VBox

Timestamp:

Sep 13, 2019 2:33:47 AM (5 years ago)

Author:

vboxsync

Message:

Storage/DevVirtioSCSI.cpp: Added multi-target support. See bugref:9440, Comment #90

Location:

trunk/src/VBox/Devices

Files:

: 4 edited

Storage/DevVirtioSCSI.cpp (modified) (62 diffs)
VirtIO/Virtio_1_0.cpp (modified) (29 diffs)
VirtIO/Virtio_1_0.h (modified) (5 diffs)
VirtIO/Virtio_1_0_impl.h (modified) (3 diffs)

Legend:

: Unmodified
: Added
: Removed

trunk/src/VBox/Devices/Storage/DevVirtioSCSI.cpp

-              r80718
+              r80762
 #include "VBoxDD.h"
+#define LUN0    0
 /**
  * @name VirtIO 1.0 SCSI Host feature bits (See VirtIO 1.0 specification, Section 5.6.3)
 …
 #define VIRTIOSCSI_REQ_QUEUE_CNT                    1            /**< Number of req queues exposed by dev.            */
 #define VIRTIOSCSI_QUEUE_CNT                        VIRTIOSCSI_REQ_QUEUE_CNT + 2
 #define VIRTIOSCSI_MAX_TARGETS                      1            /**< Can probably determined from higher layers      */
 #define VIRTIOSCSI_MAX_LUN                          1            /* < VirtIO specification, section 5.6.4             */
+#define VIRTIOSCSI_MAX_TARGETS                      256          /**< Default value                                   */
+#define VIRTIOSCSI_MAX_LUN                          256          /* < VirtIO specification, section 5.6.4             */
 #define VIRTIOSCSI_MAX_COMMANDS_PER_LUN             1            /* < T.B.D. What is a good value for this?           */
 #define VIRTIOSCSI_MAX_SEG_COUNT                    1024         /* < T.B.D. What is a good value for this?           */
 …
     // Device-writable part
     uint32_t uEvent;                                            /**< event:                                          */
     uint8_t  uLUN[8];                                           /**< lun                                             */
+    uint8_t  uVirtioLun[8];                                     /**< lun                                             */
     uint32_t uReason;                                           /**< reason                                          */
 } VIRTIOSCSI_EVENT_T, *PVIRTIOSCSI_EVENT_T;
 …
 struct REQ_CMD_HDR
+{
     uint8_t  uLUN[8];                                           /**< lun                                          */
+    uint8_t  uVirtioLun[8];                                     /**< lun                                          */
     uint64_t uId;                                               /**< id                                           */
     uint8_t  uTaskAttr;                                         /**< task_attr                                    */
 …
+{
     uint32_t uType;
 } VIRTIOSCSI_CTRL, *PVIRTIOSCSI_CTRL_T;
+} VIRTIOSCSI_CTRL_T, *PVIRTIOSCSI_CTRL_T;
 /**
 …
     uint32_t uType;                                            /** type                                              */
     uint32_t uSubtype;                                         /** subtype                                           */
     uint8_t  uLUN[8];                                          /** lun                                               */
+    uint8_t  uScsiLun[8];                                    /** lun                                               */
     uint64_t uId;                                              /** id                                                */
     // Device-writable part
 …
     // Device-readable part
     uint32_t  uType;                                          /** type                                               */
     uint8_t   uLUN[8];                                        /** lun                                                */
+    uint8_t   uScsiLun[8];                                  /** lun                                                */
     uint32_t  uEventsRequested;                               /** event_requested                                    */
     // Device-writable part
 …
     R3PTRTYPE(PPDMIBASE)            pDrvBase;
     /** Target LUN */
     RTUINT                          iLUN;
     /** Target LUN Description */
     char *                          pszLunName;
+    /** Target number (PDM LUN) */
+    RTUINT                          iTarget;
+    /** Target Description */
+    char *                          pszTargetName;
     /** Target base interface. */
 …
     /** Pointer to the device instance. - R3 ptr. */
     PPDMDEVINSR3                    pDevInsR3;
     /** Pointer to the device instance. - R0 ptr. */
     PPDMDEVINSR0                    pDevInsR0;
     /** Pointer to the device instance. - RC ptr. */
     PPDMDEVINSRC                    pDevInsRC;
     /** Status LUN: LEDs port interface. */
+    /** Status Target: LEDs port interface. */
     PDMILEDPORTS                    ILeds;
     /** Status LUN: Partner of ILeds. */
+    /** Status Target: Partner of ILeds. */
     R3PTRTYPE(PPDMILEDCONNECTORS)   pLedsConnector;
 …
     /** The event semaphore the processing thread waits on. */
     /** Number of ports detected */
+    /** Number of targets detected */
     uint64_t                        cTargets;
 …
     /** True if in the process of quiescing I/O */
     bool                            fQuiescing;
 } VIRTIOSCSI, *PVIRTIOSCSI;
 …
     PVIRTIOSCSITARGET              pTarget;                  /**< Target                                            */
     uint16_t                       qIdx;                     /**< Index of queue this request arrived on            */
-    size_t                         cbIn;                     /**< Size of input descriptor chain                    */
-    size_t                         cbOut;                    /**< Size of output descriptor chain                   */
     size_t                         cbPiOut;                  /**< Size of T10 pi in buffer                          */
     uint8_t                       *pbPiOut;                  /**< Address of pi out buffer                          */
 …
     PDMMEDIAEXIOREQSCSITXDIR       enmTxDir;                 /**< Receives transfer direction of I/O req            */
     uint8_t                        uStatus;                  /**< SCSI status code                                  */
+    PRTSGBUF                       pInSgBuf;                 /**< Buf vector to return PDM result to VirtIO Guest   */
+    PVIRTIOSCSI_REQ_CMD_T          pVirtqReq;                /**< Holds guest's queued req after phys → virt trans  */
+    PVIRTIO_DESC_CHAIN_T           pDescChain;               /**< Prepared desc chain pulled from virtq avail ring  */
 } VIRTIOSCSIREQ;
-#define PTARGET_FROM_LUN_BUF(lunBuf) &pThis->aTargetInstances[lunBuf[1]];
 DECLINLINE(bool) isBufZero(uint8_t *pv, size_t cb)
 …
 #endif
-DECLINLINE(void) virtioScsiVirtToSgPhys(PVIRTIOSCSI pThis, PRTSGBUF pSgDst, void *pvSrc, size_t cb)
