl;
553 if (cmd->req_len != sizeof *req)
555 if (cmd->rpl_len != sizeof *rpl)
558 mpr_init_sge(cm, req, &req->SGL);
563 * Prepare the mpr_command for a SMP_PASSTHROUGH request.
566 mpi_pre_smp_passthrough(struct mpr_command *cm, struct mpr_usr_command *cmd)
568 MPI2_SMP_PASSTHROUGH_REQUEST *req = (void *)cm->cm_req;
569 MPI2_SMP_PASSTHROUGH_REPLY *rpl;
571 if (cmd->req_len != sizeof *req)
573 if (cmd->rpl_len != sizeof *rpl)
576 mpr_init_sge(cm, req, &req->SGL);
581 * Prepare the mpr_command for a CONFIG request.
584 mpi_pre_config(struct mpr_command *cm, struct mpr_usr_command *cmd)
586 MPI2_CONFIG_REQUEST *req = (void *)cm->cm_req;
587 MPI2_CONFIG_REPLY *rpl;
589 if (cmd->req_len != sizeof *req)
591 if (cmd->rpl_len != sizeof *rpl)
594 mpr_init_sge(cm, req, &req->PageBufferSGE);
599 * Prepare the mpr_command for a SAS_IO_UNIT_CONTROL request.
602 mpi_pre_sas_io_unit_control(struct mpr_command *cm,
603 struct mpr_usr_command *cmd)
612 * A set of functions to prepare an mpr_command for the various
613 * supported requests.
615 struct mpr_user_func {
618 } mpr_user_func_list[] = {
619 { MPI2_FUNCTION_IOC_FACTS, mpi_pre_ioc_facts },
620 { MPI2_FUNCTION_PORT_FACTS, mpi_pre_port_facts },
621 { MPI2_FUNCTION_FW_DOWNLOAD, mpi_pre_fw_download },
622 { MPI2_FUNCTION_FW_UPLOAD, mpi_pre_fw_upload },
623 { MPI2_FUNCTION_SATA_PASSTHROUGH, mpi_pre_sata_passthrough },
624 { MPI2_FUNCTION_SMP_PASSTHROUGH, mpi_pre_smp_passthrough},
625 { MPI2_FUNCTION_CONFIG, mpi_pre_config},
626 { MPI2_FUNCTION_SAS_IO_UNIT_CONTROL, mpi_pre_sas_io_unit_control },
627 { 0xFF, NULL } /* list end */
631 mpr_user_setup_request(struct mpr_command *cm, struct mpr_usr_command *cmd)
633 MPI2_REQUEST_HEADER *hdr = (MPI2_REQUEST_HEADER *)cm->cm_req;
634 struct mpr_user_func *f;
636 for (f = mpr_user_func_list; f->f_pre != NULL; f++) {
637 if (hdr->Function == f->Function)
638 return (f->f_pre(cm, cmd));
644 mpr_user_command(struct mpr_softc *sc, struct mpr_usr_command *cmd)
646 MPI2_REQUEST_HEADER *hdr;
647 MPI2_DEFAULT_REPLY *rpl = NULL;
649 struct mpr_command *cm = NULL;
654 cm = mpr_alloc_command(sc);
657 mpr_printf(sc, "%s: no mpr requests\n", __func__);
663 hdr = (MPI2_REQUEST_HEADER *)cm->cm_req;
665 mpr_dprint(sc, MPR_USER, "%s: req %p %d rpl %p %d\n", __func__,
666 cmd->req, cmd->req_len, cmd->rpl, cmd->rpl_len);
668 if (cmd->req_len > (int)sc->reqframesz) {
670 goto RetFreeUnlocked;
672 err = copyin(cmd->req, hdr, cmd->req_len);
674 goto RetFreeUnlocked;
676 mpr_dprint(sc, MPR_USER, "%s: Function %02X MsgFlags %02X\n", __func__,
677 hdr->Function, hdr->MsgFlags);
680 buf = kmalloc(cmd->len, M_MPRUSER, M_WAITOK|M_ZERO);
682 cm->cm_length = cmd->len;
688 cm->cm_flags = MPR_CM_FLAGS_SGE_SIMPLE;
689 cm->cm_desc.Default.RequestFlags = MPI2_REQ_DESCRIPT_FLAGS_DEFAULT_TYPE;
691 err = mpr_user_setup_request(cm, cmd);
693 mpr_printf(sc, "%s: unsupported parameter or unsupported "
694 "function in request (function = 0x%X)\n", __func__,
698 goto RetFreeUnlocked;
701 err = mpr_wait_command(sc, &cm, 30, CAN_SLEEP);
703 if (err || (cm == NULL)) {
704 mpr_printf(sc, "%s: invalid request: error %d\n",
710 rpl = (MPI2_DEFAULT_REPLY *)cm->cm_reply;
712 sz = rpl->MsgLength * 4;
716 if (sz > cmd->rpl_len) {
717 mpr_printf(sc, "%s: user reply buffer (%d) smaller than "
718 "returned buffer (%d)\n", __func__, cmd->rpl_len, sz);
723 copyout(rpl, cmd->rpl, sz);
725 copyout(buf, cmd->buf, cmd->len);
726 mpr_dprint(sc, MPR_USER, "%s: reply size %d\n", __func__, sz);
732 mpr_free_command(sc, cm);
735 kfree(buf, M_MPRUSER);
740 mpr_user_pass_thru(struct mpr_softc *sc, mpr_pass_thru_t *data)
742 MPI2_REQUEST_HEADER *hdr, tmphdr;
743 MPI2_DEFAULT_REPLY *rpl;
744 Mpi26NVMeEncapsulatedErrorReply_t *nvme_error_reply = NULL;
745 Mpi26NVMeEncapsulatedRequest_t *nvme_encap_request = NULL;
746 struct mpr_command *cm = NULL;
747 int i, err = 0, dir = 0, sz;
748 uint8_t tool, function = 0;
750 struct mprsas_target *targ = NULL;
753 * Only allow one passthru command at a time. Use the MPR_FLAGS_BUSY
754 * bit to denote that a passthru is being processed.
757 if (sc->mpr_flags & MPR_FLAGS_BUSY) {
758 mpr_dprint(sc, MPR_USER, "%s: Only one passthru command "
759 "allowed at a single time.", __func__);
763 sc->mpr_flags |= MPR_FLAGS_BUSY;
767 * Do some validation on data direction. Valid cases are:
768 * 1) DataSize is 0 and direction is NONE
769 * 2) DataSize is non-zero and one of:
770 * a) direction is READ or
771 * b) direction is WRITE or
772 * c) direction is BOTH and DataOutSize is non-zero
773 * If valid and the direction is BOTH, change the direction to READ.
774 * if valid and the direction is not BOTH, make sure DataOutSize is 0.
776 if (((data->DataSize == 0) &&
777 (data->DataDirection == MPR_PASS_THRU_DIRECTION_NONE)) ||
778 ((data->DataSize != 0) &&
779 ((data->DataDirection == MPR_PASS_THRU_DIRECTION_READ) ||
780 (data->DataDirection == MPR_PASS_THRU_DIRECTION_WRITE) ||
781 ((data->DataDirection == MPR_PASS_THRU_DIRECTION_BOTH) &&
782 (data->DataOutSize != 0))))) {
783 if (data->DataDirection == MPR_PASS_THRU_DIRECTION_BOTH)
784 data->DataDirection = MPR_PASS_THRU_DIRECTION_READ;
786 data->DataOutSize = 0;
790 mpr_dprint(sc, MPR_USER, "%s: req 0x%jx %d rpl 0x%jx %d "
791 "data in 0x%jx %d data out 0x%jx %d data dir %d\n", __func__,
792 data->PtrRequest, data->RequestSize, data->PtrReply,
793 data->ReplySize, data->PtrData, data->DataSize,
794 data->PtrDataOut, data->DataOutSize, data->DataDirection);
797 * copy in the header so we know what we're dealing with before we
798 * commit to allocating a command for it.
800 err = copyin(PTRIN(data->PtrRequest), &tmphdr, data->RequestSize);
802 goto RetFreeUnlocked;
804 if (data->RequestSize > (int)sc->reqframesz) {
806 goto RetFreeUnlocked;
809 function = tmphdr.Function;
810 mpr_dprint(sc, MPR_USER, "%s: Function %02X MsgFlags %02X\n", __func__,
811 function, tmphdr.MsgFlags);
814 * Handle a passthru TM request.
