1 /*
2 * Copyright (c) 2005 Topspin Communications. All rights reserved.
3 * Copyright (c) 2005 Intel Corporation. All rights reserved.
4 *
5 * This software is available to you under a choice of one of two
6 * licenses. You may choose to be licensed under the terms of the GNU
7 * General Public License (GPL) Version 2, available from the file
8 * COPYING in the main directory of this source tree, or the
9 * OpenIB.org BSD license below:
10 *
11 * Redistribution and use in source and binary forms, with or
12 * without modification, are permitted provided that the following
13 * conditions are met:
14 *
15 * - Redistributions of source code must retain the above
16 * copyright notice, this list of conditions and the following
17 * disclaimer.
18 *
19 * - Redistributions in binary form must reproduce the above
20 * copyright notice, this list of conditions and the following
21 * disclaimer in the documentation and/or other materials
22 * provided with the distribution.
23 *
24 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
25 * EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
26 * MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
27 * NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS
28 * BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN
29 * ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN
30 * CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
31 * SOFTWARE.
32 */
33
34 #include <linux/completion.h>
35 #include <linux/init.h>
36 #include <linux/fs.h>
37 #include <linux/module.h>
38 #include <linux/device.h>
39 #include <linux/err.h>
40 #include <linux/poll.h>
41 #include <linux/sched.h>
42 #include <linux/file.h>
43 #include <linux/mount.h>
44 #include <linux/cdev.h>
45 #include <linux/idr.h>
46 #include <linux/mutex.h>
47 #include <linux/slab.h>
48
49 #include <linux/nospec.h>
50
51 #include <linux/uaccess.h>
52
53 #include <rdma/ib.h>
54 #include <rdma/ib_cm.h>
55 #include <rdma/ib_user_cm.h>
56 #include <rdma/ib_marshall.h>
57
58 #include "core_priv.h"
59
60 MODULE_AUTHOR("Libor Michalek");
61 MODULE_DESCRIPTION("InfiniBand userspace Connection Manager access");
62 MODULE_LICENSE("Dual BSD/GPL");
63
64 struct ib_ucm_device {
65 int devnum;
66 struct cdev cdev;
67 struct device dev;
68 struct ib_device *ib_dev;
69 };
70
71 struct ib_ucm_file {
72 struct mutex file_mutex;
73 struct file *filp;
74 struct ib_ucm_device *device;
75
76 struct list_head ctxs;
77 struct list_head events;
78 wait_queue_head_t poll_wait;
79 };
80
81 struct ib_ucm_context {
82 int id;
83 struct completion comp;
84 atomic_t ref;
85 int events_reported;
86
87 struct ib_ucm_file *file;
88 struct ib_cm_id *cm_id;
89 __u64 uid;
90
91 struct list_head events; /* list of pending events. */
92 struct list_head file_list; /* member in file ctx list */
93 };
94
95 struct ib_ucm_event {
96 struct ib_ucm_context *ctx;
97 struct list_head file_list; /* member in file event list */
98 struct list_head ctx_list; /* member in ctx event list */
99
100 struct ib_cm_id *cm_id;
101 struct ib_ucm_event_resp resp;
102 void *data;
103 void *info;
104 int data_len;
105 int info_len;
106 };
107
108 enum {
109 IB_UCM_MAJOR = 231,
110 IB_UCM_BASE_MINOR = 224,
111 IB_UCM_MAX_DEVICES = RDMA_MAX_PORTS,
112 IB_UCM_NUM_FIXED_MINOR = 32,
113 IB_UCM_NUM_DYNAMIC_MINOR = IB_UCM_MAX_DEVICES - IB_UCM_NUM_FIXED_MINOR,
114 };
115
116 #define IB_UCM_BASE_DEV MKDEV(IB_UCM_MAJOR, IB_UCM_BASE_MINOR)
117 static dev_t dynamic_ucm_dev;
118
119 static void ib_ucm_add_one(struct ib_device *device);
120 static void ib_ucm_remove_one(struct ib_device *device, void *client_data);
121
122 static struct ib_client ucm_client = {
123 .name = "ucm",
124 .add = ib_ucm_add_one,
125 .remove = ib_ucm_remove_one
126 };
127
128 static DEFINE_MUTEX(ctx_id_mutex);
129 static DEFINE_IDR(ctx_id_table);
130 static DECLARE_BITMAP(dev_map, IB_UCM_MAX_DEVICES);
131
ib_ucm_ctx_get(struct ib_ucm_file * file,int id)132 static struct ib_ucm_context *ib_ucm_ctx_get(struct ib_ucm_file *file, int id)
133 {
134 struct ib_ucm_context *ctx;
135
136 mutex_lock(&ctx_id_mutex);
137 ctx = idr_find(&ctx_id_table, id);
138 if (!ctx)
139 ctx = ERR_PTR(-ENOENT);
140 else if (ctx->file != file)
141 ctx = ERR_PTR(-EINVAL);
142 else
143 atomic_inc(&ctx->ref);
144 mutex_unlock(&ctx_id_mutex);
145
146 return ctx;
147 }
148
ib_ucm_ctx_put(struct ib_ucm_context * ctx)149 static void ib_ucm_ctx_put(struct ib_ucm_context *ctx)
150 {
151 if (atomic_dec_and_test(&ctx->ref))
152 complete(&ctx->comp);
153 }
154
ib_ucm_new_cm_id(int event)155 static inline int ib_ucm_new_cm_id(int event)
156 {
157 return event == IB_CM_REQ_RECEIVED || event == IB_CM_SIDR_REQ_RECEIVED;
158 }
159
ib_ucm_cleanup_events(struct ib_ucm_context * ctx)160 static void ib_ucm_cleanup_events(struct ib_ucm_context *ctx)
161 {
162 struct ib_ucm_event *uevent;
163
164 mutex_lock(&ctx->file->file_mutex);
165 list_del(&ctx->file_list);
