Changeset 57781 in vbox for trunk/src/VBox

Timestamp:

Sep 16, 2015 11:35:28 AM (9 years ago)

Author:

vboxsync

svn:sync-xref-src-repo-rev:

102718

Message:

Devices/Bus/PCI: Improved BAR mapping sanity checking, including appropriate messages to VBox.log if the fake BIOS or the guest requests something impossible. Moved the enabling of PCI I/O and memory command processing to the end of the device setup to reduce the noise. Added (comented out) release logging of each mapping update, plus a lot of cleanups to make the two redundant implementations more similar.

Location:

trunk/src/VBox/Devices/Bus

Files:

• DevPCI.cpp (modified) (11 diffs)
• DevPciIch9.cpp (modified) (11 diffs)

trunk/src/VBox/Devices/Bus/DevPCI.cpp

@@ -289 +289 @@
                        mappings, we handle specific values as invalid
                        mappings. */
+                    /* Unconditionally exclude I/O-APIC/HPET/ROM. Pessimistic, but better than causing a mess. */
                     if (last_addr <= new_addr || new_addr == 0 ||
-                        last_addr == ~0U) {
+                        (new_addr <= ~0U && last_addr >= 0xfec00000U)) {
                         new_addr = ~0U;
                     }
@@ -298 +299 @@
                 }
             }
+            //LogRel(("PCI: config dev %u/%u BAR%i uOld=%#018llx uNew=%#018llx size=%llu\n", d->devfn >> 3, d->devfn & 7, i, r->addr, new_addr, r->size));
             /* now do the real mapping */
             if (new_addr != r->addr) {
@@ -877 +879 @@
 static void pci_set_io_region_addr(PPCIGLOBALS pGlobals, uint8_t uBus, uint8_t uDevFn, int region_num, uint32_t addr)
 {
-    uint16_t cmd;
     uint32_t ofs;
 
@@ -885 +886 @@
         ofs = 0x10 + region_num * 4;
 
-    /* Read memory type first. */
-    uint8_t uRessourceType = pci_config_readb(pGlobals, uBus, uDevFn, ofs);
-
-    /* Read command register. */
-    cmd = pci_config_readw(pGlobals, uBus, uDevFn, PCI_COMMAND);
-    if ( region_num == PCI_ROM_SLOT )
-        cmd |= 2;
-    else if ((uRessourceType & 0x01) == 1) /* Test if region is I/O space. */
-        cmd |= 1; /* Enable I/O space access. */
-    else /* The region is MMIO. */
-        cmd |= 2; /* Enable MMIO access. */
+    Log(("Set region address: %02x:%02x.%d region %d address=%lld\n",
+         uBus, uDevFn >> 3, uDevFn & 7, region_num, addr));
 
     /* Write address of the device. */
     pci_config_writel(pGlobals, uBus, uDevFn, ofs, addr);
-
-    /* enable memory mappings */
-    pci_config_writew(pGlobals, uBus, uDevFn, PCI_COMMAND, cmd);
 }
 