816 if (function == MPI2_FUNCTION_SCSI_TASK_MGMT) {
817 MPI2_SCSI_TASK_MANAGE_REQUEST *task;
820 cm = mprsas_alloc_tm(sc);
826 /* Copy the header in. Only a small fixup is needed. */
827 task = (MPI2_SCSI_TASK_MANAGE_REQUEST *)cm->cm_req;
828 bcopy(&tmphdr, task, data->RequestSize);
829 task->TaskMID = cm->cm_desc.Default.SMID;
832 cm->cm_desc.HighPriority.RequestFlags =
833 MPI2_REQ_DESCRIPT_FLAGS_HIGH_PRIORITY;
834 cm->cm_complete = NULL;
835 cm->cm_complete_data = NULL;
837 targ = mprsas_find_target_by_handle(sc->sassc, 0,
840 mpr_dprint(sc, MPR_INFO,
841 "%s %d : invalid handle for requested TM 0x%x \n",
842 __func__, __LINE__, task->DevHandle);
845 mprsas_prepare_for_tm(sc, cm, targ, CAM_LUN_WILDCARD);
846 err = mpr_wait_command(sc, &cm, 30, CAN_SLEEP);
851 mpr_dprint(sc, MPR_FAULT, "%s: task management failed",
855 * Copy the reply data and sense data to user space.
857 if ((cm != NULL) && (cm->cm_reply != NULL)) {
858 rpl = (MPI2_DEFAULT_REPLY *)cm->cm_reply;
859 sz = rpl->MsgLength * 4;
861 if (sz > data->ReplySize) {
862 mpr_printf(sc, "%s: user reply buffer (%d) "
863 "smaller than returned buffer (%d)\n",
864 __func__, data->ReplySize, sz);
867 copyout(cm->cm_reply, PTRIN(data->PtrReply),
871 mprsas_free_tm(sc, cm);
876 cm = mpr_alloc_command(sc);
879 mpr_printf(sc, "%s: no mpr requests\n", __func__);
885 hdr = (MPI2_REQUEST_HEADER *)cm->cm_req;
886 bcopy(&tmphdr, hdr, data->RequestSize);
889 * Do some checking to make sure the IOCTL request contains a valid
890 * request. Then set the SGL info.
892 mpr_init_sge(cm, hdr, (void *)((uint8_t *)hdr + data->RequestSize));
895 * Set up for read, write or both. From check above, DataOutSize will
896 * be 0 if direction is READ or WRITE, but it will have some non-zero
897 * value if the direction is BOTH. So, just use the biggest size to get
898 * the cm_data buffer size. If direction is BOTH, 2 SGLs need to be set
899 * up; the first is for the request and the second will contain the
900 * response data. cm_out_len needs to be set here and this will be used
901 * when the SGLs are set up.
904 cm->cm_length = MAX(data->DataSize, data->DataOutSize);
905 cm->cm_out_len = data->DataOutSize;
907 if (cm->cm_length != 0) {
908 cm->cm_data = kmalloc(cm->cm_length, M_MPRUSER, M_WAITOK |
910 cm->cm_flags = MPR_CM_FLAGS_DATAIN;
911 if (data->DataOutSize) {
912 cm->cm_flags |= MPR_CM_FLAGS_DATAOUT;
913 err = copyin(PTRIN(data->PtrDataOut),
914 cm->cm_data, data->DataOutSize);
915 } else if (data->DataDirection ==
916 MPR_PASS_THRU_DIRECTION_WRITE) {
917 cm->cm_flags = MPR_CM_FLAGS_DATAOUT;
918 err = copyin(PTRIN(data->PtrData),
919 cm->cm_data, data->DataSize);
922 mpr_dprint(sc, MPR_FAULT, "%s: failed to copy IOCTL "
923 "data from user space\n", __func__);
926 * Set this flag only if processing a command that does not need an
927 * IEEE SGL. The CLI Tool within the Toolbox uses IEEE SGLs, so clear
928 * the flag only for that tool if processing a Toolbox function.
930 cm->cm_flags |= MPR_CM_FLAGS_SGE_SIMPLE;
931 for (i = 0; i < sizeof (ieee_sgl_func_list); i++) {
932 if (function == ieee_sgl_func_list[i]) {
933 if (function == MPI2_FUNCTION_TOOLBOX)
935 tool = (uint8_t)hdr->FunctionDependent1;
936 if (tool != MPI2_TOOLBOX_DIAGNOSTIC_CLI_TOOL)
939 cm->cm_flags &= ~MPR_CM_FLAGS_SGE_SIMPLE;
943 cm->cm_desc.Default.RequestFlags = MPI2_REQ_DESCRIPT_FLAGS_DEFAULT_TYPE;
945 if (function == MPI2_FUNCTION_NVME_ENCAPSULATED) {
947 (Mpi26NVMeEncapsulatedRequest_t *)cm->cm_req;
948 cm->cm_desc.Default.RequestFlags =
949 MPI26_REQ_DESCRIPT_FLAGS_PCIE_ENCAPSULATED;
952 * Get the Physical Address of the sense buffer.
953 * Save the user's Error Response buffer address and use that
954 * field to hold the sense buffer address.
955 * Clear the internal sense buffer, which will potentially hold
956 * the Completion Queue Entry on return, or 0 if no Entry.
957 * Build the PRPs and set direction bits.
960 cm->nvme_error_response =
961 (uint64_t *)(uintptr_t)(((uint64_t)nvme_encap_request->
962 ErrorResponseBaseAddress.High << 32) |
963 (uint64_t)nvme_encap_request->
964 ErrorResponseBaseAddress.Low);
965 nvme_encap_request->ErrorResponseBaseAddress.High =
966 htole32((uint32_t)((uint64_t)cm->cm_sense_busaddr >> 32));
967 nvme_encap_request->ErrorResponseBaseAddress.Low =
968 htole32(cm->cm_sense_busaddr);
969 memset(cm->cm_sense, 0, NVME_ERROR_RESPONSE_SIZE);
970 mpr_build_nvme_prp(sc, cm, nvme_encap_request, cm->cm_data,
971 data->DataSize, data->DataOutSize);
975 * Set up Sense buffer and SGL offset for IO passthru. SCSI IO request
976 * uses SCSI IO or Fast Path SCSI IO descriptor.
978 if ((function == MPI2_FUNCTION_SCSI_IO_REQUEST) ||
979 (function == MPI2_FUNCTION_RAID_SCSI_IO_PASSTHROUGH)) {
980 MPI2_SCSI_IO_REQUEST *scsi_io_req;
982 scsi_io_req = (MPI2_SCSI_IO_REQUEST *)hdr;
984 * Put SGE for data and data_out buffer at the end of
985 * scsi_io_request message header (64 bytes in total).
986 * Following above SGEs, the residual space will be used by
989 scsi_io_req->SenseBufferLength = (uint8_t)(data->RequestSize -
991 scsi_io_req->SenseBufferLowAddress =
992 htole32(cm->cm_sense_busaddr);
995 * Set SGLOffset0 value. This is the number of dwords that SGL
996 * is offset from the beginning of MPI2_SCSI_IO_REQUEST struct.
998 scsi_io_req->SGLOffset0 = 24;
1001 * Setup descriptor info. RAID passthrough must use the
1002 * default request descriptor which is already set, so if this
1003 * is a SCSI IO request, change the descriptor to SCSI IO or
1004 * Fast Path SCSI IO. Also, if this is a SCSI IO request,
1005 * handle the reply in the mprsas_scsio_complete function.
1007 if (function == MPI2_FUNCTION_SCSI_IO_REQUEST) {
1008 targ = mprsas_find_target_by_handle(sc->sassc, 0,
1009 scsi_io_req->DevHandle);
1012 kprintf("No Target found for handle %d\n",
1013 scsi_io_req->DevHandle);
1015 goto RetFreeUnlocked;
1018 if (targ->scsi_req_desc_type ==
1019 MPI25_REQ_DESCRIPT_FLAGS_FAST_PATH_SCSI_IO) {
1020 cm->cm_desc.FastPathSCSIIO.RequestFlags =
1021 MPI25_REQ_DESCRIPT_FLAGS_FAST_PATH_SCSI_IO;
1022 if (!sc->atomic_desc_capable) {
1023 cm->cm_desc.FastPathSCSIIO.DevHandle =
1024 scsi_io_req->DevHandle;
1026 scsi_io_req->IoFlags |=
1027 MPI25_SCSIIO_IOFLAGS_FAST_PATH;
1029 cm->cm_desc.SCSIIO.RequestFlags =
1030 MPI2_REQ_DESCRIPT_FLAGS_SCSI_IO;
1031 if (!sc->atomic_desc_capable) {
1032 cm->cm_desc.SCSIIO.DevHandle =
1033 scsi_io_req->DevHandle;
1038 * Make sure the DevHandle is not 0 because this is a
1041 if (scsi_io_req->DevHandle == 0) {
1043 goto RetFreeUnlocked;
1050 err = mpr_wait_command(sc, &cm, 30, CAN_SLEEP);
1052 if (err || (cm == NULL)) {
1053 mpr_printf(sc, "%s: invalid request: error %d\n", __func__,
1059 * Sync the DMA data, if any. Then copy the data to user space.