166 while (!list_empty(&ctx->events)) {
167
168 uevent = list_entry(ctx->events.next,
169 struct ib_ucm_event, ctx_list);
170 list_del(&uevent->file_list);
171 list_del(&uevent->ctx_list);
172 mutex_unlock(&ctx->file->file_mutex);
173
174 /* clear incoming connections. */
175 if (ib_ucm_new_cm_id(uevent->resp.event))
176 ib_destroy_cm_id(uevent->cm_id);
177
178 kfree(uevent);
179 mutex_lock(&ctx->file->file_mutex);
180 }
181 mutex_unlock(&ctx->file->file_mutex);
182 }
183
ib_ucm_ctx_alloc(struct ib_ucm_file * file)184 static struct ib_ucm_context *ib_ucm_ctx_alloc(struct ib_ucm_file *file)
185 {
186 struct ib_ucm_context *ctx;
187
188 ctx = kzalloc(sizeof *ctx, GFP_KERNEL);
189 if (!ctx)
190 return NULL;
191
192 atomic_set(&ctx->ref, 1);
193 init_completion(&ctx->comp);
194 ctx->file = file;
195 INIT_LIST_HEAD(&ctx->events);
196
197 mutex_lock(&ctx_id_mutex);
198 ctx->id = idr_alloc(&ctx_id_table, ctx, 0, 0, GFP_KERNEL);
199 mutex_unlock(&ctx_id_mutex);
200 if (ctx->id < 0)
201 goto error;
202
203 list_add_tail(&ctx->file_list, &file->ctxs);
204 return ctx;
205
206 error:
207 kfree(ctx);
208 return NULL;
209 }
210
ib_ucm_event_req_get(struct ib_ucm_req_event_resp * ureq,const struct ib_cm_req_event_param * kreq)211 static void ib_ucm_event_req_get(struct ib_ucm_req_event_resp *ureq,
212 const struct ib_cm_req_event_param *kreq)
213 {
214 ureq->remote_ca_guid = kreq->remote_ca_guid;
215 ureq->remote_qkey = kreq->remote_qkey;
216 ureq->remote_qpn = kreq->remote_qpn;
217 ureq->qp_type = kreq->qp_type;
218 ureq->starting_psn = kreq->starting_psn;
219 ureq->responder_resources = kreq->responder_resources;
220 ureq->initiator_depth = kreq->initiator_depth;
221 ureq->local_cm_response_timeout = kreq->local_cm_response_timeout;
222 ureq->flow_control = kreq->flow_control;
223 ureq->remote_cm_response_timeout = kreq->remote_cm_response_timeout;
224 ureq->retry_count = kreq->retry_count;
225 ureq->rnr_retry_count = kreq->rnr_retry_count;
226 ureq->srq = kreq->srq;
227 ureq->port = kreq->port;
228
229 ib_copy_path_rec_to_user(&ureq->primary_path, kreq->primary_path);
230 if (kreq->alternate_path)
231 ib_copy_path_rec_to_user(&ureq->alternate_path,
232 kreq->alternate_path);
233 }
234
ib_ucm_event_rep_get(struct ib_ucm_rep_event_resp * urep,const struct ib_cm_rep_event_param * krep)235 static void ib_ucm_event_rep_get(struct ib_ucm_rep_event_resp *urep,
236 const struct ib_cm_rep_event_param *krep)
237 {
238 urep->remote_ca_guid = krep->remote_ca_guid;
239 urep->remote_qkey = krep->remote_qkey;
240 urep->remote_qpn = krep->remote_qpn;
241 urep->starting_psn = krep->starting_psn;
242 urep->responder_resources = krep->responder_resources;
243 urep->initiator_depth = krep->initiator_depth;
244 urep->target_ack_delay = krep->target_ack_delay;
245 urep->failover_accepted = krep->failover_accepted;
246 urep->flow_control = krep->flow_control;
247 urep->rnr_retry_count = krep->rnr_retry_count;
248 urep->srq = krep->srq;
249 }
250
ib_ucm_event_sidr_rep_get(struct ib_ucm_sidr_rep_event_resp * urep,const struct ib_cm_sidr_rep_event_param * krep)251 static void ib_ucm_event_sidr_rep_get(struct ib_ucm_sidr_rep_event_resp *urep,
252 const struct ib_cm_sidr_rep_event_param *krep)
253 {
254 urep->status = krep->status;
255 urep->qkey = krep->qkey;
256 urep->qpn = krep->qpn;
257 };
258
ib_ucm_event_process(const struct ib_cm_event * evt,struct ib_ucm_event * uvt)259 static int ib_ucm_event_process(const struct ib_cm_event *evt,
260 struct ib_ucm_event *uvt)
261 {
262 void *info = NULL;
263
264 switch (evt->event) {
265 case IB_CM_REQ_RECEIVED:
266 ib_ucm_event_req_get(&uvt->resp.u.req_resp,
267 &evt->param.req_rcvd);
268 uvt->data_len = IB_CM_REQ_PRIVATE_DATA_SIZE;
269 uvt->resp.present = IB_UCM_PRES_PRIMARY;
270 uvt->resp.present |= (evt->param.req_rcvd.alternate_path ?
271 IB_UCM_PRES_ALTERNATE : 0);
272 break;
273 case IB_CM_REP_RECEIVED:
274 ib_ucm_event_rep_get(&uvt->resp.u.rep_resp,
275 &evt->param.rep_rcvd);
276 uvt->data_len = IB_CM_REP_PRIVATE_DATA_SIZE;
277 break;
278 case IB_CM_RTU_RECEIVED:
279 uvt->data_len = IB_CM_RTU_PRIVATE_DATA_SIZE;
280 uvt->resp.u.send_status = evt->param.send_status;
281 break;
282 case IB_CM_DREQ_RECEIVED:
283 uvt->data_len = IB_CM_DREQ_PRIVATE_DATA_SIZE;
284 uvt->resp.u.send_status = evt->param.send_status;
285 break;
286 case IB_CM_DREP_RECEIVED:
287 uvt->data_len = IB_CM_DREP_PRIVATE_DATA_SIZE;
288 uvt->resp.u.send_status = evt->param.send_status;
289 break;
290 case IB_CM_MRA_RECEIVED:
291 uvt->resp.u.mra_resp.timeout =
292 evt->param.mra_rcvd.service_timeout;
293 uvt->data_len = IB_CM_MRA_PRIVATE_DATA_SIZE;
294 break;
295 case IB_CM_REJ_RECEIVED:
296 uvt->resp.u.rej_resp.reason = evt->param.rej_rcvd.reason;
297 uvt->data_len = IB_CM_REJ_PRIVATE_DATA_SIZE;
298 uvt->info_len = evt->param.rej_rcvd.ari_length;
299 info = evt->param.rej_rcvd.ari;
300 break;
301 case IB_CM_LAP_RECEIVED:
302 ib_copy_path_rec_to_user(&uvt->resp.u.lap_resp.path,