@@ -935 +924 @@
                     pci_set_io_region_addr(pGlobals, uBus, uDevFn, 2, 0x170);
                     pci_set_io_region_addr(pGlobals, uBus, uDevFn, 3, 0x374);
+                    pci_config_writeb(pGlobals, uBus, uDevFn, PCI_COMMAND,
+                                      pci_config_readb(pGlobals, uBus, uDevFn, PCI_COMMAND)
+                                      | PCI_COMMAND_IOACCESS);
                 }
                 break;
@@ -945 +937 @@
                  * Legacy VGA I/O ports are implicitly decoded by a VGA class device. But
                  * only the framebuffer (i.e., a memory region) is explicitly registered via
-                 * pci_set_io_region_addr, so I/O decoding must be enabled manually.
+                 * pci_set_io_region_addr, so don't forget to enable I/O decoding.
                  */
                 pci_config_writeb(pGlobals, uBus, uDevFn, PCI_COMMAND,
                                   pci_config_readb(pGlobals, uBus, uDevFn, PCI_COMMAND)
-                                  | 1 /* Enable I/O space access. */);
+                                  | PCI_COMMAND_IOACCESS | PCI_COMMAND_MEMACCESS);
                 break;
             case 0x0800:
@@ -962 +954 @@
                         /* MPIC & MPIC2 */
                         pci_set_io_region_addr(pGlobals, uBus, uDevFn, 0, 0x80800000 + 0x00040000);
+                        pci_config_writeb(pGlobals, uBus, uDevFn, PCI_COMMAND,
+                                          pci_config_readb(pGlobals, uBus, uDevFn, PCI_COMMAND)
+                                          | PCI_COMMAND_MEMACCESS);
                     }
                 }
@@ -971 +966 @@
                     /* macio bridge */
                     pci_set_io_region_addr(pGlobals, uBus, uDevFn, 0, 0x80800000);
+                    pci_config_writeb(pGlobals, uBus, uDevFn, PCI_COMMAND,
+                                      pci_config_readb(pGlobals, uBus, uDevFn, PCI_COMMAND)
+                                      | PCI_COMMAND_MEMACCESS);
                 }
                 break;
@@ -1049 +1047 @@
             {
                 /* default memory mappings */
+                bool fActiveMemRegion = false;
+                bool fActiveIORegion = false;
                 /*
                  * PCI_NUM_REGIONS is 7 because of the rom region but there are only 6 base address register defined by the PCI spec.
@@ -1063 +1063 @@
                     pci_config_writel(pGlobals, uBus, uDevFn, u32Address, UINT32_C(0xffffffff));
                     u32Size = pci_config_readl(pGlobals, uBus, uDevFn, u32Address);
+                    bool fIsPio = ((u8RessourceType & PCI_COMMAND_IOACCESS) == PCI_COMMAND_IOACCESS);
                     /* Clear resource information depending on resource type. */
-                    if ((u8RessourceType & 0x01) == 1) /* I/O */
+                    if (fIsPio) /* I/O */
                         u32Size &= ~(0x01);
                     else                        /* MMIO */
@@ -1073 +1074 @@
                      * (From PCI implementation note)
                      */
-                    if (((u8RessourceType & 0x01) == 1) && (u32Size & UINT32_C(0xffff0000)) == 0)
+                    if (fIsPio && (u32Size & UINT32_C(0xffff0000)) == 0)
                         u32Size = (~(u32Size | UINT32_C(0xffff0000))) + 1;
                     else
                         u32Size = (~u32Size) + 1;
 
-                    Log(("%s: Size of region %u for device %d on bus %d is %u\n", __FUNCTION__, i, uDevFn, uBus, u32Size));
+                    Log2(("%s: Size of region %u for device %d on bus %d is %u\n", __FUNCTION__, i, uDevFn, uBus, u32Size));
 
                     if (u32Size)
                     {
-                        if ((u8RessourceType & 0x01) == 1)
+                        if (fIsPio)
                             paddr = &pGlobals->pci_bios_io_addr;
                         else
                             paddr = &pGlobals->pci_bios_mem_addr;
-                        *paddr = (*paddr + u32Size - 1) & ~(u32Size - 1);
-                        Log(("%s: Start address of %s region %u is %#x\n", __FUNCTION__, ((u8RessourceType & 0x01) == 1 ? "I/O" : "MMIO"), i, *paddr));
-                        pci_set_io_region_addr(pGlobals, uBus, uDevFn, i, *paddr);
-                        *paddr += u32Size;
-                        Log(("%s: New address is %#x\n", __FUNCTION__, *paddr));
+                        uint32_t uNew = *paddr;
+                        uNew = (uNew + u32Size - 1) & ~(u32Size - 1);
+                        if (fIsPio)
+                            uNew &= UINT32_C(0xffff);
+                        /* Unconditionally exclude I/O-APIC/HPET/ROM. Pessimistic, but better than causing a mess. */
+                        if (!uNew || (uNew <= UINT32_C(0xffffffff) && uNew + u32Size - 1 >= UINT32_C(0xfec00000)))
+                        {
+                            LogRel(("PCI: no space left for BAR%u of device %u/%u/%u (vendor=%#06x device=%#06x)\n",
+                                    i, uBus, uDevFn >> 3, uDevFn & 7, vendor_id, device_id)); /** @todo make this a VM start failure later. */
+                            /* Undo the mapping mess caused by the size probing. */
+                            pci_config_writel(pGlobals, uBus, uDevFn, u32Address, UINT32_C(0));
+                        }
+                        else
+                        {
+                            Log(("%s: Start address of %s region %u is %#x\n", __FUNCTION__, (fIsPio ? "I/O" : "MMIO"), i, uNew));
+                            pci_set_io_region_addr(pGlobals, uBus, uDevFn, i, uNew);
+                            if (fIsPio)
+                                fActiveIORegion = true;
+                            else
+                                fActiveMemRegion = true;
+                            *paddr = uNew + u32Size;
+                            Log2(("%s: New address is %#x\n", __FUNCTION__, *paddr));
+                        }
                     }
                 }
+
+                /* Update the command word appropriately. */
+                pci_config_writeb(pGlobals, uBus, uDevFn, PCI_COMMAND,
+                                  pci_config_readb(pGlobals, uBus, uDevFn, PCI_COMMAND)
+                                  | (fActiveMemRegion ? PCI_COMMAND_MEMACCESS : 0)
+                                  | (fActiveIORegion ? PCI_COMMAND_IOACCESS : 0));
+
                 break;
             }