1061 if (cm->cm_data != NULL) {
1062 if (cm->cm_flags & MPR_CM_FLAGS_DATAIN)
1063 dir = BUS_DMASYNC_POSTREAD;
1064 else if (cm->cm_flags & MPR_CM_FLAGS_DATAOUT)
1065 dir = BUS_DMASYNC_POSTWRITE;
1066 bus_dmamap_sync(sc->buffer_dmat, cm->cm_dmamap, dir);
1067 bus_dmamap_unload(sc->buffer_dmat, cm->cm_dmamap);
1069 if (cm->cm_flags & MPR_CM_FLAGS_DATAIN) {
1071 err = copyout(cm->cm_data,
1072 PTRIN(data->PtrData), data->DataSize);
1075 mpr_dprint(sc, MPR_FAULT, "%s: failed to copy "
1076 "IOCTL data to user space\n", __func__);
1081 * Copy the reply data and sense data to user space.
1083 if (cm->cm_reply != NULL) {
1084 rpl = (MPI2_DEFAULT_REPLY *)cm->cm_reply;
1085 sz = rpl->MsgLength * 4;
1087 if (sz > data->ReplySize) {
1088 mpr_printf(sc, "%s: user reply buffer (%d) smaller "
1089 "than returned buffer (%d)\n", __func__,
1090 data->ReplySize, sz);
1093 copyout(cm->cm_reply, PTRIN(data->PtrReply), data->ReplySize);
1096 if ((function == MPI2_FUNCTION_SCSI_IO_REQUEST) ||
1097 (function == MPI2_FUNCTION_RAID_SCSI_IO_PASSTHROUGH)) {
1098 if (((MPI2_SCSI_IO_REPLY *)rpl)->SCSIState &
1099 MPI2_SCSI_STATE_AUTOSENSE_VALID) {
1101 MIN((le32toh(((MPI2_SCSI_IO_REPLY *)rpl)->
1102 SenseCount)), sizeof(struct
1105 copyout(cm->cm_sense, cm->cm_req + 64,
1112 * Copy out the NVMe Error Reponse to user. The Error Response
1113 * buffer is given by the user, but a sense buffer is used to
1114 * get that data from the IOC. The user's
1115 * ErrorResponseBaseAddress is saved in the
1116 * 'nvme_error_response' field before the command because that
1117 * field is set to a sense buffer. When the command is
1118 * complete, the Error Response data from the IOC is copied to
1119 * that user address after it is checked for validity.
1120 * Also note that 'sense' buffers are not defined for
1121 * NVMe commands. Sense terminalogy is only used here so that
1122 * the same IOCTL structure and sense buffers can be used for
1125 if (function == MPI2_FUNCTION_NVME_ENCAPSULATED) {
1126 if (cm->nvme_error_response == NULL) {
1127 mpr_dprint(sc, MPR_INFO, "NVMe Error Response "
1128 "buffer is NULL. Response data will not be "
1131 goto RetFreeUnlocked;
1135 (Mpi26NVMeEncapsulatedErrorReply_t *)cm->cm_reply;
1136 sz = MIN(le32toh(nvme_error_reply->ErrorResponseCount),
1137 NVME_ERROR_RESPONSE_SIZE);
1139 copyout(cm->cm_sense, cm->nvme_error_response, sz);
1151 kfree(cm->cm_data, M_MPRUSER);
1152 mpr_free_command(sc, cm);
1155 sc->mpr_flags &= ~MPR_FLAGS_BUSY;
1162 mpr_user_get_adapter_data(struct mpr_softc *sc, mpr_adapter_data_t *data)
1164 Mpi2ConfigReply_t mpi_reply;
1165 Mpi2BiosPage3_t config_page;
1168 * Use the PCI interface functions to get the Bus, Device, and Function
1171 data->PciInformation.u.bits.BusNumber = pci_get_bus(sc->mpr_dev);
1172 data->PciInformation.u.bits.DeviceNumber = pci_get_slot(sc->mpr_dev);
1173 data->PciInformation.u.bits.FunctionNumber =
1174 pci_get_function(sc->mpr_dev);
1177 * Get the FW version that should already be saved in IOC Facts.
1179 data->MpiFirmwareVersion = sc->facts->FWVersion.Word;
1182 * General device info.
1184 if (sc->mpr_flags & MPR_FLAGS_GEN35_IOC)
1185 data->AdapterType = MPRIOCTL_ADAPTER_TYPE_SAS35;
1187 data->AdapterType = MPRIOCTL_ADAPTER_TYPE_SAS3;
1188 data->PCIDeviceHwId = pci_get_device(sc->mpr_dev);
1189 data->PCIDeviceHwRev = pci_read_config(sc->mpr_dev, PCIR_REVID, 1);
1190 data->SubSystemId = pci_get_subdevice(sc->mpr_dev);
1191 data->SubsystemVendorId = pci_get_subvendor(sc->mpr_dev);
1194 * Get the driver version.
1196 strcpy((char *)&data->DriverVersion[0], MPR_DRIVER_VERSION);
1199 * Need to get BIOS Config Page 3 for the BIOS Version.
1201 data->BiosVersion = 0;
1203 if (mpr_config_get_bios_pg3(sc, &mpi_reply, &config_page))
1204 kprintf("%s: Error while retrieving BIOS Version\n", __func__);
1206 data->BiosVersion = config_page.BiosVersion;
1211 mpr_user_read_pci_info(struct mpr_softc *sc, mpr_pci_info_t *data)
1216 * Use the PCI interface functions to get the Bus, Device, and Function
1219 data->BusNumber = pci_get_bus(sc->mpr_dev);
1220 data->DeviceNumber = pci_get_slot(sc->mpr_dev);
1221 data->FunctionNumber = pci_get_function(sc->mpr_dev);
1224 * Now get the interrupt vector and the pci header. The vector can
1225 * only be 0 right now. The header is the first 256 bytes of config
1228 data->InterruptVector = 0;
1229 for (i = 0; i < sizeof (data->PciHeader); i++) {
1230 data->PciHeader[i] = pci_read_config(sc->mpr_dev, i, 1);
1235 mpr_get_fw_diag_buffer_number(struct mpr_softc *sc, uint32_t unique_id)
1239 for (index = 0; index < MPI2_DIAG_BUF_TYPE_COUNT; index++) {
1240 if (sc->fw_diag_buffer_list[index].unique_id == unique_id) {
1245 return (MPR_FW_DIAGNOSTIC_UID_NOT_FOUND);
1249 mpr_post_fw_diag_buffer(struct mpr_softc *sc,
1250 mpr_fw_diagnostic_buffer_t *pBuffer, uint32_t *return_code)
1252 MPI2_DIAG_BUFFER_POST_REQUEST *req;
1253 MPI2_DIAG_BUFFER_POST_REPLY *reply;
1254 struct mpr_command *cm = NULL;
1258 * If buffer is not enabled, just leave.
1260 *return_code = MPR_FW_DIAG_ERROR_POST_FAILED;
1261 if (!pBuffer->enabled) {
1262 return (MPR_DIAG_FAILURE);
1266 * Clear some flags initially.
1268 pBuffer->force_release = FALSE;
1269 pBuffer->valid_data = FALSE;
1270 pBuffer->owned_by_firmware = FALSE;
1275 cm = mpr_alloc_command(sc);
1277 mpr_printf(sc, "%s: no mpr requests\n", __func__);
1278 return (MPR_DIAG_FAILURE);
1282 * Build the request for releasing the FW Diag Buffer and send it.
1284 req = (MPI2_DIAG_BUFFER_POST_REQUEST *)cm->cm_req;
1285 req->Function = MPI2_FUNCTION_DIAG_BUFFER_POST;
1286 req->BufferType = pBuffer->buffer_type;
1287 req->ExtendedType = pBuffer->extended_type;
1288 req->BufferLength = pBuffer->size;
1289 for (i = 0; i < (sizeof(req->ProductSpecific) / 4); i++)
1290 req->ProductSpecific[i] = pBuffer->product_specific[i];
1291 mpr_from_u64(sc->fw_diag_busaddr, &req->BufferAddress);
1294 cm->cm_desc.Default.RequestFlags = MPI2_REQ_DESCRIPT_FLAGS_DEFAULT_TYPE;
1295 cm->cm_complete_data = NULL;
1298 * Send command synchronously.
1300 status = mpr_wait_command(sc, &cm, 30, CAN_SLEEP);
1301 if (status || (cm == NULL)) {
1302 mpr_printf(sc, "%s: invalid request: error %d\n", __func__,
1304 status = MPR_DIAG_FAILURE;
1309 * Process POST reply.