303 evt->param.lap_rcvd.alternate_path);
304 uvt->data_len = IB_CM_LAP_PRIVATE_DATA_SIZE;
305 uvt->resp.present = IB_UCM_PRES_ALTERNATE;
306 break;
307 case IB_CM_APR_RECEIVED:
308 uvt->resp.u.apr_resp.status = evt->param.apr_rcvd.ap_status;
309 uvt->data_len = IB_CM_APR_PRIVATE_DATA_SIZE;
310 uvt->info_len = evt->param.apr_rcvd.info_len;
311 info = evt->param.apr_rcvd.apr_info;
312 break;
313 case IB_CM_SIDR_REQ_RECEIVED:
314 uvt->resp.u.sidr_req_resp.pkey =
315 evt->param.sidr_req_rcvd.pkey;
316 uvt->resp.u.sidr_req_resp.port =
317 evt->param.sidr_req_rcvd.port;
318 uvt->data_len = IB_CM_SIDR_REQ_PRIVATE_DATA_SIZE;
319 break;
320 case IB_CM_SIDR_REP_RECEIVED:
321 ib_ucm_event_sidr_rep_get(&uvt->resp.u.sidr_rep_resp,
322 &evt->param.sidr_rep_rcvd);
323 uvt->data_len = IB_CM_SIDR_REP_PRIVATE_DATA_SIZE;
324 uvt->info_len = evt->param.sidr_rep_rcvd.info_len;
325 info = evt->param.sidr_rep_rcvd.info;
326 break;
327 default:
328 uvt->resp.u.send_status = evt->param.send_status;
329 break;
330 }
331
332 if (uvt->data_len) {
333 uvt->data = kmemdup(evt->private_data, uvt->data_len, GFP_KERNEL);
334 if (!uvt->data)
335 goto err1;
336
337 uvt->resp.present |= IB_UCM_PRES_DATA;
338 }
339
340 if (uvt->info_len) {
341 uvt->info = kmemdup(info, uvt->info_len, GFP_KERNEL);
342 if (!uvt->info)
343 goto err2;
344
345 uvt->resp.present |= IB_UCM_PRES_INFO;
346 }
347 return 0;
348
349 err2:
350 kfree(uvt->data);
351 err1:
352 return -ENOMEM;
353 }
354
ib_ucm_event_handler(struct ib_cm_id * cm_id,const struct ib_cm_event * event)355 static int ib_ucm_event_handler(struct ib_cm_id *cm_id,
356 const struct ib_cm_event *event)
357 {
358 struct ib_ucm_event *uevent;
359 struct ib_ucm_context *ctx;
360 int result = 0;
361
362 ctx = cm_id->context;
363
364 uevent = kzalloc(sizeof *uevent, GFP_KERNEL);
365 if (!uevent)
366 goto err1;
367
368 uevent->ctx = ctx;
369 uevent->cm_id = cm_id;
370 uevent->resp.uid = ctx->uid;
371 uevent->resp.id = ctx->id;
372 uevent->resp.event = event->event;
373
374 result = ib_ucm_event_process(event, uevent);
375 if (result)
376 goto err2;
377
378 mutex_lock(&ctx->file->file_mutex);
379 list_add_tail(&uevent->file_list, &ctx->file->events);
380 list_add_tail(&uevent->ctx_list, &ctx->events);
381 wake_up_interruptible(&ctx->file->poll_wait);
382 mutex_unlock(&ctx->file->file_mutex);
383 return 0;
384
385 err2:
386 kfree(uevent);
387 err1:
388 /* Destroy new cm_id's */
389 return ib_ucm_new_cm_id(event->event);
390 }
391
ib_ucm_event(struct ib_ucm_file * file,const char __user * inbuf,int in_len,int out_len)392 static ssize_t ib_ucm_event(struct ib_ucm_file *file,
393 const char __user *inbuf,
394 int in_len, int out_len)
395 {
396 struct ib_ucm_context *ctx;
397 struct ib_ucm_event_get cmd;
398 struct ib_ucm_event *uevent;
399 int result = 0;
400
401 if (out_len < sizeof(struct ib_ucm_event_resp))
402 return -ENOSPC;
403
404 if (copy_from_user(&cmd, inbuf, sizeof(cmd)))
405 return -EFAULT;
406
407 mutex_lock(&file->file_mutex);
408 while (list_empty(&file->events)) {
409 mutex_unlock(&file->file_mutex);
410
411 if (file->filp->f_flags & O_NONBLOCK)
412 return -EAGAIN;
413
414 if (wait_event_interruptible(file->poll_wait,
415 !list_empty(&file->events)))
416 return -ERESTARTSYS;
417
418 mutex_lock(&file->file_mutex);
419 }
420
421 uevent = list_entry(file->events.next, struct ib_ucm_event, file_list);
422
423 if (ib_ucm_new_cm_id(uevent->resp.event)) {
424 ctx = ib_ucm_ctx_alloc(file);
425 if (!ctx) {
426 result = -ENOMEM;
427 goto done;
428 }
429
430 ctx->cm_id = uevent->cm_id;
431 ctx->cm_id->context = ctx;
432 uevent->resp.id = ctx->id;
433 }
434
435 if (copy_to_user(u64_to_user_ptr(cmd.response),
436 &uevent->resp, sizeof(uevent->resp))) {
437 result = -EFAULT;
438 goto done;
439 }
440
441 if (uevent->data) {
442 if (cmd.data_len < uevent->data_len) {
443 result = -ENOMEM;
444 goto done;
445 }
446 if (copy_to_user(u64_to_user_ptr(cmd.data),
447 uevent->data, uevent->data_len)) {
448 result = -EFAULT;
449 goto done;
450 }
451 }
452
453 if (uevent->info) {
454 if (cmd.info_len < uevent->info_len) {
455 result = -ENOMEM;
456 goto done;
457 }
458 if (copy_to_user(u64_to_user_ptr(cmd.info),
459 uevent->info, uevent->info_len)) {
460 result = -EFAULT;
461 goto done;
462 }
463 }
464
465 list_del(&uevent->file_list);
466 list_del(&uevent->ctx_list);
467 uevent->ctx->events_reported++;
468
469 kfree(uevent->data);
470 kfree(uevent->info);
471 kfree(uevent);
472 done:
473 mutex_unlock(&file->file_mutex);
474 return result;
475 }
476
ib_ucm_create_id(struct ib_ucm_file * file,const char __user * inbuf,int in_len,int out_len)477 static ssize_t ib_ucm_create_id(struct ib_ucm_file *file,
478 const char __user *inbuf,
479 int in_len, int out_len)
480 {
481 struct ib_ucm_create_id cmd;
482 struct ib_ucm_create_id_resp resp;
483 struct ib_ucm_context *ctx;
484 int result;
485
486 if (out_len < sizeof(resp))
487 return -ENOSPC;
488