+{
-    while (cb)
+    {
-        size_t cbSeg = cb;
-        RTGCPHYS GCPhys = (RTGCPHYS)RTSgBufGetNextSegment(pSgDst, &cbSeg);
-        PDMDevHlpPhysWrite(pThis->CTX_SUFF(pDevIns), GCPhys, pvSrc, cbSeg);
-        pvSrc = ((uint8_t *)pvSrc) + cbSeg;
-        cb -= cbSeg;
+    }
+}
-DECLINLINE(void) virtioScsiSgPhysToVirt(PVIRTIOSCSI pThis, PRTSGBUF pSgSrc, void *pvDst, size_t cb)
+{
-    while (cb)
+    {
-        size_t cbSeg = cb;
-        RTGCPHYS GCPhys = (RTGCPHYS)RTSgBufGetNextSegment(pSgSrc, &cbSeg);
-        PDMDevHlpPhysRead(pThis->CTX_SUFF(pDevIns), GCPhys, pvDst, cbSeg);
-        pvDst = ((uint8_t *)pvDst) + cbSeg;
-        cb -= cbSeg;
+    }
+}
 /**
  * @interface_method_impl{PDMIMEDIAEXPORT,pfnIoReqCopyFromBuf}
 …
 static int virtioScsiSendEvent(PVIRTIOSCSI pThis, uint16_t uTarget, uint32_t uEventType, uint32_t uReason)
+{
-    uint8_t uLUN = 0;
     VIRTIOSCSI_EVENT_T event;
     event.uEvent = uEventType;
     event.uReason = uReason;
     event.uLUN[0] = 1;
     event.uLUN[1] = uTarget;
     event.uLUN[2] = (uLUN >> 8) & 0x40;
     event.uLUN[3] = uLUN & 0xff;
     event.uLUN[4] = event.uLUN[5] = event.uLUN[6] = event.uLUN[7] = 0;
+    event.uVirtioLun[0] = 1;
+    event.uVirtioLun[1] = uTarget;
+    event.uVirtioLun[2] = (LUN0 >> 8) & 0x40;
+    event.uVirtioLun[3] = LUN0 & 0xff;
+    event.uVirtioLun[4] = event.uVirtioLun[5] = event.uVirtioLun[6] = event.uVirtioLun[7] = 0;
     switch(uEventType)
 …
         case VIRTIOSCSI_T_NO_EVENT:
             if (uEventType & VIRTIOSCSI_T_EVENTS_MISSED)
                 LogFunc(("Warning driver that events were missed\n", uTarget, uLUN));
+                LogFunc(("(target=%d, LUN=%d) Warning driver that events were missed\n", uTarget, LUN0));
             else
                 LogFunc(("(target=%d, LUN=%d): Warning event info guest queued is shorter than configured\n",
                           uTarget, uLUN));
+                          uTarget, LUN0));
             break;
         case VIRTIOSCSI_T_TRANSPORT_RESET:
 …
+            {
                 case VIRTIOSCSI_EVT_RESET_REMOVED:
                     LogFunc(("(target=%d, LUN=%d): Target or LUN removed\n", uTarget, uLUN));
+                    LogFunc(("(target=%d, LUN=%d): Target or LUN removed\n", uTarget, LUN0));
                     break;
                 case VIRTIOSCSI_EVT_RESET_RESCAN:
                     LogFunc(("(target=%d, LUN=%d): Target or LUN added\n", uTarget, uLUN));
+                    LogFunc(("(target=%d, LUN=%d): Target or LUN added\n", uTarget, LUN0));
                     break;
                 case VIRTIOSCSI_EVT_RESET_HARD:
                     LogFunc(("(target=%d, LUN=%d): Target was reset\n", uTarget, uLUN));
+                    LogFunc(("(target=%d, LUN=%d): Target was reset\n", uTarget, LUN0));
                     break;
+            }
 …
             char szTypeText[128];
             virtioGetControlAsyncMaskText(szTypeText, sizeof(szTypeText), uReason);
             LogFunc(("(target=%d, LUN=%d): Delivering subscribed async notification %s\n", uTarget, uLUN));
+            LogFunc(("(target=%d, LUN=%d): Delivering subscribed async notification %s\n", uTarget, LUN0));
             break;
         case VIRTIOSCSI_T_PARAM_CHANGE:
             LogFunc(("(target=%d, LUN=%d): PARAM_CHANGE sense code: 0x%x sense qualifier: 0x%x\n",
                         uTarget, uLUN, uReason & 0xff, (uReason >> 8) & 0xff));
+                        uTarget, LUN0, uReason & 0xff, (uReason >> 8) & 0xff));
             break;
         default:
             LogFunc(("(target=%d, LUN=%d): Unknown event type: %d, ignoring\n", uTarget, uLUN));
+            LogFunc(("(target=%d, LUN=%d): Unknown event type: %d, ignoring\n", uTarget, LUN0));
             return VINF_SUCCESS;
+    }
 …
+    }
+    virtioQueueGet(pThis->hVirtio, EVENTQ_IDX, true, NULL, NULL);
+    PVIRTIO_DESC_CHAIN_T pDescChain;
+    virtioQueueGet(pThis->hVirtio, EVENTQ_IDX, &pDescChain, true);
     RTSGBUF reqSegBuf;
 …
     RTSgBufInit(&reqSegBuf, aReqSegs, sizeof(aReqSegs) / sizeof(RTSGSEG));
     virtioQueuePut (pThis->hVirtio, EVENTQ_IDX, &reqSegBuf, true);
+    virtioQueuePut (pThis->hVirtio, EVENTQ_IDX, &reqSegBuf, pDescChain, true);
     virtioQueueSync(pThis->hVirtio, EVENTQ_IDX);
 …
     RTMemFree(pReq->pbPiIn);
     RTMemFree(pReq->pbDataIn);
-    RTMemFree(pReq->pVirtqReq);
     pTarget->pDrvMediaEx->pfnIoReqFree(pTarget->pDrvMediaEx, pReq->hIoReq);
+}
 …
  * This is called to complete a request immediately
+ *
+ * @param pThis     - PDM driver instance state
+ * @param qIdx      - Queue index
+ * @param pRespHdr  - Response header
+ * @param pbSense   - Pointer to sense buffer or NULL if none.
+ * @param pThis      - PDM driver instance state
+ * @param qIdx       - Queue index
+ * @param pDescChain - Pointer to pre-processed descriptor chain pulled from virtq
+ * @param pRespHdr   - Response header
+ * @param pbSense    - Pointer to sense buffer or NULL if none.
+ *
  * @returns virtual box status code
  */
 static int virtioScsiReqErr(PVIRTIOSCSI pThis, uint16_t qIdx, struct REQ_RESP_HDR *pRespHdr, uint8_t *pbSense)
+{
+static int virtioScsiReqErr(PVIRTIOSCSI pThis, uint16_t qIdx, PVIRTIO_DESC_CHAIN_T pDescChain,
+                            struct REQ_RESP_HDR *pRespHdr, uint8_t *pbSense)
+{
     uint8_t *abSenseBuf = (uint8_t *)RTMemAllocZ(pThis->virtioScsiConfig.uSenseSize);
     AssertReturn(abSenseBuf, VERR_NO_MEMORY);
 …
         pRespHdr->uResponse = VIRTIOSCSI_S_RESET;
     virtioQueuePut(pThis->hVirtio, qIdx, &reqSegBuf, true /* fFence */);
+    virtioQueuePut(pThis->hVirtio, qIdx, &reqSegBuf, pDescChain, true /* fFence */);
     virtioQueueSync(pThis->hVirtio, qIdx);
 …
     RT_NOREF(pInterface);
     PVIRTIOSCSIREQ pReq = (PVIRTIOSCSIREQ)pvIoReqAlloc;
     PVIRTIOSCSITARGET pTarget = pReq->pTarget;
     PVIRTIOSCSI pThis = pTarget->pVirtioScsi;
     PPDMIMEDIAEX pIMediaEx = pTarget->pDrvMediaEx;
+    PVIRTIOSCSIREQ    pReq      = (PVIRTIOSCSIREQ)pvIoReqAlloc;
+    PVIRTIOSCSITARGET pTarget   = pReq->pTarget;
+    PVIRTIOSCSI       pThis     = pTarget->pVirtioScsi;
+    PPDMIMEDIAEX      pIMediaEx = pTarget->pDrvMediaEx;
     size_t cbResidual = 0, cbXfer = 0;
 …
+    {
         LogFunc(("cbDataIn = %u, cbDataOut = %u (cbIn = %u, cbOut = %u)\n",
                   pReq->cbDataIn, pReq->cbDataOut, pReq->cbIn, pReq->cbOut));
+                  pReq->cbDataIn, pReq->cbDataOut, pReq->pDescChain->cbPhysDst, pReq->pDescChain->cbVirtSrc));
         LogFunc(("xfer = %d, residual = %u\n", cbXfer, cbResidual));
         LogFunc(("xfer direction: %s, sense written = %d, sense size = %d\n",
 …
         respHdr.uResponse = VIRTIOSCSI_S_OVERRUN;
         respHdr.uResidual = pReq->cbDataIn;
+        virtioScsiReqErr(pThis, pReq->qIdx, &respHdr, abSense);
+        virtioScsiReqErr(pThis, pReq->qIdx, pReq->pDescChain, &respHdr, abSense);