1311 reply = (MPI2_DIAG_BUFFER_POST_REPLY *)cm->cm_reply;
1312 if (reply == NULL) {
1313 mpr_printf(sc, "%s: reply is NULL, probably due to "
1314 "reinitialization", __func__);
1315 status = MPR_DIAG_FAILURE;
1319 if ((le16toh(reply->IOCStatus) & MPI2_IOCSTATUS_MASK) !=
1320 MPI2_IOCSTATUS_SUCCESS) {
1321 status = MPR_DIAG_FAILURE;
1322 mpr_dprint(sc, MPR_FAULT, "%s: post of FW Diag Buffer failed "
1323 "with IOCStatus = 0x%x, IOCLogInfo = 0x%x and "
1324 "TransferLength = 0x%x\n", __func__,
1325 le16toh(reply->IOCStatus), le32toh(reply->IOCLogInfo),
1326 le32toh(reply->TransferLength));
1331 * Post was successful.
1333 pBuffer->valid_data = TRUE;
1334 pBuffer->owned_by_firmware = TRUE;
1335 *return_code = MPR_FW_DIAG_ERROR_SUCCESS;
1336 status = MPR_DIAG_SUCCESS;
1340 mpr_free_command(sc, cm);
1345 mpr_release_fw_diag_buffer(struct mpr_softc *sc,
1346 mpr_fw_diagnostic_buffer_t *pBuffer, uint32_t *return_code,
1349 MPI2_DIAG_RELEASE_REQUEST *req;
1350 MPI2_DIAG_RELEASE_REPLY *reply;
1351 struct mpr_command *cm = NULL;
1355 * If buffer is not enabled, just leave.
1357 *return_code = MPR_FW_DIAG_ERROR_RELEASE_FAILED;
1358 if (!pBuffer->enabled) {
1359 mpr_dprint(sc, MPR_USER, "%s: This buffer type is not "
1360 "supported by the IOC", __func__);
1361 return (MPR_DIAG_FAILURE);
1365 * Clear some flags initially.
1367 pBuffer->force_release = FALSE;
1368 pBuffer->valid_data = FALSE;
1369 pBuffer->owned_by_firmware = FALSE;
1374 cm = mpr_alloc_command(sc);
1376 mpr_printf(sc, "%s: no mpr requests\n", __func__);
1377 return (MPR_DIAG_FAILURE);
1381 * Build the request for releasing the FW Diag Buffer and send it.
1383 req = (MPI2_DIAG_RELEASE_REQUEST *)cm->cm_req;
1384 req->Function = MPI2_FUNCTION_DIAG_RELEASE;
1385 req->BufferType = pBuffer->buffer_type;
1388 cm->cm_desc.Default.RequestFlags = MPI2_REQ_DESCRIPT_FLAGS_DEFAULT_TYPE;
1389 cm->cm_complete_data = NULL;
1392 * Send command synchronously.
1394 status = mpr_wait_command(sc, &cm, 30, CAN_SLEEP);
1395 if (status || (cm == NULL)) {
1396 mpr_printf(sc, "%s: invalid request: error %d\n", __func__,
1398 status = MPR_DIAG_FAILURE;
1403 * Process RELEASE reply.
1405 reply = (MPI2_DIAG_RELEASE_REPLY *)cm->cm_reply;
1406 if (reply == NULL) {
1407 mpr_printf(sc, "%s: reply is NULL, probably due to "
1408 "reinitialization", __func__);
1409 status = MPR_DIAG_FAILURE;
1412 if (((le16toh(reply->IOCStatus) & MPI2_IOCSTATUS_MASK) !=
1413 MPI2_IOCSTATUS_SUCCESS) || pBuffer->owned_by_firmware) {
1414 status = MPR_DIAG_FAILURE;
1415 mpr_dprint(sc, MPR_FAULT, "%s: release of FW Diag Buffer "
1416 "failed with IOCStatus = 0x%x and IOCLogInfo = 0x%x\n",
1417 __func__, le16toh(reply->IOCStatus),
1418 le32toh(reply->IOCLogInfo));
1423 * Release was successful.
1425 *return_code = MPR_FW_DIAG_ERROR_SUCCESS;
1426 status = MPR_DIAG_SUCCESS;
1429 * If this was for an UNREGISTER diag type command, clear the unique ID.
1431 if (diag_type == MPR_FW_DIAG_TYPE_UNREGISTER) {
1432 pBuffer->unique_id = MPR_FW_DIAG_INVALID_UID;
1437 mpr_free_command(sc, cm);
1443 mpr_diag_register(struct mpr_softc *sc, mpr_fw_diag_register_t *diag_register,
1444 uint32_t *return_code)
1446 mpr_fw_diagnostic_buffer_t *pBuffer;
1447 struct mpr_busdma_context *ctx;
1448 uint8_t extended_type, buffer_type, i;
1449 uint32_t buffer_size;
1454 extended_type = diag_register->ExtendedType;
1455 buffer_type = diag_register->BufferType;
1456 buffer_size = diag_register->RequestedBufferSize;
1457 unique_id = diag_register->UniqueId;
1462 * Check for valid buffer type
1464 if (buffer_type >= MPI2_DIAG_BUF_TYPE_COUNT) {
1465 *return_code = MPR_FW_DIAG_ERROR_INVALID_PARAMETER;
1466 return (MPR_DIAG_FAILURE);
1470 * Get the current buffer and look up the unique ID. The unique ID
1471 * should not be found. If it is, the ID is already in use.
1473 i = mpr_get_fw_diag_buffer_number(sc, unique_id);
1474 pBuffer = &sc->fw_diag_buffer_list[buffer_type];
1475 if (i != MPR_FW_DIAGNOSTIC_UID_NOT_FOUND) {
1476 *return_code = MPR_FW_DIAG_ERROR_INVALID_UID;
1477 return (MPR_DIAG_FAILURE);
1481 * The buffer's unique ID should not be registered yet, and the given
1482 * unique ID cannot be 0.
1484 if ((pBuffer->unique_id != MPR_FW_DIAG_INVALID_UID) ||
1485 (unique_id == MPR_FW_DIAG_INVALID_UID)) {
1486 *return_code = MPR_FW_DIAG_ERROR_INVALID_UID;
1487 return (MPR_DIAG_FAILURE);
1491 * If this buffer is already posted as immediate, just change owner.
1493 if (pBuffer->immediate && pBuffer->owned_by_firmware &&
1494 (pBuffer->unique_id == MPR_FW_DIAG_INVALID_UID)) {
1495 pBuffer->immediate = FALSE;
1496 pBuffer->unique_id = unique_id;
1497 return (MPR_DIAG_SUCCESS);
1501 * Post a new buffer after checking if it's enabled. The DMA buffer
1502 * that is allocated will be contiguous (nsegments = 1).
1504 if (!pBuffer->enabled) {
1505 *return_code = MPR_FW_DIAG_ERROR_NO_BUFFER;
1506 return (MPR_DIAG_FAILURE);
1508 if (bus_dma_tag_create( sc->mpr_parent_dmat, /* parent */
1509 1, 0, /* algnmnt, boundary */
1510 BUS_SPACE_MAXADDR_32BIT,/* lowaddr */
1511 BUS_SPACE_MAXADDR, /* highaddr */
1512 buffer_size, /* maxsize */
1514 buffer_size, /* maxsegsize */
1516 &sc->fw_diag_dmat)) {
1517 mpr_dprint(sc, MPR_ERROR,
1518 "Cannot allocate FW diag buffer DMA tag\n");
1519 *return_code = MPR_FW_DIAG_ERROR_NO_BUFFER;
1520 status = MPR_DIAG_FAILURE;
1523 if (bus_dmamem_alloc(sc->fw_diag_dmat, (void **)&sc->fw_diag_buffer,
1524 BUS_DMA_NOWAIT, &sc->fw_diag_map)) {
1525 mpr_dprint(sc, MPR_ERROR,
1526 "Cannot allocate FW diag buffer memory\n");
1527 *return_code = MPR_FW_DIAG_ERROR_NO_BUFFER;
1528 status = MPR_DIAG_FAILURE;
1531 bzero(sc->fw_diag_buffer, buffer_size);
1533 ctx = kmalloc(sizeof(*ctx), M_MPR, M_WAITOK | M_ZERO);
1535 device_printf(sc->mpr_dev, "%s: context kmalloc failed\n",
1537 *return_code = MPR_FW_DIAG_ERROR_NO_BUFFER;
1538 status = MPR_DIAG_FAILURE;
1541 ctx->addr = &sc->fw_diag_busaddr;
1542 ctx->buffer_dmat = sc->fw_diag_dmat;
1543 ctx->buffer_dmamap = sc->fw_diag_map;
1545 error = bus_dmamap_load(sc->fw_diag_dmat, sc->fw_diag_map,
1546 sc->fw_diag_buffer, buffer_size, mpr_memaddr_wait_cb,
1548 if (error == EINPROGRESS) {
1551 device_printf(sc->mpr_dev, "%s: Deferred bus_dmamap_load\n",
1554 * Wait for the load to complete. If we're interrupted,
1558 if (ctx->completed == 0) {
1559 error = lksleep(ctx, &sc->mpr_lock, PCATCH, "mprwait", 0);
1562 * We got an error from msleep(9). This is
1563 * most likely due to a signal. Tell
1564 * mpr_memaddr_wait_cb() that we've abandoned
1565 * the context, so it needs to clean up when
1570 /* The callback will free this memory */
1574 device_printf(sc->mpr_dev, "Cannot "
1575 "bus_dmamap_load FW diag buffer, error = "
1576 "%d returned from lksleep\n", error);
1577 *return_code = MPR_FW_DIAG_ERROR_NO_BUFFER;
1578 status = MPR_DIAG_FAILURE;
1585 if ((error != 0) || (ctx->error != 0)) {
1586 device_printf(sc->mpr_dev, "Cannot bus_dmamap_load FW diag "
1587 "buffer, %serror = %d\n", error ? "" : "callback ",
1588 error ? error : ctx->error);
1589 *return_code = MPR_FW_DIAG_ERROR_NO_BUFFER;
1590 status = MPR_DIAG_FAILURE;
1594 bus_dmamap_sync(sc->fw_diag_dmat, sc->fw_diag_map, BUS_DMASYNC_PREREAD);
1596 pBuffer->size = buffer_size;
1599 * Copy the given info to the diag buffer and post the buffer.