489 if (copy_from_user(&cmd, inbuf, sizeof(cmd)))
490 return -EFAULT;
491
492 mutex_lock(&file->file_mutex);
493 ctx = ib_ucm_ctx_alloc(file);
494 mutex_unlock(&file->file_mutex);
495 if (!ctx)
496 return -ENOMEM;
497
498 ctx->uid = cmd.uid;
499 ctx->cm_id = ib_create_cm_id(file->device->ib_dev,
500 ib_ucm_event_handler, ctx);
501 if (IS_ERR(ctx->cm_id)) {
502 result = PTR_ERR(ctx->cm_id);
503 goto err1;
504 }
505
506 resp.id = ctx->id;
507 if (copy_to_user(u64_to_user_ptr(cmd.response),
508 &resp, sizeof(resp))) {
509 result = -EFAULT;
510 goto err2;
511 }
512 return 0;
513
514 err2:
515 ib_destroy_cm_id(ctx->cm_id);
516 err1:
517 mutex_lock(&ctx_id_mutex);
518 idr_remove(&ctx_id_table, ctx->id);
519 mutex_unlock(&ctx_id_mutex);
520 kfree(ctx);
521 return result;
522 }
523
ib_ucm_destroy_id(struct ib_ucm_file * file,const char __user * inbuf,int in_len,int out_len)524 static ssize_t ib_ucm_destroy_id(struct ib_ucm_file *file,
525 const char __user *inbuf,
526 int in_len, int out_len)
527 {
528 struct ib_ucm_destroy_id cmd;
529 struct ib_ucm_destroy_id_resp resp;
530 struct ib_ucm_context *ctx;
531 int result = 0;
532
533 if (out_len < sizeof(resp))
534 return -ENOSPC;
535
536 if (copy_from_user(&cmd, inbuf, sizeof(cmd)))
537 return -EFAULT;
538
539 mutex_lock(&ctx_id_mutex);
540 ctx = idr_find(&ctx_id_table, cmd.id);
541 if (!ctx)
542 ctx = ERR_PTR(-ENOENT);
543 else if (ctx->file != file)
544 ctx = ERR_PTR(-EINVAL);
545 else
546 idr_remove(&ctx_id_table, ctx->id);
547 mutex_unlock(&ctx_id_mutex);
548
549 if (IS_ERR(ctx))
550 return PTR_ERR(ctx);
551
552 ib_ucm_ctx_put(ctx);
553 wait_for_completion(&ctx->comp);
554
555 /* No new events will be generated after destroying the cm_id. */
556 ib_destroy_cm_id(ctx->cm_id);
557 /* Cleanup events not yet reported to the user. */
558 ib_ucm_cleanup_events(ctx);
559
560 resp.events_reported = ctx->events_reported;
561 if (copy_to_user(u64_to_user_ptr(cmd.response),
562 &resp, sizeof(resp)))
563 result = -EFAULT;
564
565 kfree(ctx);
566 return result;
567 }
568
ib_ucm_attr_id(struct ib_ucm_file * file,const char __user * inbuf,int in_len,int out_len)569 static ssize_t ib_ucm_attr_id(struct ib_ucm_file *file,
570 const char __user *inbuf,
571 int in_len, int out_len)
572 {
573 struct ib_ucm_attr_id_resp resp;
574 struct ib_ucm_attr_id cmd;
575 struct ib_ucm_context *ctx;
576 int result = 0;
577
578 if (out_len < sizeof(resp))
579 return -ENOSPC;
580
581 if (copy_from_user(&cmd, inbuf, sizeof(cmd)))
582 return -EFAULT;
583
584 ctx = ib_ucm_ctx_get(file, cmd.id);
585 if (IS_ERR(ctx))
586 return PTR_ERR(ctx);
587
588 resp.service_id = ctx->cm_id->service_id;
589 resp.service_mask = ctx->cm_id->service_mask;
590 resp.local_id = ctx->cm_id->local_id;
591 resp.remote_id = ctx->cm_id->remote_id;
592
593 if (copy_to_user(u64_to_user_ptr(cmd.response),
594 &resp, sizeof(resp)))
595 result = -EFAULT;
596
597 ib_ucm_ctx_put(ctx);
598 return result;
599 }
600
ib_ucm_init_qp_attr(struct ib_ucm_file * file,const char __user * inbuf,int in_len,int out_len)601 static ssize_t ib_ucm_init_qp_attr(struct ib_ucm_file *file,
602 const char __user *inbuf,
603 int in_len, int out_len)
604 {
605 struct ib_uverbs_qp_attr resp;
606 struct ib_ucm_init_qp_attr cmd;
607 struct ib_ucm_context *ctx;
608 struct ib_qp_attr qp_attr;
609 int result = 0;
610
611 if (out_len < sizeof(resp))
612 return -ENOSPC;
613
614 if (copy_from_user(&cmd, inbuf, sizeof(cmd)))
615 return -EFAULT;
616
617 ctx = ib_ucm_ctx_get(file, cmd.id);
618 if (IS_ERR(ctx))
619 return PTR_ERR(ctx);
620
621 resp.qp_attr_mask = 0;
622 memset(&qp_attr, 0, sizeof qp_attr);
623 qp_attr.qp_state = cmd.qp_state;
624 result = ib_cm_init_qp_attr(ctx->cm_id, &qp_attr, &resp.qp_attr_mask);
625 if (result)
626 goto out;
627
628 ib_copy_qp_attr_to_user(ctx->cm_id->device, &resp, &qp_attr);
629
630 if (copy_to_user(u64_to_user_ptr(cmd.response),
631 &resp, sizeof(resp)))
632 result = -EFAULT;
633
634 out:
635 ib_ucm_ctx_put(ctx);
636 return result;
637 }
638
ucm_validate_listen(__be64 service_id,__be64 service_mask)639 static int ucm_validate_listen(__be64 service_id, __be64 service_mask)
640 {
641 service_id &= service_mask;
642
643 if (((service_id & IB_CMA_SERVICE_ID_MASK) == IB_CMA_SERVICE_ID) ||
644 ((service_id & IB_SDP_SERVICE_ID_MASK) == IB_SDP_SERVICE_ID))
645 return -EINVAL;
646
647 return 0;
648 }
649
ib_ucm_listen(struct ib_ucm_file * file,const char __user * inbuf,int in_len,int out_len)650 static ssize_t ib_ucm_listen(struct ib_ucm_file *file,
651 const char __user *inbuf,
652 int in_len, int out_len)
653 {
654 struct ib_ucm_listen cmd;
655 struct ib_ucm_context *ctx;
656 int result;
657
658 if (copy_from_user(&cmd, inbuf, sizeof(cmd)))
659 return -EFAULT;
660
661 ctx = ib_ucm_ctx_get(file, cmd.id);
662 if (IS_ERR(ctx))
663 return PTR_ERR(ctx);
664
665 result = ucm_validate_listen(cmd.service_id, cmd.service_mask);
666 if (result)
667 goto out;
668