         return VINF_SUCCESS;
+    }
 …
          */
         size_t cbReqSgBuf = RTSgBufCalcTotalLength(&reqSegBuf);
         size_t cbInSgBuf  = RTSgBufCalcTotalLength(pReq->pInSgBuf);
         AssertMsgReturn(cbReqSgBuf <= cbInSgBuf,
                        ("Guest expected less req data (space needed: %d, avail: %d)\n", cbReqSgBuf, cbInSgBuf),
+        AssertMsgReturn(cbReqSgBuf <= pReq->pDescChain->cbPhysDst,
+                       ("Guest expected less req data (space needed: %d, avail: %d)\n",
+                         cbReqSgBuf, pReq->pDescChain->cbPhysDst),
                        VERR_BUFFER_OVERFLOW);
         virtioQueuePut(pThis->hVirtio, pReq->qIdx, &reqSegBuf, true /* fFence TBD */);
+        virtioQueuePut(pThis->hVirtio, pReq->qIdx, &reqSegBuf, pReq->pDescChain, true /* fFence TBD */);
         virtioQueueSync(pThis->hVirtio, pReq->qIdx);
 …
+}
+static int virtioScsiReqSubmit(PVIRTIOSCSI pThis, uint16_t qIdx, PRTSGBUF pInSgBuf, PRTSGBUF pOutSgBuf)
+{
+    AssertMsgReturn(pOutSgBuf->cSegs, ("Req. has no OUT data, unexpected/TBD\n"), VERR_INVALID_PARAMETER);
+static int virtioScsiReqSubmit(PVIRTIOSCSI pThis, uint16_t qIdx, PVIRTIO_DESC_CHAIN_T pDescChain)
+{
     ASMAtomicIncU32(&pThis->cActiveReqs);
+    size_t cbOut = RTSgBufCalcTotalLength(pOutSgBuf);
+    size_t cbIn  = RTSgBufCalcTotalLength(pInSgBuf);
+    PVIRTIOSCSI_REQ_CMD_T pVirtqReq = (PVIRTIOSCSI_REQ_CMD_T)RTMemAlloc(cbOut);
+    AssertReturn(pVirtqReq, VERR_NO_MEMORY);
+    virtioScsiSgPhysToVirt(pThis, pOutSgBuf, pVirtqReq, cbOut);
+    uint8_t  uTarget =  pVirtqReq->cmdHdr.uLUN[1];
+    uint32_t uLUN    = (pVirtqReq->cmdHdr.uLUN[2] << 8 | pVirtqReq->cmdHdr.uLUN[3]) & 0x3fff;
+    PVIRTIOSCSI_REQ_CMD_T pVirtqReq = (PVIRTIOSCSI_REQ_CMD_T)pDescChain->pVirtSrc;
+    uint8_t  uTarget  = pVirtqReq->cmdHdr.uVirtioLun[1];
+    uint32_t uScsiLun = (pVirtqReq->cmdHdr.uVirtioLun[2] << 8 | pVirtqReq->cmdHdr.uVirtioLun[3]) & 0x3fff;
+    PVIRTIOSCSITARGET pTarget = &pThis->aTargetInstances[uTarget];
     LogFunc(("[%s] (Target: %d LUN: %d)  CDB: %.*Rhxs\n",
         SCSICmdText(pVirtqReq->uCdb[0]), uTarget, uLUN,
+        SCSICmdText(pVirtqReq->uCdb[0]), uTarget, uScsiLun,
         virtioScsiEstimateCdbLen(pVirtqReq->uCdb[0],
         pThis->virtioScsiConfig.uCdbSize), pVirtqReq->uCdb));
 …
     Log3Func(("id: %RX64, attr: %x, prio: %d, crn: %x\n",
         pVirtqReq->cmdHdr.uId, pVirtqReq->cmdHdr.uTaskAttr, pVirtqReq->cmdHdr.uPrio, pVirtqReq->cmdHdr.uCrn));
-    PVIRTIOSCSITARGET pTarget = &pThis->aTargetInstances[uTarget];
     /*
 …
+    }
     off_t   uDataOutOff = sizeof(REQ_CMD_HDR)  + pThis->virtioScsiConfig.uCdbSize   + cbPiHdr;
+    off_t   uDataOutOff = sizeof(REQ_CMD_HDR)  + pThis->virtioScsiConfig.uCdbSize + cbPiHdr;
     off_t   uDataInOff  = sizeof(REQ_RESP_HDR) + pThis->virtioScsiConfig.uSenseSize + cbPiIn;
     uint8_t *pbDataOut = (uint8_t *)((uint64_t)pVirtqReq + uDataOutOff);
     size_t  cbDataOut = cbOut - uDataOutOff;
     size_t  cbDataIn  = cbIn  - uDataInOff;
+    size_t  cbDataOut = pDescChain->cbVirtSrc - uDataOutOff;
+    size_t  cbDataIn  = pDescChain->cbPhysDst - uDataInOff;
     /**
 …
         respHdr.uResponse = VIRTIOSCSI_S_RESET;
         respHdr.uResidual = cbDataIn + cbDataOut;
+        virtioScsiReqErr(pThis, qIdx, &respHdr, NULL);
+        RTMemFree(pVirtqReq);
+        virtioScsiReqErr(pThis, qIdx, pDescChain, &respHdr, NULL);
         return VINF_SUCCESS;
+    }
     else
     if (uTarget >= pThis->cTargets || uLUN != 0)
+    {
         Log2Func(("Error submitting request to bad target (%d) or bad LUN (%d)\n", uTarget, uLUN));
+    if (uTarget >= pThis->cTargets || uScsiLun != 0)
+    {
+        Log2Func(("Error submitting request to bad target (%d) or bad LUN (%d)\n", uTarget, uScsiLun));
         uint8_t abSense[] = { RT_BIT(7) | SCSI_SENSE_RESPONSE_CODE_CURR_FIXED,
 , SCSI_SENSE_ILLEGAL_REQUEST,
 …
         respHdr.uResponse = (uTarget > pThis->cTargets) ? VIRTIOSCSI_S_BAD_TARGET : VIRTIOSCSI_S_OK;
         respHdr.uResidual = cbDataOut + cbDataIn;
+        virtioScsiReqErr(pThis, qIdx, &respHdr, abSense);
+        RTMemFree(pVirtqReq);
+        virtioScsiReqErr(pThis, qIdx, pDescChain, &respHdr, abSense);
         return VINF_SUCCESS;
+    }
 …
         respHdr.uResponse = VIRTIOSCSI_S_TARGET_FAILURE;
         respHdr.uResidual = cbDataIn + cbDataOut;
+        virtioScsiReqErr(pThis, qIdx, &respHdr, abSense);
+        RTMemFree(pVirtqReq);
+        virtioScsiReqErr(pThis, qIdx, pDescChain, &respHdr , abSense);
         return VINF_SUCCESS;
+    }
 …
         pReq->pbPiOut   = (uint8_t *)((uint64_t)pVirtqReq + piOutOff);
         pReq->cbPiIn    = cbPiIn;
         pReq->pbPiIn    = (uint8_t *)RTMemAllocZ(cbPiIn);
+        pReq->pbPiIn    = (uint8_t *)RTMemAlloc(cbPiIn);
         AssertMsgReturn(pReq->pbPiIn, ("Out of memory allocating pi_in buffer"),  VERR_NO_MEMORY);
+    }
+    pReq->hIoReq    = hIoReq;
+    pReq->pTarget   = pTarget;
+    pReq->qIdx      = qIdx;
+    pReq->cbIn      = cbIn;
+    pReq->cbOut     = cbOut;
+    pReq->cbDataOut = cbDataOut;
+    pReq->pbDataOut = cbDataOut ? pbDataOut : 0;
+    pReq->pVirtqReq = pVirtqReq;
+    pReq->pInSgBuf  = pInSgBuf;
+    pReq->cbSense   = pThis->virtioScsiConfig.uSenseSize;
+    pReq->pbSense   = (uint8_t *)RTMemAllocZ(pReq->cbSense);
+    pReq->hIoReq     = hIoReq;
+    pReq->pTarget    = pTarget;
+    pReq->qIdx       = qIdx;
+    pReq->cbDataOut  = cbDataOut;
+    pReq->pbDataOut  = cbDataOut ? pbDataOut : 0;
+    pReq->pDescChain = pDescChain;
+    pReq->cbSense    = pThis->virtioScsiConfig.uSenseSize;
+    pReq->pbSense    = (uint8_t *)RTMemAlloc(pReq->cbSense);
     AssertMsgReturn(pReq->pbSense,  ("Out of memory allocating sense buffer"),  VERR_NO_MEMORY);
 …
+    {
         pReq->cbDataIn  = cbDataIn;
         pReq->pbDataIn  = (uint8_t *)RTMemAllocZ(cbDataIn);
+        pReq->pbDataIn  = (uint8_t *)RTMemAlloc(cbDataIn);
         AssertMsgReturn(pReq->pbDataIn, ("Out of memory allocating datain buffer"), VERR_NO_MEMORY);
+    }
     rc = pIMediaEx->pfnIoReqSendScsiCmd(pIMediaEx, pReq->hIoReq, uLUN,
+    rc = pIMediaEx->pfnIoReqSendScsiCmd(pIMediaEx, pReq->hIoReq, uScsiLun,
                                         pVirtqReq->uCdb, pThis->virtioScsiConfig.uCdbSize,
                                         PDMMEDIAEXIOREQSCSITXDIR_UNKNOWN, &pReq->enmTxDir,
 …
         respHdr.uResponse = VIRTIOSCSI_S_FAILURE;
         respHdr.uResidual = cbDataIn + cbDataOut;
         virtioScsiReqErr(pThis, qIdx, &respHdr, abSense);
+        virtioScsiReqErr(pThis, qIdx, pDescChain, &respHdr, abSense);
         virtioScsiFreeReq(pTarget, pReq);
         return VINF_SUCCESS;
 …
+}
+static int virtioScsiCtrl(PVIRTIOSCSI pThis, uint16_t qIdx, PRTSGBUF pInSgBuf, PRTSGBUF pOutSgBuf)
+{
+    RT_NOREF3(pThis, qIdx, pInSgBuf);
+    /*