1601 pBuffer->buffer_type = buffer_type;
1602 pBuffer->immediate = FALSE;
1603 if (buffer_type == MPI2_DIAG_BUF_TYPE_TRACE) {
1604 for (i = 0; i < (sizeof (pBuffer->product_specific) / 4);
1606 pBuffer->product_specific[i] =
1607 diag_register->ProductSpecific[i];
1610 pBuffer->extended_type = extended_type;
1611 pBuffer->unique_id = unique_id;
1612 status = mpr_post_fw_diag_buffer(sc, pBuffer, return_code);
1617 * In case there was a failure, free the DMA buffer.
1619 if (status == MPR_DIAG_FAILURE) {
1620 if (sc->fw_diag_busaddr != 0) {
1621 bus_dmamap_unload(sc->fw_diag_dmat, sc->fw_diag_map);
1622 sc->fw_diag_busaddr = 0;
1624 if (sc->fw_diag_buffer != NULL) {
1625 bus_dmamem_free(sc->fw_diag_dmat, sc->fw_diag_buffer,
1627 sc->fw_diag_buffer = NULL;
1629 if (sc->fw_diag_dmat != NULL) {
1630 bus_dma_tag_destroy(sc->fw_diag_dmat);
1631 sc->fw_diag_dmat = NULL;
1642 mpr_diag_unregister(struct mpr_softc *sc,
1643 mpr_fw_diag_unregister_t *diag_unregister, uint32_t *return_code)
1645 mpr_fw_diagnostic_buffer_t *pBuffer;
1650 unique_id = diag_unregister->UniqueId;
1653 * Get the current buffer and look up the unique ID. The unique ID
1656 i = mpr_get_fw_diag_buffer_number(sc, unique_id);
1657 if (i == MPR_FW_DIAGNOSTIC_UID_NOT_FOUND) {
1658 *return_code = MPR_FW_DIAG_ERROR_INVALID_UID;
1659 return (MPR_DIAG_FAILURE);
1662 pBuffer = &sc->fw_diag_buffer_list[i];
1665 * Try to release the buffer from FW before freeing it. If release
1666 * fails, don't free the DMA buffer in case FW tries to access it
1667 * later. If buffer is not owned by firmware, can't release it.
1669 if (!pBuffer->owned_by_firmware) {
1670 status = MPR_DIAG_SUCCESS;
1672 status = mpr_release_fw_diag_buffer(sc, pBuffer, return_code,
1673 MPR_FW_DIAG_TYPE_UNREGISTER);
1677 * At this point, return the current status no matter what happens with
1680 pBuffer->unique_id = MPR_FW_DIAG_INVALID_UID;
1681 if (status == MPR_DIAG_SUCCESS) {
1682 if (sc->fw_diag_busaddr != 0) {
1683 bus_dmamap_unload(sc->fw_diag_dmat, sc->fw_diag_map);
1684 sc->fw_diag_busaddr = 0;
1686 if (sc->fw_diag_buffer != NULL) {
1687 bus_dmamem_free(sc->fw_diag_dmat, sc->fw_diag_buffer,
1689 sc->fw_diag_buffer = NULL;
1691 if (sc->fw_diag_dmat != NULL) {
1692 bus_dma_tag_destroy(sc->fw_diag_dmat);
1693 sc->fw_diag_dmat = NULL;
1701 mpr_diag_query(struct mpr_softc *sc, mpr_fw_diag_query_t *diag_query,
1702 uint32_t *return_code)
1704 mpr_fw_diagnostic_buffer_t *pBuffer;
1708 unique_id = diag_query->UniqueId;
1711 * If ID is valid, query on ID.
1712 * If ID is invalid, query on buffer type.
1714 if (unique_id == MPR_FW_DIAG_INVALID_UID) {
1715 i = diag_query->BufferType;
1716 if (i >= MPI2_DIAG_BUF_TYPE_COUNT) {
1717 *return_code = MPR_FW_DIAG_ERROR_INVALID_UID;
1718 return (MPR_DIAG_FAILURE);
1721 i = mpr_get_fw_diag_buffer_number(sc, unique_id);
1722 if (i == MPR_FW_DIAGNOSTIC_UID_NOT_FOUND) {
1723 *return_code = MPR_FW_DIAG_ERROR_INVALID_UID;
1724 return (MPR_DIAG_FAILURE);
1729 * Fill query structure with the diag buffer info.
1731 pBuffer = &sc->fw_diag_buffer_list[i];
1732 diag_query->BufferType = pBuffer->buffer_type;
1733 diag_query->ExtendedType = pBuffer->extended_type;
1734 if (diag_query->BufferType == MPI2_DIAG_BUF_TYPE_TRACE) {
1735 for (i = 0; i < (sizeof(diag_query->ProductSpecific) / 4);
1737 diag_query->ProductSpecific[i] =
1738 pBuffer->product_specific[i];
1741 diag_query->TotalBufferSize = pBuffer->size;
1742 diag_query->DriverAddedBufferSize = 0;
1743 diag_query->UniqueId = pBuffer->unique_id;
1744 diag_query->ApplicationFlags = 0;
1745 diag_query->DiagnosticFlags = 0;
1748 * Set/Clear application flags
1750 if (pBuffer->immediate) {
1751 diag_query->ApplicationFlags &= ~MPR_FW_DIAG_FLAG_APP_OWNED;
1753 diag_query->ApplicationFlags |= MPR_FW_DIAG_FLAG_APP_OWNED;
1755 if (pBuffer->valid_data || pBuffer->owned_by_firmware) {
1756 diag_query->ApplicationFlags |= MPR_FW_DIAG_FLAG_BUFFER_VALID;
1758 diag_query->ApplicationFlags &= ~MPR_FW_DIAG_FLAG_BUFFER_VALID;
1760 if (pBuffer->owned_by_firmware) {
1761 diag_query->ApplicationFlags |=
1762 MPR_FW_DIAG_FLAG_FW_BUFFER_ACCESS;
1764 diag_query->ApplicationFlags &=
1765 ~MPR_FW_DIAG_FLAG_FW_BUFFER_ACCESS;
1768 return (MPR_DIAG_SUCCESS);
1772 mpr_diag_read_buffer(struct mpr_softc *sc,
1773 mpr_diag_read_buffer_t *diag_read_buffer, uint8_t *ioctl_buf,
1774 uint32_t *return_code)
1776 mpr_fw_diagnostic_buffer_t *pBuffer;
1781 unique_id = diag_read_buffer->UniqueId;
1784 * Get the current buffer and look up the unique ID. The unique ID
1787 i = mpr_get_fw_diag_buffer_number(sc, unique_id);
1788 if (i == MPR_FW_DIAGNOSTIC_UID_NOT_FOUND) {
1789 *return_code = MPR_FW_DIAG_ERROR_INVALID_UID;
1790 return (MPR_DIAG_FAILURE);
1793 pBuffer = &sc->fw_diag_buffer_list[i];
1796 * Make sure requested read is within limits
1798 if (diag_read_buffer->StartingOffset + diag_read_buffer->BytesToRead >
1800 *return_code = MPR_FW_DIAG_ERROR_INVALID_PARAMETER;
1801 return (MPR_DIAG_FAILURE);
1804 /* Sync the DMA map before we copy to userland. */
1805 bus_dmamap_sync(sc->fw_diag_dmat, sc->fw_diag_map,
1806 BUS_DMASYNC_POSTREAD);
1809 * Copy the requested data from DMA to the diag_read_buffer. The DMA
1810 * buffer that was allocated is one contiguous buffer.