669 result = ib_cm_listen(ctx->cm_id, cmd.service_id, cmd.service_mask);
670 out:
671 ib_ucm_ctx_put(ctx);
672 return result;
673 }
674
ib_ucm_notify(struct ib_ucm_file * file,const char __user * inbuf,int in_len,int out_len)675 static ssize_t ib_ucm_notify(struct ib_ucm_file *file,
676 const char __user *inbuf,
677 int in_len, int out_len)
678 {
679 struct ib_ucm_notify cmd;
680 struct ib_ucm_context *ctx;
681 int result;
682
683 if (copy_from_user(&cmd, inbuf, sizeof(cmd)))
684 return -EFAULT;
685
686 ctx = ib_ucm_ctx_get(file, cmd.id);
687 if (IS_ERR(ctx))
688 return PTR_ERR(ctx);
689
690 result = ib_cm_notify(ctx->cm_id, (enum ib_event_type) cmd.event);
691 ib_ucm_ctx_put(ctx);
692 return result;
693 }
694
ib_ucm_alloc_data(const void ** dest,u64 src,u32 len)695 static int ib_ucm_alloc_data(const void **dest, u64 src, u32 len)
696 {
697 void *data;
698
699 *dest = NULL;
700
701 if (!len)
702 return 0;
703
704 data = memdup_user(u64_to_user_ptr(src), len);
705 if (IS_ERR(data))
706 return PTR_ERR(data);
707
708 *dest = data;
709 return 0;
710 }
711
ib_ucm_path_get(struct sa_path_rec ** path,u64 src)712 static int ib_ucm_path_get(struct sa_path_rec **path, u64 src)
713 {
714 struct ib_user_path_rec upath;
715 struct sa_path_rec *sa_path;
716
717 *path = NULL;
718
719 if (!src)
720 return 0;
721
722 sa_path = kmalloc(sizeof(*sa_path), GFP_KERNEL);
723 if (!sa_path)
724 return -ENOMEM;
725
726 if (copy_from_user(&upath, u64_to_user_ptr(src),
727 sizeof(upath))) {
728
729 kfree(sa_path);
730 return -EFAULT;
731 }
732
733 ib_copy_path_rec_from_user(sa_path, &upath);
734 *path = sa_path;
735 return 0;
736 }
737
ib_ucm_send_req(struct ib_ucm_file * file,const char __user * inbuf,int in_len,int out_len)738 static ssize_t ib_ucm_send_req(struct ib_ucm_file *file,
739 const char __user *inbuf,
740 int in_len, int out_len)
741 {
742 struct ib_cm_req_param param;
743 struct ib_ucm_context *ctx;
744 struct ib_ucm_req cmd;
745 int result;
746
747 param.private_data = NULL;
748 param.primary_path = NULL;
749 param.alternate_path = NULL;
750
751 if (copy_from_user(&cmd, inbuf, sizeof(cmd)))
752 return -EFAULT;
753
754 result = ib_ucm_alloc_data(¶m.private_data, cmd.data, cmd.len);
755 if (result)
756 goto done;
757
758 result = ib_ucm_path_get(¶m.primary_path, cmd.primary_path);
759 if (result)
760 goto done;
761
762 result = ib_ucm_path_get(¶m.alternate_path, cmd.alternate_path);
763 if (result)
764 goto done;
765
766 param.private_data_len = cmd.len;
767 param.service_id = cmd.sid;
768 param.qp_num = cmd.qpn;
769 param.qp_type = cmd.qp_type;
770 param.starting_psn = cmd.psn;
771 param.peer_to_peer = cmd.peer_to_peer;
772 param.responder_resources = cmd.responder_resources;
773 param.initiator_depth = cmd.initiator_depth;
774 param.remote_cm_response_timeout = cmd.remote_cm_response_timeout;
775 param.flow_control = cmd.flow_control;
776 param.local_cm_response_timeout = cmd.local_cm_response_timeout;
777 param.retry_count = cmd.retry_count;
778 param.rnr_retry_count = cmd.rnr_retry_count;
779 param.max_cm_retries = cmd.max_cm_retries;
780 param.srq = cmd.srq;
781
782 ctx = ib_ucm_ctx_get(file, cmd.id);
783 if (!IS_ERR(ctx)) {
784 result = ib_send_cm_req(ctx->cm_id, ¶m);
785 ib_ucm_ctx_put(ctx);
786 } else
787 result = PTR_ERR(ctx);
788
789 done:
790 kfree(param.private_data);
791 kfree(param.primary_path);
792 kfree(param.alternate_path);
793 return result;
794 }
795
ib_ucm_send_rep(struct ib_ucm_file * file,const char __user * inbuf,int in_len,int out_len)796 static ssize_t ib_ucm_send_rep(struct ib_ucm_file *file,
797 const char __user *inbuf,
798 int in_len, int out_len)
799 {
800 struct ib_cm_rep_param param;
801 struct ib_ucm_context *ctx;
802 struct ib_ucm_rep cmd;
803 int result;
804
805 param.private_data = NULL;
806
807 if (copy_from_user(&cmd, inbuf, sizeof(cmd)))
808 return -EFAULT;
809
810 result = ib_ucm_alloc_data(¶m.private_data, cmd.data, cmd.len);
811 if (result)
812 return result;
813
814 param.qp_num = cmd.qpn;
815 param.starting_psn = cmd.psn;
816 param.private_data_len = cmd.len;
817 param.responder_resources = cmd.responder_resources;
818 param.initiator_depth = cmd.initiator_depth;
819 param.failover_accepted = cmd.failover_accepted;
820 param.flow_control = cmd.flow_control;
821 param.rnr_retry_count = cmd.rnr_retry_count;
822 param.srq = cmd.srq;
823
824 ctx = ib_ucm_ctx_get(file, cmd.id);
825 if (!IS_ERR(ctx)) {
826 ctx->uid = cmd.uid;
827 result = ib_send_cm_rep(ctx->cm_id, ¶m);
828 ib_ucm_ctx_put(ctx);
829 } else
830 result = PTR_ERR(ctx);
831
832 kfree(param.private_data);
833 return result;
834 }
835
ib_ucm_send_private_data(struct ib_ucm_file * file,const char __user * inbuf,int in_len,int (* func)(struct ib_cm_id * cm_id,const void * private_data,u8 private_data_len))836 static ssize_t ib_ucm_send_private_data(struct ib_ucm_file *file,
837 const char __user *inbuf, int in_len,
838 int (*func)(struct ib_cm_id *cm_id,
839 const void *private_data,