+     * According to the VirtIO 1.0 SCSI Host device, spec, section 5.6.6.2, control packets are
+     * extremely small, so more than one segment is highly unlikely but not a bug. Get the
+     * the controlq sg buffer into virtual memory. */
+    size_t cbOut = RTSgBufCalcTotalLength(pOutSgBuf);
+    PVIRTIOSCSI_CTRL_T pScsiCtrl = (PVIRTIOSCSI_CTRL_T)RTMemAllocZ(cbOut);
+    AssertMsgReturn(pScsiCtrl, ("Out of memory"), VERR_NO_MEMORY);
+    virtioScsiSgPhysToVirt(pThis, pOutSgBuf, pScsiCtrl, cbOut);
+static int virtioScsiCtrl(PVIRTIOSCSI pThis, uint16_t qIdx, PVIRTIO_DESC_CHAIN_T pDescChain)
+{
+    RT_NOREF2(pThis, qIdx);
     uint8_t  uResponse = VIRTIOSCSI_S_OK;
+    PVIRTIOSCSI_CTRL_T pScsiCtrl = (PVIRTIOSCSI_CTRL_T)pDescChain->pVirtSrc;
     /*
 …
             PVIRTIOSCSI_CTRL_TMF_T pScsiCtrlTmf = (PVIRTIOSCSI_CTRL_TMF_T)pScsiCtrl;
             LogFunc(("%s, VirtIO LUN: %.8Rhxs\n%*sTask Mgt Function: %s (not yet implemented)\n",
                 QUEUENAME(qIdx), pScsiCtrlTmf->uLUN,
+                QUEUENAME(qIdx), pScsiCtrlTmf->uScsiLun,
                 CBQUEUENAME(qIdx) + 18, "", virtioGetTMFTypeText(pScsiCtrlTmf->uSubtype)));
 …
                 LogFunc(("%s, VirtIO LUN: %.8Rhxs\n%*sAsync Query, types: %s\n",
                     QUEUENAME(qIdx), pScsiCtrlAnQuery->uLUN, CBQUEUENAME(qIdx) + 30, "", szTypeText));
+                    QUEUENAME(qIdx), pScsiCtrlAnQuery->uScsiLun, CBQUEUENAME(qIdx) + 30, "", szTypeText));
+            }
 …
                 LogFunc(("%s, VirtIO LUN: %.8Rhxs\n%*sAsync Subscribe, types: %s\n",
                     QUEUENAME(qIdx), pScsiCtrlAnSubscribe->uLUN, CBQUEUENAME(qIdx) + 30, "", szTypeText));
+                    QUEUENAME(qIdx), pScsiCtrlAnSubscribe->uScsiLun, CBQUEUENAME(qIdx) + 30, "", szTypeText));
+            }
 …
     LogFunc(("Response code: %s\n", virtioGetCtrlRespText(uResponse)));
     virtioQueuePut (pThis->hVirtio, qIdx, &reqSegBuf, true);
+    virtioQueuePut (pThis->hVirtio, qIdx, &reqSegBuf, pDescChain, true);
     virtioQueueSync(pThis->hVirtio, qIdx);
 …
     PVIRTIOSCSI pThis = PDMINS_2_DATA(pDevIns, PVIRTIOSCSI);
     PWORKER pWorker = &pThis->aWorker[qIdx];
-    PRTSGBUF pInSgBuf;
-    PRTSGBUF pOutSgBuf;
     if (pThread->enmState == PDMTHREADSTATE_INITIALIZING)
 …
+        }
         Log6Func(("fetching next descriptor chain from %s\n", QUEUENAME(qIdx)));
+        rc = virtioQueueGet(pThis->hVirtio, qIdx, true, &pInSgBuf, &pOutSgBuf);
+        PVIRTIO_DESC_CHAIN_T pDescChain;
+        rc = virtioQueueGet(pThis->hVirtio, qIdx, &pDescChain, true);
         if (rc == VERR_NOT_AVAILABLE)
+        {
 …
         AssertRC(rc);
         if (qIdx == CONTROLQ_IDX)
             virtioScsiCtrl(pThis, qIdx, pInSgBuf, pOutSgBuf);
+            virtioScsiCtrl(pThis, qIdx, pDescChain);
         else
+        {
             rc = virtioScsiReqSubmit(pThis, qIdx, pInSgBuf, pOutSgBuf);
+            rc = virtioScsiReqSubmit(pThis, qIdx, pDescChain);
             if (RT_FAILURE(rc))
+            {
 …
     PVIRTIOSCSITARGET pTarget = RT_FROM_MEMBER(pInterface, VIRTIOSCSITARGET, IMediaExPort);
     PVIRTIOSCSI pThis = pTarget->pVirtioScsi;
     LogFunc(("LUN %d Ejected!\n", pTarget->iLUN));
+    LogFunc(("LUN %d Ejected!\n", pTarget->iTarget));
     if (pThis->pMediaNotify)
+    {
          int rc = VMR3ReqCallNoWait(PDMDevHlpGetVM(pThis->CTX_SUFF(pDevIns)), VMCPUID_ANY,
                                    (PFNRT)pThis->pMediaNotify->pfnEjected, 2,
                                     pThis->pMediaNotify, pTarget->iLUN);
+                                    pThis->pMediaNotify, pTarget->iTarget);
          AssertRC(rc);
+    }
 …
     pThis->fQuiescing = false;
+#if 0 /* This should be unnecessary */
+    if (pThis->fResetting)
+    {
+        Log2Func(("Resetting VirtIO\n"));
+        /* Reset virtio infrastructure */
+        virtioResetAll(pThis->hVirtio);
+        /* Reset locally-owned negotiable device-specific config parameters
+         *  to VirtIO spec-mandated default values */
+    }
+#endif
     return true;
+}
 …
 void virtioScsiSetWriteLed(PVIRTIOSCSITARGET pTarget, bool fOn)
+{
     LogFlow(("%s virtioSetWriteLed: %s\n", pTarget->pszLunName, fOn ? "on" : "off"));
+    LogFlow(("%s virtioSetWriteLed: %s\n", pTarget->pszTargetName, fOn ? "on" : "off"));
     if (fOn)
         pTarget->led.Asserted.s.fWriting = pTarget->led.Actual.s.fWriting = 1;
 …
 void virtioScsiSetReadLed(PVIRTIOSCSITARGET pTarget, bool fOn)
+{
     LogFlow(("%s virtioSetReadLed: %s\n", pTarget->pszLunName, fOn ? "on" : "off"));
+    LogFlow(("%s virtioSetReadLed: %s\n", pTarget->pszTargetName, fOn ? "on" : "off"));
     if (fOn)
         pTarget->led.Asserted.s.fReading = pTarget->led.Actual.s.fReading = 1;
 …
  * @returns VBox status code.
  * @param   pInterface      Pointer to the interface structure containing the called function pointer.
  * @param   iLUN            The unit which status LED we desire.
+ * @param   iTarget            The unit which status LED we desire.
  * @param   ppLed           Where to store the LED pointer.
  */
 static DECLCALLBACK(int) virtioScsiTargetQueryStatusLed(PPDMILEDPORTS pInterface, unsigned iLUN, PPDMLED *ppLed)
+static DECLCALLBACK(int) virtioScsiTargetQueryStatusLed(PPDMILEDPORTS pInterface, unsigned iTarget, PPDMLED *ppLed)
+{
   PVIRTIOSCSITARGET pTarget = RT_FROM_MEMBER(pInterface, VIRTIOSCSITARGET, ILed);
     if (iLUN == 0)
+    if (iTarget == 0)
+    {
         *ppLed = &pTarget->led;
 …
  * @returns VBox status code.
  * @param   pInterface      Pointer to the interface structure containing the called function pointer.
  * @param   iLUN            The unit which status LED we desire.
+ * @param   iTarget            The unit which status LED we desire.
  * @param   ppLed           Where to store the LED pointer.
  */
 static DECLCALLBACK(int) virtioScsiDeviceQueryStatusLed(PPDMILEDPORTS pInterface, unsigned iLUN, PPDMLED *ppLed)
+static DECLCALLBACK(int) virtioScsiDeviceQueryStatusLed(PPDMILEDPORTS pInterface, unsigned iTarget, PPDMLED *ppLed)
+{
     PVIRTIOSCSI pThis = RT_FROM_MEMBER(pInterface, VIRTIOSCSI, ILeds);
     if (iLUN < pThis->cTargets)
+    {
         *ppLed = &pThis->aTargetInstances[iLUN].led;
+    if (iTarget < pThis->cTargets)
+    {
+        *ppLed = &pThis->aTargetInstances[iTarget].led;
         Assert((*ppLed)->u32Magic == PDMLED_MAGIC);
         return VINF_SUCCESS;
 …
 static DECLCALLBACK(int) virtioScsiQueryDeviceLocation(PPDMIMEDIAPORT pInterface, const char **ppcszController,
                                                        uint32_t *piInstance, uint32_t *piLUN)
+                                                       uint32_t *piInstance, uint32_t *piTarget)
+{
     PVIRTIOSCSITARGET pTarget = RT_FROM_MEMBER(pInterface, VIRTIOSCSITARGET, IMediaPort);
 …
     AssertPtrReturn(ppcszController, VERR_INVALID_POINTER);
     AssertPtrReturn(piInstance, VERR_INVALID_POINTER);