1812 pData = (uint8_t *)(sc->fw_diag_buffer +
1813 diag_read_buffer->StartingOffset);
1814 if (copyout(pData, ioctl_buf, diag_read_buffer->BytesToRead) != 0)
1815 return (MPR_DIAG_FAILURE);
1816 diag_read_buffer->Status = 0;
1819 * Set or clear the Force Release flag.
1821 if (pBuffer->force_release) {
1822 diag_read_buffer->Flags |= MPR_FW_DIAG_FLAG_FORCE_RELEASE;
1824 diag_read_buffer->Flags &= ~MPR_FW_DIAG_FLAG_FORCE_RELEASE;
1828 * If buffer is to be reregistered, make sure it's not already owned by
1831 status = MPR_DIAG_SUCCESS;
1832 if (!pBuffer->owned_by_firmware) {
1833 if (diag_read_buffer->Flags & MPR_FW_DIAG_FLAG_REREGISTER) {
1834 status = mpr_post_fw_diag_buffer(sc, pBuffer,
1843 mpr_diag_release(struct mpr_softc *sc, mpr_fw_diag_release_t *diag_release,
1844 uint32_t *return_code)
1846 mpr_fw_diagnostic_buffer_t *pBuffer;
1851 unique_id = diag_release->UniqueId;
1854 * Get the current buffer and look up the unique ID. The unique ID
1857 i = mpr_get_fw_diag_buffer_number(sc, unique_id);
1858 if (i == MPR_FW_DIAGNOSTIC_UID_NOT_FOUND) {
1859 *return_code = MPR_FW_DIAG_ERROR_INVALID_UID;
1860 return (MPR_DIAG_FAILURE);
1863 pBuffer = &sc->fw_diag_buffer_list[i];
1866 * If buffer is not owned by firmware, it's already been released.
1868 if (!pBuffer->owned_by_firmware) {
1869 *return_code = MPR_FW_DIAG_ERROR_ALREADY_RELEASED;
1870 return (MPR_DIAG_FAILURE);
1874 * Release the buffer.
1876 status = mpr_release_fw_diag_buffer(sc, pBuffer, return_code,
1877 MPR_FW_DIAG_TYPE_RELEASE);
1882 mpr_do_diag_action(struct mpr_softc *sc, uint32_t action, uint8_t *diag_action,
1883 uint32_t length, uint32_t *return_code)
1885 mpr_fw_diag_register_t diag_register;
1886 mpr_fw_diag_unregister_t diag_unregister;
1887 mpr_fw_diag_query_t diag_query;
1888 mpr_diag_read_buffer_t diag_read_buffer;
1889 mpr_fw_diag_release_t diag_release;
1890 int status = MPR_DIAG_SUCCESS;
1891 uint32_t original_return_code;
1893 original_return_code = *return_code;
1894 *return_code = MPR_FW_DIAG_ERROR_SUCCESS;
1897 case MPR_FW_DIAG_TYPE_REGISTER:
1900 MPR_FW_DIAG_ERROR_INVALID_PARAMETER;
1901 status = MPR_DIAG_FAILURE;
1904 if (copyin(diag_action, &diag_register,
1905 sizeof(diag_register)) != 0)
1906 return (MPR_DIAG_FAILURE);
1907 status = mpr_diag_register(sc, &diag_register,
1911 case MPR_FW_DIAG_TYPE_UNREGISTER:
1912 if (length < sizeof(diag_unregister)) {
1914 MPR_FW_DIAG_ERROR_INVALID_PARAMETER;
1915 status = MPR_DIAG_FAILURE;
1918 if (copyin(diag_action, &diag_unregister,
1919 sizeof(diag_unregister)) != 0)
1920 return (MPR_DIAG_FAILURE);
1921 status = mpr_diag_unregister(sc, &diag_unregister,
1925 case MPR_FW_DIAG_TYPE_QUERY:
1926 if (length < sizeof (diag_query)) {
1928 MPR_FW_DIAG_ERROR_INVALID_PARAMETER;
1929 status = MPR_DIAG_FAILURE;
1932 if (copyin(diag_action, &diag_query, sizeof(diag_query))
1934 return (MPR_DIAG_FAILURE);
1935 status = mpr_diag_query(sc, &diag_query, return_code);
1936 if (status == MPR_DIAG_SUCCESS)
1937 if (copyout(&diag_query, diag_action,
1938 sizeof (diag_query)) != 0)
1939 return (MPR_DIAG_FAILURE);
1942 case MPR_FW_DIAG_TYPE_READ_BUFFER:
1943 if (copyin(diag_action, &diag_read_buffer,
1944 sizeof(diag_read_buffer)) != 0)
1945 return (MPR_DIAG_FAILURE);
1946 if (length < diag_read_buffer.BytesToRead) {
1948 MPR_FW_DIAG_ERROR_INVALID_PARAMETER;
1949 status = MPR_DIAG_FAILURE;
1952 status = mpr_diag_read_buffer(sc, &diag_read_buffer,
1953 PTRIN(diag_read_buffer.PtrDataBuffer),
1955 if (status == MPR_DIAG_SUCCESS) {
1956 if (copyout(&diag_read_buffer, diag_action,
1957 sizeof(diag_read_buffer) -
1958 sizeof(diag_read_buffer.PtrDataBuffer)) !=
1960 return (MPR_DIAG_FAILURE);
1964 case MPR_FW_DIAG_TYPE_RELEASE:
1965 if (length < sizeof(diag_release)) {
1967 MPR_FW_DIAG_ERROR_INVALID_PARAMETER;
1968 status = MPR_DIAG_FAILURE;
1971 if (copyin(diag_action, &diag_release,
1972 sizeof(diag_release)) != 0)
1973 return (MPR_DIAG_FAILURE);
1974 status = mpr_diag_release(sc, &diag_release,
1979 *return_code = MPR_FW_DIAG_ERROR_INVALID_PARAMETER;
1980 status = MPR_DIAG_FAILURE;
1984 if ((status == MPR_DIAG_FAILURE) &&
1985 (original_return_code == MPR_FW_DIAG_NEW) &&
1986 (*return_code != MPR_FW_DIAG_ERROR_SUCCESS))
1987 status = MPR_DIAG_SUCCESS;
1993 mpr_user_diag_action(struct mpr_softc *sc, mpr_diag_action_t *data)
1998 * Only allow one diag action at one time.
2000 if (sc->mpr_flags & MPR_FLAGS_BUSY) {
2001 mpr_dprint(sc, MPR_USER, "%s: Only one FW diag command "
2002 "allowed at a single time.", __func__);
2005 sc->mpr_flags |= MPR_FLAGS_BUSY;
2008 * Send diag action request
2010 if (data->Action == MPR_FW_DIAG_TYPE_REGISTER ||
2011 data->Action == MPR_FW_DIAG_TYPE_UNREGISTER ||
2012 data->Action == MPR_FW_DIAG_TYPE_QUERY ||
2013 data->Action == MPR_FW_DIAG_TYPE_READ_BUFFER ||
2014 data->Action == MPR_FW_DIAG_TYPE_RELEASE) {
2015 status = mpr_do_diag_action(sc, data->Action,
2016 PTRIN(data->PtrDiagAction), data->Length,
2021 sc->mpr_flags &= ~MPR_FLAGS_BUSY;
2026 * Copy the event recording mask and the event queue size out. For
2027 * clarification, the event recording mask (events_to_record) is not the same
2028 * thing as the event mask (event_mask). events_to_record has a bit set for
2029 * every event type that is to be recorded by the driver, and event_mask has a
2030 * bit cleared for every event that is allowed into the driver from the IOC.
2031 * They really have nothing to do with each other.
2034 mpr_user_event_query(struct mpr_softc *sc, mpr_event_query_t *data)
2039 data->Entries = MPR_EVENT_QUEUE_SIZE;
2041 for (i = 0; i < 4; i++) {
2042 data->Types[i] = sc->events_to_record[i];
2048 * Set the driver's event mask according to what's been given. See
2049 * mpr_user_event_query for explanation of the event recording mask and the IOC
2050 * event mask. It's the app's responsibility to enable event logging by setting
2051 * the bits in events_to_record. Initially, no events will be logged.