840 u8 private_data_len))
841 {
842 struct ib_ucm_private_data cmd;
843 struct ib_ucm_context *ctx;
844 const void *private_data = NULL;
845 int result;
846
847 if (copy_from_user(&cmd, inbuf, sizeof(cmd)))
848 return -EFAULT;
849
850 result = ib_ucm_alloc_data(&private_data, cmd.data, cmd.len);
851 if (result)
852 return result;
853
854 ctx = ib_ucm_ctx_get(file, cmd.id);
855 if (!IS_ERR(ctx)) {
856 result = func(ctx->cm_id, private_data, cmd.len);
857 ib_ucm_ctx_put(ctx);
858 } else
859 result = PTR_ERR(ctx);
860
861 kfree(private_data);
862 return result;
863 }
864
ib_ucm_send_rtu(struct ib_ucm_file * file,const char __user * inbuf,int in_len,int out_len)865 static ssize_t ib_ucm_send_rtu(struct ib_ucm_file *file,
866 const char __user *inbuf,
867 int in_len, int out_len)
868 {
869 return ib_ucm_send_private_data(file, inbuf, in_len, ib_send_cm_rtu);
870 }
871
ib_ucm_send_dreq(struct ib_ucm_file * file,const char __user * inbuf,int in_len,int out_len)872 static ssize_t ib_ucm_send_dreq(struct ib_ucm_file *file,
873 const char __user *inbuf,
874 int in_len, int out_len)
875 {
876 return ib_ucm_send_private_data(file, inbuf, in_len, ib_send_cm_dreq);
877 }
878
ib_ucm_send_drep(struct ib_ucm_file * file,const char __user * inbuf,int in_len,int out_len)879 static ssize_t ib_ucm_send_drep(struct ib_ucm_file *file,
880 const char __user *inbuf,
881 int in_len, int out_len)
882 {
883 return ib_ucm_send_private_data(file, inbuf, in_len, ib_send_cm_drep);
884 }
885
ib_ucm_send_info(struct ib_ucm_file * file,const char __user * inbuf,int in_len,int (* func)(struct ib_cm_id * cm_id,int status,const void * info,u8 info_len,const void * data,u8 data_len))886 static ssize_t ib_ucm_send_info(struct ib_ucm_file *file,
887 const char __user *inbuf, int in_len,
888 int (*func)(struct ib_cm_id *cm_id,
889 int status,
890 const void *info,
891 u8 info_len,
892 const void *data,
893 u8 data_len))
894 {
895 struct ib_ucm_context *ctx;
896 struct ib_ucm_info cmd;
897 const void *data = NULL;
898 const void *info = NULL;
899 int result;
900
901 if (copy_from_user(&cmd, inbuf, sizeof(cmd)))
902 return -EFAULT;
903
904 result = ib_ucm_alloc_data(&data, cmd.data, cmd.data_len);
905 if (result)
906 goto done;
907
908 result = ib_ucm_alloc_data(&info, cmd.info, cmd.info_len);
909 if (result)
910 goto done;
911
912 ctx = ib_ucm_ctx_get(file, cmd.id);
913 if (!IS_ERR(ctx)) {
914 result = func(ctx->cm_id, cmd.status, info, cmd.info_len,
915 data, cmd.data_len);
916 ib_ucm_ctx_put(ctx);
917 } else
918 result = PTR_ERR(ctx);
919
920 done:
921 kfree(data);
922 kfree(info);
923 return result;
924 }
925
ib_ucm_send_rej(struct ib_ucm_file * file,const char __user * inbuf,int in_len,int out_len)926 static ssize_t ib_ucm_send_rej(struct ib_ucm_file *file,
927 const char __user *inbuf,
928 int in_len, int out_len)
929 {
930 return ib_ucm_send_info(file, inbuf, in_len, (void *)ib_send_cm_rej);
931 }
932
ib_ucm_send_apr(struct ib_ucm_file * file,const char __user * inbuf,int in_len,int out_len)933 static ssize_t ib_ucm_send_apr(struct ib_ucm_file *file,
934 const char __user *inbuf,
935 int in_len, int out_len)
936 {
937 return ib_ucm_send_info(file, inbuf, in_len, (void *)ib_send_cm_apr);
938 }
939
ib_ucm_send_mra(struct ib_ucm_file * file,const char __user * inbuf,int in_len,int out_len)940 static ssize_t ib_ucm_send_mra(struct ib_ucm_file *file,
941 const char __user *inbuf,
942 int in_len, int out_len)
943 {
944 struct ib_ucm_context *ctx;
945 struct ib_ucm_mra cmd;
946 const void *data = NULL;
947 int result;
948
949 if (copy_from_user(&cmd, inbuf, sizeof(cmd)))
950 return -EFAULT;
951
952 result = ib_ucm_alloc_data(&data, cmd.data, cmd.len);
953 if (result)
954 return result;
955
956 ctx = ib_ucm_ctx_get(file, cmd.id);
957 if (!IS_ERR(ctx)) {
958 result = ib_send_cm_mra(ctx->cm_id, cmd.timeout, data, cmd.len);
959 ib_ucm_ctx_put(ctx);
960 } else
961 result = PTR_ERR(ctx);
962
963 kfree(data);
964 return result;
965 }
966
ib_ucm_send_lap(struct ib_ucm_file * file,const char __user * inbuf,int in_len,int out_len)967 static ssize_t ib_ucm_send_lap(struct ib_ucm_file *file,
968 const char __user *inbuf,
969 int in_len, int out_len)
970 {
971 struct ib_ucm_context *ctx;
972 struct sa_path_rec *path = NULL;
973 struct ib_ucm_lap cmd;
974 const void *data = NULL;
975 int result;
976
977 if (copy_from_user(&cmd, inbuf, sizeof(cmd)))
978 return -EFAULT;
979
980 result = ib_ucm_alloc_data(&data, cmd.data, cmd.len);
981 if (result)
982 goto done;
983
984 result = ib_ucm_path_get(&path, cmd.path);
985 if (result)
986 goto done;
987
988 ctx = ib_ucm_ctx_get(file, cmd.id);
989 if (!IS_ERR(ctx)) {
990 result = ib_send_cm_lap(ctx->cm_id, path, data, cmd.len);
991 ib_ucm_ctx_put(ctx);
992 } else
993 result = PTR_ERR(ctx);
994
995 done:
996 kfree(data);
997 kfree(path);
998 return result;
999 }
1000