     AssertPtrReturn(piLUN, VERR_INVALID_POINTER);
+    AssertPtrReturn(piTarget, VERR_INVALID_POINTER);
     *ppcszController = pDevIns->pReg->szName;
     *piInstance = pDevIns->iInstance;
     *piLUN = pTarget->iLUN;
+    *piTarget = pTarget->iTarget;
     return VINF_SUCCESS;
 …
+ *
  * @param   pDevIns     The device instance.
  * @param   iLUN        The logical unit which is being detached.
+ * @param   iTarget        The logical unit which is being detached.
  * @param   fFlags      Flags, combination of the PDMDEVATT_FLAGS_* \#defines.
  */
 static DECLCALLBACK(void) virtioScsiDetach(PPDMDEVINS pDevIns, unsigned iLUN, uint32_t fFlags)
+static DECLCALLBACK(void) virtioScsiDetach(PPDMDEVINS pDevIns, unsigned iTarget, uint32_t fFlags)
+{
     RT_NOREF(fFlags);
     PVIRTIOSCSI       pThis = PDMINS_2_DATA(pDevIns, PVIRTIOSCSI);
     PVIRTIOSCSITARGET pTarget = &pThis->aTargetInstances[iLUN];
+    PVIRTIOSCSITARGET pTarget = &pThis->aTargetInstances[iTarget];
     LogFunc((""));
 …
  * @returns VBox status code.
  * @param   pDevIns     The device instance.
  * @param   iLUN        The logical unit which is being detached.
+ * @param   iTarget        The logical unit which is being detached.
  * @param   fFlags      Flags, combination of the PDMDEVATT_FLAGS_* \#defines.
  */
 static DECLCALLBACK(int)  virtioScsiAttach(PPDMDEVINS pDevIns, unsigned iLUN, uint32_t fFlags)
+static DECLCALLBACK(int)  virtioScsiAttach(PPDMDEVINS pDevIns, unsigned iTarget, uint32_t fFlags)
+{
     PVIRTIOSCSI       pThis   = PDMINS_2_DATA(pDevIns, PVIRTIOSCSI);
     PVIRTIOSCSITARGET pTarget = &pThis->aTargetInstances[iLUN];
+    PVIRTIOSCSITARGET pTarget = &pThis->aTargetInstances[iTarget];
     int rc;
 …
     /* the usual paranoia */
     AssertRelease(!pTarget->pDrvBase);
     Assert(pTarget->iLUN == iLUN);
+    Assert(pTarget->iTarget == iTarget);
     /*
 …
      * required as well as optional.
      */
     rc = PDMDevHlpDriverAttach(pDevIns, pTarget->iLUN, &pDevIns->IBase,
                                &pTarget->pDrvBase, (const char *)&pTarget->pszLunName);
+    rc = PDMDevHlpDriverAttach(pDevIns, pTarget->iTarget, &pDevIns->IBase,
+                               &pTarget->pDrvBase, (const char *)&pTarget->pszTargetName);
     if (RT_SUCCESS(rc))
         pTarget->fPresent = true;
     else
         AssertMsgFailed(("Failed to attach %s. rc=%Rrc\n", pTarget->pszLunName, rc));
+        AssertMsgFailed(("Failed to attach %s. rc=%Rrc\n", pTarget->pszTargetName, rc));
     if (RT_FAILURE(rc))
 …
     LogFunc(("PDM device instance: %d\n", iInstance));
     RTStrPrintf((char *)pThis->szInstance, sizeof(pThis->szInstance), "VIRTIOSCSI%d", iInstance);
+    /* Usable defaults */
+    pThis->cTargets = VIRTIOSCSI_MAX_TARGETS;
     /*
 …
     /* Initialize per device instance. */
+    for (RTUINT iLUN = 0; iLUN < VIRTIOSCSI_MAX_TARGETS; iLUN++)
+    {
+        PVIRTIOSCSITARGET pTarget = &pThis->aTargetInstances[iLUN];
+        if (RTStrAPrintf(&pTarget->pszLunName, "VSCSILUN%u", iLUN) < 0)
+    Log2Func(("Found %d targets attached to controller\n", pThis->cTargets));
+    for (RTUINT iTarget = 0; iTarget < pThis->cTargets; iTarget++)
+    {
+        PVIRTIOSCSITARGET pTarget = &pThis->aTargetInstances[iTarget];
+        if (RTStrAPrintf(&pTarget->pszTargetName, "VSCSI%u", iTarget) < 0)
             AssertLogRelFailedReturn(VERR_NO_MEMORY);
         /* Initialize static parts of the device. */
         pTarget->iLUN = iLUN;
+        pTarget->iTarget = iTarget;
         pTarget->pVirtioScsi = pThis;
+        pTarget->led.u32Magic = PDMLED_MAGIC;
         pTarget->IBase.pfnQueryInterface                 = virtioScsiTargetQueryInterface;
 …
         pTarget->led.u32Magic                            = PDMLED_MAGIC;
         LogFunc(("Attaching LUN: %s\n", pTarget->pszLunName));
         AssertReturn(iLUN < RT_ELEMENTS(pThis->aTargetInstances), VERR_PDM_NO_SUCH_LUN);
         rc = PDMDevHlpDriverAttach(pDevIns, iLUN, &pTarget->IBase, &pTarget->pDrvBase, (const char *)&pTarget->pszLunName);
+        LogFunc(("Attaching LUN: %s\n", pTarget->pszTargetName));
+        AssertReturn(iTarget < RT_ELEMENTS(pThis->aTargetInstances), VERR_PDM_NO_SUCH_LUN);
+        rc = PDMDevHlpDriverAttach(pDevIns, iTarget, &pTarget->IBase, &pTarget->pDrvBase, (const char *)&pTarget->pszTargetName);
         if (RT_SUCCESS(rc))
+        {
             pTarget->fPresent = true;
-            /* DrvSCSI.cpp currently implements the IMedia and IMediaEx interfaces, so those
-             * are the interfaces that will be used to pass SCSI requests down to the
-             * DrvSCSI driver to eventually make it down to the VD layer */
             pTarget->pDrvMedia = PDMIBASE_QUERY_INTERFACE(pTarget->pDrvBase, PDMIMEDIA);
             AssertMsgReturn(VALID_PTR(pTarget->pDrvMedia),
                          ("virtio-scsi configuration error: LUN#%d missing basic media interface!\n", pTarget->iLUN),
+                         ("virtio-scsi configuration error: LUN#%d missing basic media interface!\n", pTarget->iTarget),
                          VERR_PDM_MISSING_INTERFACE);
 …
             pTarget->pDrvMediaEx = PDMIBASE_QUERY_INTERFACE(pTarget->pDrvBase, PDMIMEDIAEX);
             AssertMsgReturn(VALID_PTR(pTarget->pDrvMediaEx),
                          ("virtio-scsi configuration error: LUN#%d missing extended media interface!\n", pTarget->iLUN),
+                         ("virtio-scsi configuration error: LUN#%d missing extended media interface!\n", pTarget->iTarget),
                          VERR_PDM_MISSING_INTERFACE);
             rc = pTarget->pDrvMediaEx->pfnIoReqAllocSizeSet(pTarget->pDrvMediaEx, sizeof(VIRTIOSCSIREQ));
             AssertMsgReturn(VALID_PTR(pTarget->pDrvMediaEx),
                          ("virtio-scsi configuration error: LUN#%u: Failed to set I/O request size!\n", pTarget->iLUN),
+                         ("virtio-scsi configuration error: LUN#%u: Failed to set I/O request size!\n", pTarget->iTarget),
                          rc);
 …
             AssertMsgReturn(VALID_PTR(pTarget->pDrvMediaEx),
                          ("virtio-scsi configuration error: LUN#%u: Failed to get set Media notify obj!\n",
                           pTarget->iLUN), rc);
+                          pTarget->iTarget), rc);
+        }
 …
             pTarget->pDrvBase = NULL;
             rc = VINF_SUCCESS;
             Log(("virtio-scsi: no driver attached to device %s\n", pTarget->pszLunName));
+            Log(("virtio-scsi: no driver attached to device %s\n", pTarget->pszTargetName));
+        }
         else
+        {
             AssertLogRelMsgFailed(("virtio-scsi: Failed to attach %s\n", pTarget->pszLunName));
+            AssertLogRelMsgFailed(("virtio-scsi: Failed to attach %s: %Rrc\n", pTarget->pszTargetName));
             return rc;
+        }