trunk/src/VBox/Devices/Bus/DevPciIch9.cpp

@@ -894 +894 @@
                 {
                     uNew |= ((uint64_t)ich9pciGetDWord(pDev, uConfigReg+4)) << 32;
+                    /** @todo r=klaus Is this really true? Needs to be fixed properly. */
                     if (uNew > UINT64_C(0x0000010000000000))
                     {
-                        /* Workaround for REM being unhapping with mapping very lange 64-bit addresses */
-                        Log(("Ignoring too 64-bit BAR: %llx\n", uNew));
+                        /* Workaround for REM being unhapping with mapping very long 64-bit addresses */
+                        LogRel(("Ignoring too long 64-bit BAR: %llx\n", uNew));
                         uNew = INVALID_PCI_ADDRESS;
                     }
@@ -913 +914 @@
                        mappings, we handle specific values as invalid
                        mappings. */
-                    if (uLast <= uNew || uNew == 0 || uLast == INVALID_PCI_ADDRESS)
+                    /* Unconditionally exclude I/O-APIC/HPET/ROM. Pessimistic, but better than causing a mess. */
+                    if (uLast <= uNew || uNew == 0 || (uNew <= UINT32_C(0xffffffff) && uLast >= UINT32_C(0xfec00000)))
                         uNew = INVALID_PCI_ADDRESS;
                 }
@@ -919 +921 @@
                 uNew = INVALID_PCI_ADDRESS;
         }
+        //LogRel(("PCI: config dev %u/%u BAR%i uOld=%#018llx uNew=%#018llx size=%llu\n", pDev->devfn >> 3, pDev->devfn & 7, iRegion, pRegion->addr, uNew, pRegion->size));
         /* now do the real mapping */
         if (uNew != pRegion->addr)
@@ -936 +939 @@
             }
         }
+
+        if (f64Bit)
+            iRegion++;
     }
 }
@@ -1614 +1620 @@
     /* Read memory type first. */
     uint8_t uResourceType = ich9pciConfigRead(pGlobals, uBus, uDevFn, uReg, 1);
-    /* Read command register. */
-    uint16_t uCmd = ich9pciConfigRead(pGlobals, uBus, uDevFn, VBOX_PCI_COMMAND, 2);
 
     Log(("Set region address: %02x:%02x.%d region %d address=%lld\n",
          uBus, uDevFn >> 3, uDevFn & 7, iRegion, addr));
-
-    if ( iRegion == PCI_ROM_SLOT )
-        uCmd |= PCI_COMMAND_MEMACCESS;
-    else if ((uResourceType & PCI_ADDRESS_SPACE_IO) == PCI_ADDRESS_SPACE_IO)
-        uCmd |= PCI_COMMAND_IOACCESS; /* Enable I/O space access. */
-    else /* The region is MMIO. */
-        uCmd |= PCI_COMMAND_MEMACCESS; /* Enable MMIO access. */
 
     bool f64Bit = (uResourceType & PCI_ADDRESS_SPACE_BAR64) != 0;
@@ -1633 +1630 @@
     if (f64Bit)
         ich9pciConfigWrite(pGlobals, uBus, uDevFn, uReg + 4, (uint32_t)(addr >> 32), 4);
-
-    /* enable memory mappings */
-    ich9pciConfigWrite(pGlobals, uBus, uDevFn, VBOX_PCI_COMMAND, uCmd, 2);
 }
 