ib_ucm_send_sidr_req(struct ib_ucm_file * file,const char __user * inbuf,int in_len,int out_len)1001 static ssize_t ib_ucm_send_sidr_req(struct ib_ucm_file *file,
1002 const char __user *inbuf,
1003 int in_len, int out_len)
1004 {
1005 struct ib_cm_sidr_req_param param = {};
1006 struct ib_ucm_context *ctx;
1007 struct ib_ucm_sidr_req cmd;
1008 int result;
1009
1010 if (copy_from_user(&cmd, inbuf, sizeof(cmd)))
1011 return -EFAULT;
1012
1013 result = ib_ucm_alloc_data(¶m.private_data, cmd.data, cmd.len);
1014 if (result)
1015 goto done;
1016
1017 result = ib_ucm_path_get(¶m.path, cmd.path);
1018 if (result)
1019 goto done;
1020
1021 param.private_data_len = cmd.len;
1022 param.service_id = cmd.sid;
1023 param.timeout_ms = cmd.timeout;
1024 param.max_cm_retries = cmd.max_cm_retries;
1025
1026 ctx = ib_ucm_ctx_get(file, cmd.id);
1027 if (!IS_ERR(ctx)) {
1028 result = ib_send_cm_sidr_req(ctx->cm_id, ¶m);
1029 ib_ucm_ctx_put(ctx);
1030 } else
1031 result = PTR_ERR(ctx);
1032
1033 done:
1034 kfree(param.private_data);
1035 kfree(param.path);
1036 return result;
1037 }
1038
ib_ucm_send_sidr_rep(struct ib_ucm_file * file,const char __user * inbuf,int in_len,int out_len)1039 static ssize_t ib_ucm_send_sidr_rep(struct ib_ucm_file *file,
1040 const char __user *inbuf,
1041 int in_len, int out_len)
1042 {
1043 struct ib_cm_sidr_rep_param param;
1044 struct ib_ucm_sidr_rep cmd;
1045 struct ib_ucm_context *ctx;
1046 int result;
1047
1048 param.info = NULL;
1049
1050 if (copy_from_user(&cmd, inbuf, sizeof(cmd)))
1051 return -EFAULT;
1052
1053 result = ib_ucm_alloc_data(¶m.private_data,
1054 cmd.data, cmd.data_len);
1055 if (result)
1056 goto done;
1057
1058 result = ib_ucm_alloc_data(¶m.info, cmd.info, cmd.info_len);
1059 if (result)
1060 goto done;
1061
1062 param.qp_num = cmd.qpn;
1063 param.qkey = cmd.qkey;
1064 param.status = cmd.status;
1065 param.info_length = cmd.info_len;
1066 param.private_data_len = cmd.data_len;
1067
1068 ctx = ib_ucm_ctx_get(file, cmd.id);
1069 if (!IS_ERR(ctx)) {
1070 result = ib_send_cm_sidr_rep(ctx->cm_id, ¶m);
1071 ib_ucm_ctx_put(ctx);
1072 } else
1073 result = PTR_ERR(ctx);
1074
1075 done:
1076 kfree(param.private_data);
1077 kfree(param.info);
1078 return result;
1079 }
1080
1081 static ssize_t (*ucm_cmd_table[])(struct ib_ucm_file *file,
1082 const char __user *inbuf,
1083 int in_len, int out_len) = {
1084 [IB_USER_CM_CMD_CREATE_ID] = ib_ucm_create_id,
1085 [IB_USER_CM_CMD_DESTROY_ID] = ib_ucm_destroy_id,
1086 [IB_USER_CM_CMD_ATTR_ID] = ib_ucm_attr_id,
1087 [IB_USER_CM_CMD_LISTEN] = ib_ucm_listen,
1088 [IB_USER_CM_CMD_NOTIFY] = ib_ucm_notify,
1089 [IB_USER_CM_CMD_SEND_REQ] = ib_ucm_send_req,
1090 [IB_USER_CM_CMD_SEND_REP] = ib_ucm_send_rep,
1091 [IB_USER_CM_CMD_SEND_RTU] = ib_ucm_send_rtu,
1092 [IB_USER_CM_CMD_SEND_DREQ] = ib_ucm_send_dreq,
1093 [IB_USER_CM_CMD_SEND_DREP] = ib_ucm_send_drep,
1094 [IB_USER_CM_CMD_SEND_REJ] = ib_ucm_send_rej,
1095 [IB_USER_CM_CMD_SEND_MRA] = ib_ucm_send_mra,
1096 [IB_USER_CM_CMD_SEND_LAP] = ib_ucm_send_lap,
1097 [IB_USER_CM_CMD_SEND_APR] = ib_ucm_send_apr,
1098 [IB_USER_CM_CMD_SEND_SIDR_REQ] = ib_ucm_send_sidr_req,
1099 [IB_USER_CM_CMD_SEND_SIDR_REP] = ib_ucm_send_sidr_rep,
1100 [IB_USER_CM_CMD_EVENT] = ib_ucm_event,
1101 [IB_USER_CM_CMD_INIT_QP_ATTR] = ib_ucm_init_qp_attr,
1102 };
1103
ib_ucm_write(struct file * filp,const char __user * buf,size_t len,loff_t * pos)1104 static ssize_t ib_ucm_write(struct file *filp, const char __user *buf,
1105 size_t len, loff_t *pos)
1106 {
1107 struct ib_ucm_file *file = filp->private_data;
1108 struct ib_ucm_cmd_hdr hdr;
1109 ssize_t result;
1110
1111 if (!ib_safe_file_access(filp)) {
1112 pr_err_once("ucm_write: process %d (%s) changed security contexts after opening file descriptor, this is not allowed.\n",
1113 task_tgid_vnr(current), current->comm);
1114 return -EACCES;
1115 }
1116
1117 if (len < sizeof(hdr))
1118 return -EINVAL;
1119
1120 if (copy_from_user(&hdr, buf, sizeof(hdr)))
1121 return -EFAULT;
1122
1123 if (hdr.cmd >= ARRAY_SIZE(ucm_cmd_table))
1124 return -EINVAL;
1125 hdr.cmd = array_index_nospec(hdr.cmd, ARRAY_SIZE(ucm_cmd_table));
1126
1127 if (hdr.in + sizeof(hdr) > len)
1128 return -EINVAL;
1129
1130 result = ucm_cmd_table[hdr.cmd](file, buf + sizeof(hdr),
1131 hdr.in, hdr.out);
1132 if (!result)
1133 result = len;
1134
1135 return result;
1136 }
1137
ib_ucm_poll(struct file * filp,struct poll_table_struct * wait)1138 static __poll_t ib_ucm_poll(struct file *filp,
1139 struct poll_table_struct *wait)
1140 {
1141 struct ib_ucm_file *file = filp->private_data;
1142 __poll_t mask = 0;
1143
1144 poll_wait(filp, &file->poll_wait, wait);
1145
1146 if (!list_empty(&file->events))
1147 mask = EPOLLIN | EPOLLRDNORM;
1148
1149 return mask;
1150 }
1151
1152 /*
1153 * ib_ucm_open() does not need the BKL:
1154 *
1155 * - no global state is referred to;
1156 * - there is no ioctl method to race against;
1157 * - no further module initialization is required for open to work
1158 * after the device is registered.