trunk/src/VBox/Devices/VirtIO/Virtio_1_0.cpp

-              r80718
+              r80762
 #define INSTANCE(pVirtio) pVirtio->szInstance
+#define QUEUENAME(qIdx) (pVirtio->virtqProxy[qIdx].szVirtqName)
+#define QUEUENAME(qIdx) (pVirtio->virtqState[qIdx].szVirtqName)
+/**
+ * See API comments in header file for description
+ */
+void virtioVirtToSgPhys(VIRTIOHANDLE hVirtio, PRTSGBUF pSgDst, void *pvSrc, size_t cb)
+{
+    while (cb)
+    {
+        size_t cbSeg = cb;
+        RTGCPHYS GCPhys = (RTGCPHYS)RTSgBufGetNextSegment(pSgDst, &cbSeg);
+        PDMDevHlpPhysWrite(((PVIRTIOSTATE)hVirtio)->CTX_SUFF(pDevIns), GCPhys, pvSrc, cbSeg);
+        pvSrc = ((uint8_t *)pvSrc) + cbSeg;
+        cb -= cbSeg;
+    }
+}
+/**
+ * See API comments in header file for description
+ */
+void virtioSgPhysToVirt(VIRTIOHANDLE hVirtio, PRTSGBUF pSgSrc, void *pvDst, size_t cb)
+{
+    while (cb)
+    {
+        size_t cbSeg = cb;
+        RTGCPHYS GCPhys = (RTGCPHYS)RTSgBufGetNextSegment(pSgSrc, &cbSeg);
+        PDMDevHlpPhysRead(((PVIRTIOSTATE)hVirtio)->CTX_SUFF(pDevIns), GCPhys, pvDst, cbSeg);
+        pvDst = ((uint8_t *)pvDst) + cbSeg;
+        cb -= cbSeg;
+    }
+}
 /**
 …
     LogFunc(("%s\n", pcszName));
     PVIRTIOSTATE pVirtio = (PVIRTIOSTATE)hVirtio;
+    PVIRTQ_PROXY_T pVirtqProxy = &(pVirtio->virtqProxy[qIdx]);
+    pVirtqProxy->pDescChain = (PVIRTQ_DESC_CHAIN_T)RTMemAllocZ(sizeof(VIRTQ_DESC_CHAIN_T));
+    if (!pVirtqProxy->pDescChain)
+    {
+        Log(("Out of memory!"));
+        return VERR_NO_MEMORY;
+    }
+    pVirtqProxy->uAvailIdx = 0;
+    pVirtqProxy->uUsedIdx  = 0;
+    pVirtqProxy->fEventThresholdReached = false;
+    RTStrCopy((char *)pVirtqProxy->szVirtqName, sizeof(pVirtqProxy->szVirtqName), pcszName);
+    PVIRTQSTATE  pVirtq  = &(pVirtio->virtqState[qIdx]);
+    pVirtq->uAvailIdx = 0;
+    pVirtq->uUsedIdx  = 0;
+    pVirtq->fEventThresholdReached = false;
+    RTStrCopy((char *)pVirtq->szVirtqName, sizeof(pVirtq->szVirtqName), pcszName);
     return VINF_SUCCESS;
 …
 const char *virtioQueueGetName(VIRTIOHANDLE hVirtio, uint16_t qIdx)
+{
     return (const char *)((PVIRTIOSTATE)hVirtio)->virtqProxy[qIdx].szVirtqName;
+    return (const char *)((PVIRTIOSTATE)hVirtio)->virtqState[qIdx].szVirtqName;
+}
 …
 int virtioQueueSkip(VIRTIOHANDLE hVirtio, uint16_t qIdx)
+{
     Assert(qIdx < sizeof(VIRTQ_PROXY_T));
+    Assert(qIdx < sizeof(VIRTQSTATE));
     PVIRTIOSTATE pVirtio = (PVIRTIOSTATE)hVirtio;
     PVIRTQ_PROXY_T pVirtqProxy = &pVirtio->virtqProxy[qIdx];
+    PVIRTQSTATE  pVirtq  = &pVirtio->virtqState[qIdx];
     AssertMsgReturn(DRIVER_OK(pVirtio) && pVirtio->uQueueEnable[qIdx],
 …
         return VERR_NOT_AVAILABLE;
     Log2Func(("%s avail_idx=%u\n", pVirtqProxy->szVirtqName, pVirtqProxy->uAvailIdx));
     pVirtqProxy->uAvailIdx++;
+    Log2Func(("%s avail_idx=%u\n", pVirtq->szVirtqName, pVirtq->uAvailIdx));
+    pVirtq->uAvailIdx++;
     return VINF_SUCCESS;
 …
  * See API comments in header file for description
  */
+int virtioQueuePeek(VIRTIOHANDLE hVirtio, uint16_t qIdx, PPRTSGBUF ppInSegs, PPRTSGBUF ppOutSegs)
+{
+    return virtioQueueGet(hVirtio, qIdx, false /* fRemove */, ppInSegs, ppOutSegs);
+}
+ /*/**
+ * See API comments in header file for description
+ */
+int virtioQueueGet(VIRTIOHANDLE hVirtio, uint16_t qIdx, bool fRemove,
+                PPRTSGBUF ppInSegs, PPRTSGBUF ppOutSegs)
+{
+int virtioQueueGet(VIRTIOHANDLE hVirtio, uint16_t qIdx, PPVIRTIO_DESC_CHAIN_T ppDescChain,  bool fRemove)
+{
+    Assert(ppDescChain);
     PVIRTIOSTATE pVirtio = (PVIRTIOSTATE)hVirtio;
+    PVIRTQ_PROXY_T pVirtqProxy = &pVirtio->virtqProxy[qIdx];
+    PVIRTQ_DESC_CHAIN_T pDescChain = pVirtqProxy->pDescChain;
+    PVIRTQSTATE  pVirtq  = &pVirtio->virtqState[qIdx];
+    PRTSGSEG paSegsIn = (PRTSGSEG)RTMemAlloc(VIRTQ_MAX_SIZE * sizeof(RTSGSEG));
+    AssertReturn(paSegsIn, VERR_NO_MEMORY);
+    PRTSGSEG paSegsOut = (PRTSGSEG)RTMemAlloc(VIRTQ_MAX_SIZE * sizeof(RTSGSEG));
+    AssertReturn(paSegsOut, VERR_NO_MEMORY);
     AssertMsgReturn(DRIVER_OK(pVirtio) && pVirtio->uQueueEnable[qIdx],
 …
         return VERR_NOT_AVAILABLE;
+    pDescChain->cSegsIn = pDescChain->cSegsOut = 0;
+    pDescChain->uHeadIdx = virtioReadAvailDescIdx(pVirtio, qIdx, pVirtqProxy->uAvailIdx);
+    uint16_t uDescIdx = pDescChain->uHeadIdx;
+    uint16_t uHeadIdx = virtioReadAvailDescIdx(pVirtio, qIdx, pVirtq->uAvailIdx);
+    uint16_t uDescIdx = uHeadIdx;
     Log6Func(("%s DESC CHAIN: (head) desc_idx=%u [avail_idx=%u]\n",
             pVirtqProxy->szVirtqName, pDescChain->uHeadIdx, pVirtqProxy->uAvailIdx));
+            pVirtq->szVirtqName, uHeadIdx, pVirtq->uAvailIdx));
     if (fRemove)
+        pVirtqProxy->uAvailIdx++;
+    uint32_t cbIn = 0, cbOut = 0;
+        pVirtq->uAvailIdx++;
     VIRTQ_DESC_T desc;
+    uint32_t cbIn = 0, cbOut = 0, cSegsIn = 0, cSegsOut = 0;
     do
+    {
 …
         /**
         * Malicious guests may go beyond aSegsIn or aSegsOut boundaries by linking
+        * Malicious guests may go beyond paSegsIn or paSegsOut boundaries by linking
         * several descriptors into a loop. Since there is no legitimate way to get a sequences of
         * linked descriptors exceeding the total number of descriptors in the ring (see @bugref{8620}),
         * the following aborts I/O if breach and employs a simple log throttling algorithm to notify.
         */
         if (pDescChain->cSegsIn + pDescChain->cSegsOut >= VIRTQ_MAX_SIZE)
+        if (cSegsIn + cSegsOut >= VIRTQ_MAX_SIZE)
+        {
             static volatile uint32_t s_cMessages  = 0;
 …
+        {
             Log6Func(("%s IN  desc_idx=%u seg=%u addr=%RGp cb=%u\n",
                 QUEUENAME(qIdx), uDescIdx, pDescChain->cSegsIn, desc.pGcPhysBuf, desc.cb));
+                QUEUENAME(qIdx), uDescIdx, cSegsIn, desc.pGcPhysBuf, desc.cb));
             cbIn += desc.cb;
             pSeg = &(pDescChain->aSegsIn[pDescChain->cSegsIn++]);
+            pSeg = &(paSegsIn[cSegsIn++]);
+        }
         else
+        {
             Log6Func(("%s OUT desc_idx=%u seg=%u addr=%RGp cb=%u\n",
                 QUEUENAME(qIdx), uDescIdx, pDescChain->cSegsOut, desc.pGcPhysBuf, desc.cb));
+                QUEUENAME(qIdx), uDescIdx, cSegsOut, desc.pGcPhysBuf, desc.cb));
             cbOut += desc.cb;
             pSeg = &(pDescChain->aSegsOut[pDescChain->cSegsOut++]);
+            pSeg = &(paSegsOut[cSegsOut++]);
+        }
 …
     } while (desc.fFlags & VIRTQ_DESC_F_NEXT);