2054 mpr_user_event_enable(struct mpr_softc *sc, mpr_event_enable_t *data)
2059 for (i = 0; i < 4; i++) {
2060 sc->events_to_record[i] = data->Types[i];
2066 * Copy out the events that have been recorded, up to the max events allowed.
2069 mpr_user_event_report(struct mpr_softc *sc, mpr_event_report_t *data)
2076 if ((size >= sizeof(sc->recorded_events)) && (status == 0)) {
2078 if (copyout((void *)sc->recorded_events,
2079 PTRIN(data->PtrEvents), size) != 0)
2084 * data->Size value is not large enough to copy event data.
2090 * Change size value to match the number of bytes that were copied.
2093 data->Size = sizeof(sc->recorded_events);
2100 * Record events into the driver from the IOC if they are not masked.
2103 mprsas_record_event(struct mpr_softc *sc,
2104 MPI2_EVENT_NOTIFICATION_REPLY *event_reply)
2108 uint16_t event_data_len;
2109 boolean_t sendAEN = FALSE;
2111 event = event_reply->Event;
2114 * Generate a system event to let anyone who cares know that a
2115 * LOG_ENTRY_ADDED event has occurred. This is sent no matter what the
2116 * event mask is set to.
2118 if (event == MPI2_EVENT_LOG_ENTRY_ADDED) {
2123 * Record the event only if its corresponding bit is set in
2124 * events_to_record. event_index is the index into recorded_events and
2125 * event_number is the overall number of an event being recorded since
2126 * start-of-day. event_index will roll over; event_number will never
2129 i = (uint8_t)(event / 32);
2130 j = (uint8_t)(event % 32);
2131 if ((i < 4) && ((1 << j) & sc->events_to_record[i])) {
2132 i = sc->event_index;
2133 sc->recorded_events[i].Type = event;
2134 sc->recorded_events[i].Number = ++sc->event_number;
2135 bzero(sc->recorded_events[i].Data, MPR_MAX_EVENT_DATA_LENGTH *
2137 event_data_len = event_reply->EventDataLength;
2139 if (event_data_len > 0) {
2141 * Limit data to size in m_event entry
2143 if (event_data_len > MPR_MAX_EVENT_DATA_LENGTH) {
2144 event_data_len = MPR_MAX_EVENT_DATA_LENGTH;
2146 for (j = 0; j < event_data_len; j++) {
2147 sc->recorded_events[i].Data[j] =
2148 event_reply->EventData[j];
2152 * check for index wrap-around
2154 if (++i == MPR_EVENT_QUEUE_SIZE) {
2157 sc->event_index = (uint8_t)i;
2160 * Set flag to send the event.
2167 * Generate a system event if flag is set to let anyone who cares know
2168 * that an event has occurred.
2171 //SLM-how to send a system event (see kqueue, kevent)
2172 // (void) ddi_log_sysevent(mpt->m_dip, DDI_VENDOR_LSI, "MPT_SAS",
2173 // "SAS", NULL, NULL, DDI_NOSLEEP);
2178 mpr_user_reg_access(struct mpr_softc *sc, mpr_reg_access_t *data)
2182 switch (data->Command) {
2184 * IO access is not supported.
2188 mpr_dprint(sc, MPR_USER, "IO access is not supported. "
2189 "Use memory access.");
2194 data->RegData = mpr_regread(sc, data->RegOffset);
2198 mpr_regwrite(sc, data->RegOffset, data->RegData);
2210 mpr_user_btdh(struct mpr_softc *sc, mpr_btdh_mapping_t *data)
2212 uint8_t bt2dh = FALSE;
2213 uint8_t dh2bt = FALSE;
2214 uint16_t dev_handle, bus, target;
2217 target = data->TargetID;
2218 dev_handle = data->DevHandle;
2221 * When DevHandle is 0xFFFF and Bus/Target are not 0xFFFF, use Bus/
2222 * Target to get DevHandle. When Bus/Target are 0xFFFF and DevHandle is
2223 * not 0xFFFF, use DevHandle to get Bus/Target. Anything else is
2226 if ((bus == 0xFFFF) && (target == 0xFFFF) && (dev_handle != 0xFFFF))
2228 if ((dev_handle == 0xFFFF) && (bus != 0xFFFF) && (target != 0xFFFF))
2230 if (!dh2bt && !bt2dh)
2234 * Only handle bus of 0. Make sure target is within range.
2240 if (target > sc->max_devices) {
2241 mpr_dprint(sc, MPR_XINFO, "Target ID is out of range "
2242 "for Bus/Target to DevHandle mapping.");
2245 dev_handle = sc->mapping_table[target].dev_handle;
2247 data->DevHandle = dev_handle;
2250 target = mpr_mapping_get_tid_from_handle(sc, dev_handle);
2252 data->TargetID = target;
2259 mpr_ioctl(struct cdev *dev, u_long cmd, void *arg, int flag)
2261 struct mpr_softc *sc;
2262 struct mpr_cfg_page_req *page_req;
2263 struct mpr_ext_cfg_page_req *ext_page_req;
2265 int error, msleep_ret;
2269 page_req = (void *)arg;
2270 ext_page_req = (void *)arg;
2273 case MPRIO_READ_CFG_HEADER:
2275 error = mpr_user_read_cfg_header(sc, page_req);
2278 case MPRIO_READ_CFG_PAGE:
2279 mpr_page = kmalloc(page_req->len, M_MPRUSER, M_WAITOK | M_ZERO);
2280 error = copyin(page_req->buf, mpr_page,
2281 sizeof(MPI2_CONFIG_PAGE_HEADER));
2285 error = mpr_user_read_cfg_page(sc, page_req, mpr_page);
2289 error = copyout(mpr_page, page_req->buf, page_req->len);
2291 case MPRIO_READ_EXT_CFG_HEADER:
2293 error = mpr_user_read_extcfg_header(sc, ext_page_req);
2296 case MPRIO_READ_EXT_CFG_PAGE:
2297 mpr_page = kmalloc(ext_page_req->len, M_MPRUSER,
2299 error = copyin(ext_page_req->buf, mpr_page,
2300 sizeof(MPI2_CONFIG_EXTENDED_PAGE_HEADER));
2304 error = mpr_user_read_extcfg_page(sc, ext_page_req, mpr_page);
2308 error = copyout(mpr_page, ext_page_req->buf, ext_page_req->len);
2310 case MPRIO_WRITE_CFG_PAGE:
2311 mpr_page = kmalloc(page_req->len, M_MPRUSER, M_WAITOK|M_ZERO);
2312 error = copyin(page_req->buf, mpr_page, page_req->len);
2316 error = mpr_user_write_cfg_page(sc, page_req, mpr_page);
2319 case MPRIO_MPR_COMMAND:
2320 error = mpr_user_command(sc, (struct mpr_usr_command *)arg);
2322 case MPTIOCTL_PASS_THRU:
2324 * The user has requested to pass through a command to be
2325 * executed by the MPT firmware. Call our routine which does
2326 * this. Only allow one passthru IOCTL at one time.
2328 error = mpr_user_pass_thru(sc, (mpr_pass_thru_t *)arg);
2330 case MPTIOCTL_GET_ADAPTER_DATA:
2332 * The user has requested to read adapter data. Call our
2333 * routine which does this.
2336 mpr_user_get_adapter_data(sc, (mpr_adapter_data_t *)arg);
2338 case MPTIOCTL_GET_PCI_INFO:
2340 * The user has requested to read pci info. Call
2341 * our routine which does this.
2345 mpr_user_read_pci_info(sc, (mpr_pci_info_t *)arg);
2348 case MPTIOCTL_RESET_ADAPTER:
2350 sc->port_enable_complete = 0;
2351 uint32_t reinit_start = time_uptime;
2352 error = mpr_reinit(sc);
2353 /* Sleep for 300 second. */
2354 msleep_ret = lksleep(&sc->port_enable_complete, &sc->mpr_lock,
2355 0, "mpr_porten", 300 * hz);
2358 kprintf("Port Enable did not complete after Diag "
2359 "Reset lksleep error %d.\n", msleep_ret);
2361 mpr_dprint(sc, MPR_USER, "Hard Reset with Port Enable "
2362 "completed in %d seconds.\n",
2363 (uint32_t)(time_uptime - reinit_start));
2365 case MPTIOCTL_DIAG_ACTION:
2367 * The user has done a diag buffer action. Call our routine
2368 * which does this. Only allow one diag action at one time.