@@ -1737 +1731 @@
              * Legacy VGA I/O ports are implicitly decoded by a VGA class device. But
              * only the framebuffer (i.e., a memory region) is explicitly registered via
-             * ich9pciSetRegionAddress, so I/O decoding must be enabled manually.
+             * ich9pciSetRegionAddress, so don't forget to enable I/O decoding.
              */
             uCmd = ich9pciConfigRead(pGlobals, uBus, uDevFn, VBOX_PCI_COMMAND, 1);
             ich9pciConfigWrite(pGlobals, uBus, uDevFn, VBOX_PCI_COMMAND,
-                               /* Enable I/O space access. */
-                               uCmd | PCI_COMMAND_IOACCESS,
+                               uCmd | PCI_COMMAND_IOACCESS | PCI_COMMAND_MEMACCESS,
                                1);
             break;
-       case 0x0604:
+        case 0x0604:
             /* PCI-to-PCI bridge. */
             AssertMsg(pGlobals->uBus < 255, ("Too many bridges on the bus\n"));
@@ -1754 +1747 @@
         {
             /* default memory mappings */
+            bool fActiveMemRegion = false;
+            bool fActiveIORegion = false;
             /*
              * We ignore ROM region here.
@@ -1762 +1757 @@
 
                 /* Calculate size - we write all 1s into the BAR, and then evaluate which bits
-                   are cleared. . */
+                   are cleared. */
                 uint8_t u8ResourceType = ich9pciConfigRead(pGlobals, uBus, uDevFn, u32Address, 1);
 
@@ -1813 +1808 @@
                 if (cbRegSize64)
                 {
+                    /** @todo r=klaus make this code actually handle 64-bit BARs, especially MMIO which can't possibly fit into the memory hole. */
                     uint32_t  cbRegSize32 = (uint32_t)cbRegSize64;
                     uint32_t* paddr = fIsPio ? &pGlobals->uPciBiosIo : &pGlobals->uPciBiosMmio;
-                    *paddr = (*paddr + cbRegSize32 - 1) & ~(cbRegSize32 - 1);
-                    Log(("%s: Start address of %s region %u is %#x\n", __FUNCTION__, (fIsPio ? "I/O" : "MMIO"), iRegion, *paddr));
-                    ich9pciSetRegionAddress(pGlobals, uBus, uDevFn, iRegion, *paddr);
-                    *paddr += cbRegSize32;
-                    Log2(("%s: New address is %#x\n", __FUNCTION__, *paddr));
+                    uint32_t uNew = *paddr;
+                    uNew = (uNew + cbRegSize32 - 1) & ~(cbRegSize32 - 1);
+                    if (fIsPio)
+                        uNew &= UINT32_C(0xffff);
+                    /* Unconditionally exclude I/O-APIC/HPET/ROM. Pessimistic, but better than causing a mess. */
+                    if (!uNew || (uNew <= UINT32_C(0xffffffff) && uNew + cbRegSize32 - 1 >= UINT32_C(0xfec00000)))
+                    {
+                        LogRel(("PCI: no space left for BAR%u of device %u/%u/%u (vendor=%#06x device=%#06x)\n",
+                                iRegion, uBus, uDevFn >> 3, uDevFn & 7, uVendor, uDevice)); /** @todo make this a VM start failure later. */
+                        /* Undo the mapping mess caused by the size probing. */
+                        ich9pciConfigWrite(pGlobals, uBus, uDevFn, u32Address, UINT32_C(0), 4);
+                        if (f64bit)
+                            ich9pciConfigWrite(pGlobals, uBus, uDevFn, u32Address+4, UINT32_C(0), 4);
+                    }
+                    else
+                    {
+                        Log(("%s: Start address of %s region %u is %#x\n", __FUNCTION__, (fIsPio ? "I/O" : "MMIO"), iRegion, uNew));
+                        ich9pciSetRegionAddress(pGlobals, uBus, uDevFn, iRegion, uNew);
+                        if (fIsPio)
+                            fActiveIORegion = true;
+                        else
+                            fActiveMemRegion = true;
+                        *paddr = uNew + cbRegSize32;
+                        Log2(("%s: New address is %#x\n", __FUNCTION__, *paddr));
+                    }
 
                     if (f64bit)
@@ -1825 +1841 @@
                 }
             }
+
+            /* Update the command word appropriately. */
+            uCmd = ich9pciConfigRead(pGlobals, uBus, uDevFn, VBOX_PCI_COMMAND, 2);
+            if (fActiveMemRegion)
+                uCmd |= PCI_COMMAND_MEMACCESS; /* Enable MMIO access. */
+            if (fActiveIORegion)
+                uCmd |= PCI_COMMAND_IOACCESS; /* Enable I/O space access. */
+            ich9pciConfigWrite(pGlobals, uBus, uDevFn, VBOX_PCI_COMMAND, uCmd, 2);
             break;
         }