+    RTSgBufInit(&pVirtqProxy->inSgBuf,  (PCRTSGSEG)&pDescChain->aSegsIn,  pDescChain->cSegsIn);
+    RTSgBufInit(&pVirtqProxy->outSgBuf, (PCRTSGSEG)&pDescChain->aSegsOut, pDescChain->cSegsOut);
+    if (ppInSegs)
+        *ppInSegs = &pVirtqProxy->inSgBuf;
+    if (ppOutSegs)
+        *ppOutSegs = &pVirtqProxy->outSgBuf;
+    PRTSGBUF pSgPhysIn = (PRTSGBUF)RTMemAllocZ(sizeof(RTSGBUF));
+    AssertReturn(pSgPhysIn, VERR_NO_MEMORY);
+    RTSgBufInit(pSgPhysIn, (PCRTSGSEG)paSegsIn, cSegsIn);
+    void *pSgVirtOut = RTMemAlloc(cbOut);
+    AssertReturn(pSgVirtOut, VERR_NO_MEMORY);
+    if (cSegsOut)
+    {
+        RTSGBUF outSgPhys;
+        RTSgBufInit(&outSgPhys, (PCRTSGSEG)paSegsOut, cSegsOut);
+        virtioSgPhysToVirt((PVIRTIOSTATE)hVirtio, &outSgPhys, pSgVirtOut, cbOut);
+        RTMemFree(paSegsOut);
+    }
+    PVIRTIO_DESC_CHAIN_T pDescChain = (PVIRTIO_DESC_CHAIN_T)RTMemAllocZ(sizeof(VIRTIO_DESC_CHAIN_T));
+    AssertReturn(pDescChain, VERR_NO_MEMORY);
+    pDescChain->uHeadIdx   = uHeadIdx;
+    pDescChain->cbVirtSrc  = cbOut;
+    pDescChain->pVirtSrc   = pSgVirtOut;
+    pDescChain->cbPhysDst  = cbIn;
+    pDescChain->pSgPhysDst = pSgPhysIn;
+    *ppDescChain = pDescChain;
     Log6Func(("%s -- segs OUT: %u (%u bytes)   IN: %u (%u bytes) --\n",
               pVirtqProxy->szVirtqName, pDescChain->cSegsOut, cbOut, pDescChain->cSegsIn, cbIn));
+              pVirtq->szVirtqName, cSegsOut, cbOut, cSegsIn, cbIn));
     return VINF_SUCCESS;
 …
  /** See API comments in header file prototype for description */
 int virtioQueuePut(VIRTIOHANDLE hVirtio, uint16_t qIdx, PRTSGBUF pSgBuf, bool fFence)
+{
     Assert(qIdx < sizeof(VIRTQ_PROXY_T));
+int virtioQueuePut(VIRTIOHANDLE hVirtio, uint16_t qIdx, PRTSGBUF pSgVirtReturn,
+                   PVIRTIO_DESC_CHAIN_T pDescChain, bool fFence)
+{
+    Assert(qIdx < VIRTQ_MAX_CNT);
     PVIRTIOSTATE pVirtio = (PVIRTIOSTATE)hVirtio;
     PVIRTQ_PROXY_T pVirtqProxy = &pVirtio->virtqProxy[qIdx];
     PVIRTQ_DESC_CHAIN_T pDescChain = pVirtqProxy->pDescChain;
+    PVIRTQSTATE  pVirtq = &pVirtio->virtqState[qIdx];
+    PRTSGBUF pSgPhysReturn = pDescChain->pSgPhysDst;
     AssertMsgReturn(DRIVER_OK(pVirtio) /*&& pVirtio->uQueueEnable[qIdx]*/,
                     ("Guest driver not in ready state.\n"), VERR_INVALID_STATE);
+    /**
+     * Copy caller's virtual memory sg buffer to physical memory
+     */
+    PRTSGBUF pBufSrc = pSgBuf;
+    PRTSGBUF pBufDst = &pVirtqProxy->inSgBuf;
+    size_t cbRemain = RTSgBufCalcTotalLength(pBufSrc);
     uint16_t uUsedIdx = virtioReadUsedRingIdx(pVirtio, qIdx);
     Log6Func(("Copying client data to %s, desc chain (head desc_idx %d)\n",
                QUEUENAME(qIdx), uUsedIdx));
+    /*
+     * Copy virtual memory s/g buffer containing data to return to the guest
+     * to phys. memory described by (IN direction ) s/g buffer of the descriptor chain
+     * original pulled from the queue, to 'send back' to the guest driver.
+     */
+    size_t cbRemain = RTSgBufCalcTotalLength(pSgVirtReturn);
+    size_t cbCopy = 0;
     while (cbRemain)
+    {
+        uint64_t dstSgStart = (uint64_t)pBufDst->paSegs[pBufDst->idxSeg].pvSeg;
+        uint64_t dstSgLen   = (uint64_t)pBufDst->paSegs[pBufDst->idxSeg].cbSeg;
+        uint64_t dstSgCur   = (uint64_t)pBufDst->pvSegCur;
+        size_t cbCopy = RT_MIN(pBufSrc->cbSegLeft, dstSgLen - (dstSgCur - dstSgStart));
+        PCRTSGSEG paSeg = &pSgPhysReturn->paSegs[pSgPhysReturn->idxSeg];
+        uint64_t dstSgStart = (uint64_t)paSeg->pvSeg;
+        uint64_t dstSgLen   = (uint64_t)paSeg->cbSeg;
+        uint64_t dstSgCur   = (uint64_t)pSgPhysReturn->pvSegCur;
+        cbCopy = RT_MIN(pSgVirtReturn->cbSegLeft, dstSgLen - (dstSgCur - dstSgStart));
         PDMDevHlpPhysWrite(pVirtio->CTX_SUFF(pDevIns),
                           (RTGCPHYS)pBufDst->pvSegCur, pBufSrc->pvSegCur, cbCopy);
         RTSgBufAdvance(pBufSrc, cbCopy);
         RTSgBufAdvance(pBufDst, cbCopy);
+                          (RTGCPHYS)pSgPhysReturn->pvSegCur, pSgVirtReturn->pvSegCur, cbCopy);
+        RTSgBufAdvance(pSgVirtReturn, cbCopy);
+        RTSgBufAdvance(pSgPhysReturn, cbCopy);
         cbRemain -= cbCopy;
+    }
     if (fFence)
 …
     /** If this write-ahead crosses threshold where the driver wants to get an event flag it */
     if (pVirtio->uDriverFeatures & VIRTIO_F_EVENT_IDX)
         if (pVirtqProxy->uUsedIdx == virtioReadAvailUsedEvent(pVirtio, qIdx))
             pVirtqProxy->fEventThresholdReached = true;
+        if (pVirtq->uUsedIdx == virtioReadAvailUsedEvent(pVirtio, qIdx))
+            pVirtq->fEventThresholdReached = true;
     /**
      * Place used buffer's descriptor in used ring but don't update used ring's slot index.
      * That will be done with a subsequent client call to virtioQueueSync() */
+    virtioWriteUsedElem(pVirtio, qIdx,
+                        pVirtqProxy->uUsedIdx++,
+                        pDescChain->uHeadIdx,
+                        pDescChain->cSegsIn);
+    virtioWriteUsedElem(pVirtio, qIdx, pVirtq->uUsedIdx++, pDescChain->uHeadIdx, cbCopy);
     if (LogIs2Enabled())
+    {
-        size_t cbInSgBuf = RTSgBufCalcTotalLength(pBufDst);
-        size_t cbWritten = cbInSgBuf - RTSgBufCalcLengthLeft(pBufDst);
         Log2Func((".... Copied %u bytes to %u byte buffer, residual=%d\n",
              cbWritten, cbInSgBuf, cbInSgBuf - cbWritten));
+             cbCopy, pDescChain->cbPhysDst, pDescChain->cbPhysDst - cbCopy));
+    }
     Log6Func(("Write ahead used_idx=%d, %s used_idx=%d\n",
+         pVirtqProxy->uUsedIdx,  QUEUENAME(qIdx), uUsedIdx));
+         pVirtq->uUsedIdx,  QUEUENAME(qIdx), uUsedIdx));
+    RTMemFree((void *)pSgPhysReturn->paSegs);
+    RTMemFree(pSgPhysReturn);
+    RTMemFree(pDescChain);
     return VINF_SUCCESS;
 …
 int virtioQueueSync(VIRTIOHANDLE hVirtio, uint16_t qIdx)
+{
     Assert(qIdx < sizeof(VIRTQ_PROXY_T));
+    Assert(qIdx < sizeof(VIRTQSTATE));
     PVIRTIOSTATE pVirtio = (PVIRTIOSTATE)hVirtio;
     PVIRTQ_PROXY_T pVirtqProxy = &pVirtio->virtqProxy[qIdx];
+    PVIRTQSTATE pVirtq = &pVirtio->virtqState[qIdx];
     AssertMsgReturn(DRIVER_OK(pVirtio) && pVirtio->uQueueEnable[qIdx],
 …
     uint16_t uIdx = virtioReadUsedRingIdx(pVirtio, qIdx);
     Log6Func(("Updating %s used_idx from %u to %u\n",
               QUEUENAME(qIdx), uIdx, pVirtqProxy->uUsedIdx));
     virtioWriteUsedRingIdx(pVirtio, qIdx, pVirtqProxy->uUsedIdx);