2371 error = mpr_user_diag_action(sc, (mpr_diag_action_t *)arg);
2374 case MPTIOCTL_EVENT_QUERY:
2376 * The user has done an event query. Call our routine which does
2380 mpr_user_event_query(sc, (mpr_event_query_t *)arg);
2382 case MPTIOCTL_EVENT_ENABLE:
2384 * The user has done an event enable. Call our routine which
2388 mpr_user_event_enable(sc, (mpr_event_enable_t *)arg);
2390 case MPTIOCTL_EVENT_REPORT:
2392 * The user has done an event report. Call our routine which
2395 error = mpr_user_event_report(sc, (mpr_event_report_t *)arg);
2397 case MPTIOCTL_REG_ACCESS:
2399 * The user has requested register access. Call our routine
2403 error = mpr_user_reg_access(sc, (mpr_reg_access_t *)arg);
2406 case MPTIOCTL_BTDH_MAPPING:
2408 * The user has requested to translate a bus/target to a
2409 * DevHandle or a DevHandle to a bus/target. Call our routine
2412 error = mpr_user_btdh(sc, (mpr_btdh_mapping_t *)arg);
2419 if (mpr_page != NULL)
2420 kfree(mpr_page, M_MPRUSER);
2425 #ifdef COMPAT_FREEBSD32
2427 struct mpr_cfg_page_req32 {
2428 MPI2_CONFIG_PAGE_HEADER header;
2429 uint32_t page_address;
2432 uint16_t ioc_status;
2435 struct mpr_ext_cfg_page_req32 {
2436 MPI2_CONFIG_EXTENDED_PAGE_HEADER header;
2437 uint32_t page_address;
2440 uint16_t ioc_status;
2443 struct mpr_raid_action32 {
2447 uint8_t phys_disk_num;
2448 uint32_t action_data_word;
2451 uint32_t volume_status;
2452 uint32_t action_data[4];
2453 uint16_t action_status;
2454 uint16_t ioc_status;
2458 struct mpr_usr_command32 {
2468 #define MPRIO_READ_CFG_HEADER32 _IOWR('M', 200, struct mpr_cfg_page_req32)
2469 #define MPRIO_READ_CFG_PAGE32 _IOWR('M', 201, struct mpr_cfg_page_req32)
2470 #define MPRIO_READ_EXT_CFG_HEADER32 _IOWR('M', 202, struct mpr_ext_cfg_page_req32)
2471 #define MPRIO_READ_EXT_CFG_PAGE32 _IOWR('M', 203, struct mpr_ext_cfg_page_req32)
2472 #define MPRIO_WRITE_CFG_PAGE32 _IOWR('M', 204, struct mpr_cfg_page_req32)
2473 #define MPRIO_RAID_ACTION32 _IOWR('M', 205, struct mpr_raid_action32)
2474 #define MPRIO_MPR_COMMAND32 _IOWR('M', 210, struct mpr_usr_command32)
2477 mpr_ioctl32(struct cdev *dev, u_long cmd32, void *_arg, int flag,
2480 struct mpr_cfg_page_req32 *page32 = _arg;
2481 struct mpr_ext_cfg_page_req32 *ext32 = _arg;
2482 struct mpr_raid_action32 *raid32 = _arg;
2483 struct mpr_usr_command32 *user32 = _arg;
2485 struct mpr_cfg_page_req page;
2486 struct mpr_ext_cfg_page_req ext;
2487 struct mpr_raid_action raid;
2488 struct mpr_usr_command user;
2494 case MPRIO_READ_CFG_HEADER32:
2495 case MPRIO_READ_CFG_PAGE32:
2496 case MPRIO_WRITE_CFG_PAGE32:
2497 if (cmd32 == MPRIO_READ_CFG_HEADER32)
2498 cmd = MPRIO_READ_CFG_HEADER;
2499 else if (cmd32 == MPRIO_READ_CFG_PAGE32)
2500 cmd = MPRIO_READ_CFG_PAGE;
2502 cmd = MPRIO_WRITE_CFG_PAGE;
2503 CP(*page32, arg.page, header);
2504 CP(*page32, arg.page, page_address);
2505 PTRIN_CP(*page32, arg.page, buf);
2506 CP(*page32, arg.page, len);
2507 CP(*page32, arg.page, ioc_status);
2510 case MPRIO_READ_EXT_CFG_HEADER32:
2511 case MPRIO_READ_EXT_CFG_PAGE32:
2512 if (cmd32 == MPRIO_READ_EXT_CFG_HEADER32)
2513 cmd = MPRIO_READ_EXT_CFG_HEADER;
2515 cmd = MPRIO_READ_EXT_CFG_PAGE;
2516 CP(*ext32, arg.ext, header);
2517 CP(*ext32, arg.ext, page_address);
2518 PTRIN_CP(*ext32, arg.ext, buf);
2519 CP(*ext32, arg.ext, len);
2520 CP(*ext32, arg.ext, ioc_status);
2523 case MPRIO_RAID_ACTION32:
2524 cmd = MPRIO_RAID_ACTION;
2525 CP(*raid32, arg.raid, action);
2526 CP(*raid32, arg.raid, volume_bus);
2527 CP(*raid32, arg.raid, volume_id);
2528 CP(*raid32, arg.raid, phys_disk_num);
2529 CP(*raid32, arg.raid, action_data_word);
2530 PTRIN_CP(*raid32, arg.raid, buf);
2531 CP(*raid32, arg.raid, len);
2532 CP(*raid32, arg.raid, volume_status);
2533 bcopy(raid32->action_data, arg.raid.action_data,
2534 sizeof arg.raid.action_data);
2535 CP(*raid32, arg.raid, ioc_status);
2536 CP(*raid32, arg.raid, write);
2539 case MPRIO_MPR_COMMAND32:
2540 cmd = MPRIO_MPR_COMMAND;
2541 PTRIN_CP(*user32, arg.user, req);
2542 CP(*user32, arg.user, req_len);
2543 PTRIN_CP(*user32, arg.user, rpl);
2544 CP(*user32, arg.user, rpl_len);
2545 PTRIN_CP(*user32, arg.user, buf);
2546 CP(*user32, arg.user, len);
2547 CP(*user32, arg.user, flags);
2553 error = mpr_ioctl(dev, cmd, &arg, flag, td);
2554 if (error == 0 && (cmd32 & IOC_OUT) != 0) {
2556 case MPRIO_READ_CFG_HEADER32:
2557 case MPRIO_READ_CFG_PAGE32:
2558 case MPRIO_WRITE_CFG_PAGE32:
2559 CP(arg.page, *page32, header);
2560 CP(arg.page, *page32, page_address);
2561 PTROUT_CP(arg.page, *page32, buf);
2562 CP(arg.page, *page32, len);
2563 CP(arg.page, *page32, ioc_status);
2566 case MPRIO_READ_EXT_CFG_HEADER32:
2567 case MPRIO_READ_EXT_CFG_PAGE32:
2568 CP(arg.ext, *ext32, header);
2569 CP(arg.ext, *ext32, page_address);
2570 PTROUT_CP(arg.ext, *ext32, buf);
2571 CP(arg.ext, *ext32, len);
2572 CP(arg.ext, *ext32, ioc_status);
2575 case MPRIO_RAID_ACTION32:
2576 CP(arg.raid, *raid32, action);
2577 CP(arg.raid, *raid32, volume_bus);
2578 CP(arg.raid, *raid32, volume_id);
2579 CP(arg.raid, *raid32, phys_disk_num);
2580 CP(arg.raid, *raid32, action_data_word);
2581 PTROUT_CP(arg.raid, *raid32, buf);
2582 CP(arg.raid, *raid32, len);
2583 CP(arg.raid, *raid32, volume_status);
2584 bcopy(arg.raid.action_data, raid32->action_data,
2585 sizeof arg.raid.action_data);
2586 CP(arg.raid, *raid32, ioc_status);
2587 CP(arg.raid, *raid32, write);
2590 case MPRIO_MPR_COMMAND32:
2591 PTROUT_CP(arg.user, *user32, req);
2592 CP(arg.user, *user32, req_len);
2593 PTROUT_CP(arg.user, *user32, rpl);
2594 CP(arg.user, *user32, rpl_len);
2595 PTROUT_CP(arg.user, *user32, buf);
2596 CP(arg.user, *user32, len);
2597 CP(arg.user, *user32, flags);
2604 #endif /* COMPAT_FREEBSD32 */
2607 mpr_ioctl_devsw(struct dev_ioctl_args *ap)
2609 cdev_t dev = ap->a_head.a_dev;
2610 u_long cmd = ap->a_cmd;
2611 int flag = ap->a_fflag;
2612 caddr_t arg = ap->a_data;
2614 #ifdef COMPAT_FREEBSD32
2615 if (SV_CURPROC_FLAG(SV_ILP32))
2616 return (mpr_ioctl32(dev, com, arg, flag, td));
2618 return (mpr_ioctl(dev, cmd, arg, flag));