1159 */
ib_ucm_open(struct inode * inode,struct file * filp)1160 static int ib_ucm_open(struct inode *inode, struct file *filp)
1161 {
1162 struct ib_ucm_file *file;
1163
1164 file = kmalloc(sizeof(*file), GFP_KERNEL);
1165 if (!file)
1166 return -ENOMEM;
1167
1168 INIT_LIST_HEAD(&file->events);
1169 INIT_LIST_HEAD(&file->ctxs);
1170 init_waitqueue_head(&file->poll_wait);
1171
1172 mutex_init(&file->file_mutex);
1173
1174 filp->private_data = file;
1175 file->filp = filp;
1176 file->device = container_of(inode->i_cdev, struct ib_ucm_device, cdev);
1177
1178 return nonseekable_open(inode, filp);
1179 }
1180
ib_ucm_close(struct inode * inode,struct file * filp)1181 static int ib_ucm_close(struct inode *inode, struct file *filp)
1182 {
1183 struct ib_ucm_file *file = filp->private_data;
1184 struct ib_ucm_context *ctx;
1185
1186 mutex_lock(&file->file_mutex);
1187 while (!list_empty(&file->ctxs)) {
1188 ctx = list_entry(file->ctxs.next,
1189 struct ib_ucm_context, file_list);
1190 mutex_unlock(&file->file_mutex);
1191
1192 mutex_lock(&ctx_id_mutex);
1193 idr_remove(&ctx_id_table, ctx->id);
1194 mutex_unlock(&ctx_id_mutex);
1195
1196 ib_destroy_cm_id(ctx->cm_id);
1197 ib_ucm_cleanup_events(ctx);
1198 kfree(ctx);
1199
1200 mutex_lock(&file->file_mutex);
1201 }
1202 mutex_unlock(&file->file_mutex);
1203 kfree(file);
1204 return 0;
1205 }
1206
ib_ucm_release_dev(struct device * dev)1207 static void ib_ucm_release_dev(struct device *dev)
1208 {
1209 struct ib_ucm_device *ucm_dev;
1210
1211 ucm_dev = container_of(dev, struct ib_ucm_device, dev);
1212 kfree(ucm_dev);
1213 }
1214
ib_ucm_free_dev(struct ib_ucm_device * ucm_dev)1215 static void ib_ucm_free_dev(struct ib_ucm_device *ucm_dev)
1216 {
1217 clear_bit(ucm_dev->devnum, dev_map);
1218 }
1219
1220 static const struct file_operations ucm_fops = {
1221 .owner = THIS_MODULE,
1222 .open = ib_ucm_open,
1223 .release = ib_ucm_close,
1224 .write = ib_ucm_write,
1225 .poll = ib_ucm_poll,
1226 .llseek = no_llseek,
1227 };
1228
show_ibdev(struct device * dev,struct device_attribute * attr,char * buf)1229 static ssize_t show_ibdev(struct device *dev, struct device_attribute *attr,
1230 char *buf)
1231 {
1232 struct ib_ucm_device *ucm_dev;
1233
1234 ucm_dev = container_of(dev, struct ib_ucm_device, dev);
1235 return sprintf(buf, "%s\n", ucm_dev->ib_dev->name);
1236 }
1237 static DEVICE_ATTR(ibdev, S_IRUGO, show_ibdev, NULL);
1238
ib_ucm_add_one(struct ib_device * device)1239 static void ib_ucm_add_one(struct ib_device *device)
1240 {
1241 int devnum;
1242 dev_t base;
1243 struct ib_ucm_device *ucm_dev;
1244
1245 if (!device->alloc_ucontext || !rdma_cap_ib_cm(device, 1))
1246 return;
1247
1248 ucm_dev = kzalloc(sizeof *ucm_dev, GFP_KERNEL);
1249 if (!ucm_dev)
1250 return;
1251
1252 device_initialize(&ucm_dev->dev);
1253 ucm_dev->ib_dev = device;
1254 ucm_dev->dev.release = ib_ucm_release_dev;
1255
1256 devnum = find_first_zero_bit(dev_map, IB_UCM_MAX_DEVICES);
1257 if (devnum >= IB_UCM_MAX_DEVICES)
1258 goto err;
1259 ucm_dev->devnum = devnum;
1260 set_bit(devnum, dev_map);
1261 if (devnum >= IB_UCM_NUM_FIXED_MINOR)
1262 base = dynamic_ucm_dev + devnum - IB_UCM_NUM_FIXED_MINOR;
1263 else
1264 base = IB_UCM_BASE_DEV + devnum;
1265
1266 cdev_init(&ucm_dev->cdev, &ucm_fops);
1267 ucm_dev->cdev.owner = THIS_MODULE;
1268 kobject_set_name(&ucm_dev->cdev.kobj, "ucm%d", ucm_dev->devnum);
1269
1270 ucm_dev->dev.class = &cm_class;
1271 ucm_dev->dev.parent = device->dev.parent;
1272 ucm_dev->dev.devt = base;
1273
1274 dev_set_name(&ucm_dev->dev, "ucm%d", ucm_dev->devnum);
1275 if (cdev_device_add(&ucm_dev->cdev, &ucm_dev->dev))
1276 goto err_devnum;
1277
1278 if (device_create_file(&ucm_dev->dev, &dev_attr_ibdev))
1279 goto err_dev;
1280
1281 ib_set_client_data(device, &ucm_client, ucm_dev);
1282 return;
1283
1284 err_dev:
1285 cdev_device_del(&ucm_dev->cdev, &ucm_dev->dev);
1286 err_devnum:
1287 ib_ucm_free_dev(ucm_dev);
1288 err:
1289 put_device(&ucm_dev->dev);
1290 return;
1291 }
1292
ib_ucm_remove_one(struct ib_device * device,void * client_data)1293 static void ib_ucm_remove_one(struct ib_device *device, void *client_data)
1294 {
1295 struct ib_ucm_device *ucm_dev = client_data;
1296
1297 if (!ucm_dev)
1298 return;
1299
1300 cdev_device_del(&ucm_dev->cdev, &ucm_dev->dev);
1301 ib_ucm_free_dev(ucm_dev);
1302 put_device(&ucm_dev->dev);
1303 }
1304
1305 static CLASS_ATTR_STRING(abi_version, S_IRUGO,
1306 __stringify(IB_USER_CM_ABI_VERSION));
1307
ib_ucm_init(void)1308 static int __init ib_ucm_init(void)
1309 {
1310 int ret;
1311
1312 ret = register_chrdev_region(IB_UCM_BASE_DEV, IB_UCM_NUM_FIXED_MINOR,
1313 "infiniband_cm");
1314 if (ret) {
1315 pr_err("ucm: couldn't register device number\n");
1316 goto error1;
1317 }
1318
1319 ret = alloc_chrdev_region(&dynamic_ucm_dev, 0, IB_UCM_NUM_DYNAMIC_MINOR,
1320 "infiniband_cm");
1321 if (ret) {
1322 pr_err("ucm: couldn't register dynamic device number\n");
1323 goto err_alloc;
1324 }
1325
1326 ret = class_create_file(&cm_class, &class_attr_abi_version.attr);
1327 if (ret) {
1328 pr_err("ucm: couldn't create abi_version attribute\n");
1329 goto error2;
1330 }
1331
1332 ret = ib_register_client(&ucm_client);
1333 if (ret) {
1334 pr_err("ucm: couldn't register client\n");
1335 goto error3;
1336 }
1337 return 0;
1338
1339 error3:
1340 class_remove_file(&cm_class, &class_attr_abi_version.attr);
1341 error2:
1342 unregister_chrdev_region(dynamic_ucm_dev, IB_UCM_NUM_DYNAMIC_MINOR);
1343 err_alloc:
1344 unregister_chrdev_region(IB_UCM_BASE_DEV, IB_UCM_NUM_FIXED_MINOR);
1345 error1:
1346 return ret;
1347 }
1348
ib_ucm_cleanup(void)1349 static void __exit ib_ucm_cleanup(void)
1350 {
1351 ib_unregister_client(&ucm_client);
1352 class_remove_file(&cm_class, &class_attr_abi_version.attr);
1353 unregister_chrdev_region(IB_UCM_BASE_DEV, IB_UCM_NUM_FIXED_MINOR);
1354 unregister_chrdev_region(dynamic_ucm_dev, IB_UCM_NUM_DYNAMIC_MINOR);
1355 idr_destroy(&ctx_id_table);
1356 }
1357
1358 module_init(ib_ucm_init);
1359 module_exit(ib_ucm_cleanup);
1360