+              QUEUENAME(qIdx), uIdx, pVirtq->uUsedIdx));
+    virtioWriteUsedRingIdx(pVirtio, qIdx, pVirtq->uUsedIdx);
     virtioNotifyGuestDriver(pVirtio, qIdx, false);
 …
     Assert(uNotifyIdx == qIdx);
     PVIRTQ_PROXY_T pVirtqProxy = &pVirtio->virtqProxy[qIdx];
     Log6Func(("%s\n", pVirtqProxy->szVirtqName));
+    PVIRTQSTATE pVirtq = &pVirtio->virtqState[qIdx];
+    Log6Func(("%s\n", pVirtq->szVirtqName));
     /** Inform client */
 …
 static void virtioNotifyGuestDriver(PVIRTIOSTATE pVirtio, uint16_t qIdx, bool fForce)
+{
     PVIRTQ_PROXY_T pVirtqProxy = &pVirtio->virtqProxy[qIdx];
+    PVIRTQSTATE pVirtq = &pVirtio->virtqState[qIdx];
     AssertMsgReturnVoid(DRIVER_OK(pVirtio), ("Guest driver not in ready state.\n"));
 …
         if (pVirtio->uDriverFeatures & VIRTIO_F_EVENT_IDX)
+        {
             if (pVirtqProxy->fEventThresholdReached)
+            if (pVirtq->fEventThresholdReached)
+            {
                 virtioRaiseInterrupt(pVirtio, VIRTIO_ISR_VIRTQ_INTERRUPT, fForce);
                 pVirtqProxy->fEventThresholdReached = false;
+                pVirtq->fEventThresholdReached = false;
                 return;
+            }
 …
 static void virtioResetQueue(PVIRTIOSTATE pVirtio, uint16_t qIdx)
+{
     PVIRTQ_PROXY_T pVirtQ = &pVirtio->virtqProxy[qIdx];
+    PVIRTQSTATE pVirtQ = &pVirtio->virtqState[qIdx];
     pVirtQ->uAvailIdx = 0;
     pVirtQ->uUsedIdx  = 0;
 …
     Assert(cb >= 32);
     if (iRegion == VIRTIOSCSI_REGION_PCI_CAP)
+    if (iRegion == VIRTIO_REGION_PCI_CAP)
+    {
         /* We use the assigned size here, because we currently only support page aligned MMIO ranges. */
 …
         uint8_t  uBar    = pVirtio->pPciCfgCap->pciCap.uBar;
         uint32_t pv = 0;
         if (uBar == VIRTIOSCSI_REGION_PCI_CAP)
+        if (uBar == VIRTIO_REGION_PCI_CAP)
             (void)virtioR3MmioRead(pDevIns, NULL, (RTGCPHYS)((uint32_t)pVirtio->pGcPhysPciCapBase + uOffset),
                                     &pv, uLength);
 …
         uint32_t uOffset = pVirtio->pPciCfgCap->pciCap.uOffset;
         uint8_t  uBar    = pVirtio->pPciCfgCap->pciCap.uBar;
         if (uBar == VIRTIOSCSI_REGION_PCI_CAP)
+        if (uBar == VIRTIO_REGION_PCI_CAP)
             (void)virtioR3MmioWrite(pDevIns, NULL, (RTGCPHYS)((uint32_t)pVirtio->pGcPhysPciCapBase + uOffset),
                                     (void *)&u32Value, uLength);
 …
     pCfg->uCapLen  = sizeof(VIRTIO_PCI_CAP_T);
     pCfg->uCapNext = CFGADDR2IDX(pCfg) + pCfg->uCapLen;
     pCfg->uBar     = VIRTIOSCSI_REGION_PCI_CAP;
+    pCfg->uBar     = VIRTIO_REGION_PCI_CAP;
     pCfg->uOffset  = RT_ALIGN_32(0, 4); /* reminder, in case someone changes offset */
     pCfg->uLength  = sizeof(VIRTIO_PCI_COMMON_CFG_T);
 …
     pCfg->uCapLen  = sizeof(VIRTIO_PCI_NOTIFY_CAP_T);
     pCfg->uCapNext = CFGADDR2IDX(pCfg) + pCfg->uCapLen;
     pCfg->uBar     = VIRTIOSCSI_REGION_PCI_CAP;
+    pCfg->uBar     = VIRTIO_REGION_PCI_CAP;
     pCfg->uOffset  = pVirtio->pCommonCfgCap->uOffset + pVirtio->pCommonCfgCap->uLength;
     pCfg->uOffset  = RT_ALIGN_32(pCfg->uOffset, 2);
 …
     pCfg->uCapLen  = sizeof(VIRTIO_PCI_CAP_T);
     pCfg->uCapNext = CFGADDR2IDX(pCfg) + pCfg->uCapLen;
     pCfg->uBar     = VIRTIOSCSI_REGION_PCI_CAP;
+    pCfg->uBar     = VIRTIO_REGION_PCI_CAP;
     pCfg->uOffset  = pVirtio->pNotifyCap->pciCap.uOffset + pVirtio->pNotifyCap->pciCap.uLength;
     pCfg->uLength  = sizeof(uint8_t);
 …
         pCfg->uCapLen  = sizeof(VIRTIO_PCI_CAP_T);
         pCfg->uCapNext = fMsiSupport ? CFGADDR2IDX(pCfg) + pCfg->uCapLen : 0;
         pCfg->uBar     = VIRTIOSCSI_REGION_PCI_CAP;
+        pCfg->uBar     = VIRTIO_REGION_PCI_CAP;
         pCfg->uOffset  = pVirtio->pIsrCap->uOffset + pVirtio->pIsrCap->uLength;
         pCfg->uOffset  = RT_ALIGN_32(pCfg->uOffset, 4);
 …
      *  out size, so pad with an extra page */
     rc = PDMDevHlpPCIIORegionRegister(pDevIns, VIRTIOSCSI_REGION_PCI_CAP,  RT_ALIGN_32(cbRegion + 0x1000, 0x1000),
+    rc = PDMDevHlpPCIIORegionRegister(pDevIns, VIRTIO_REGION_PCI_CAP,  RT_ALIGN_32(cbRegion + 0x1000, 0x1000),
                                       PCI_ADDRESS_SPACE_MEM, virtioR3Map);
     if (RT_FAILURE(rc))
 …
+    {
         Log2Func(("%s queue:\n",
                   "  virtqProxy[%u].uAvailIdx    = %u\n  virtqProxy[%u].uUsedIdx    = %u\n"
+                  "  virtqState[%u].uAvailIdx    = %u\n  virtqState[%u].uUsedIdx    = %u\n"
                   "  uQueueSize[%u]              = %u\n  uQueueNotifyOff[%u]         = %04x\n"
                   "  uQueueMsixVector[%u]        = %04x\n  uQueueEnable[%u]            = %04x\n"
                   "  pGcPhysQueueDesc[%u]        = %RGp\n  pGcPhysQueueAvail[%u]       = %RGp\n"
                   "  pGcPhysQueueUsed[%u]        = %RGp\n",
                         i, pVirtio->virtqProxy[i].szVirtqName, i, pVirtio->virtqProxy[i].uAvailIdx,
                         i, pVirtio->virtqProxy[i].uUsedIdx, i, pVirtio->uQueueSize[i],
+                        i, pVirtio->virtqState[i].szVirtqName, i, pVirtio->virtqState[i].uAvailIdx,
+                        i, pVirtio->virtqState[i].uUsedIdx, i, pVirtio->uQueueSize[i],
                         i, pVirtio->uQueueNotifyOff[i],i, pVirtio->uQueueMsixVector[i],
                         i, pVirtio->uQueueEnable[i], i, pVirtio->pGcPhysQueueDesc[i],
 …
         rc = SSMR3PutU16(pSSM,      pVirtio->uQueueEnable[i]);
         rc = SSMR3PutU16(pSSM,      pVirtio->uQueueSize[i]);
         rc = SSMR3PutU16(pSSM,      pVirtio->virtqProxy[i].uAvailIdx);
         rc = SSMR3PutU16(pSSM,      pVirtio->virtqProxy[i].uUsedIdx);
         rc = SSMR3PutMem(pSSM,      pVirtio->virtqProxy[i].szVirtqName, 32);
+        rc = SSMR3PutU16(pSSM,      pVirtio->virtqState[i].uAvailIdx);
+        rc = SSMR3PutU16(pSSM,      pVirtio->virtqState[i].uUsedIdx);
+        rc = SSMR3PutMem(pSSM,      pVirtio->virtqState[i].szVirtqName, 32);
+    }
 …
             rc = SSMR3GetU16(pSSM,      &pVirtio->uQueueEnable[i]);
             rc = SSMR3GetU16(pSSM,      &pVirtio->uQueueSize[i]);
             rc = SSMR3GetU16(pSSM,      &pVirtio->virtqProxy[i].uAvailIdx);
             rc = SSMR3GetU16(pSSM,      &pVirtio->virtqProxy[i].uUsedIdx);
             rc = SSMR3GetMem(pSSM,      (void *)&pVirtio->virtqProxy[i].szVirtqName, 32);
+            rc = SSMR3GetU16(pSSM,      &pVirtio->virtqState[i].uAvailIdx);
+            rc = SSMR3GetU16(pSSM,      &pVirtio->virtqState[i].uUsedIdx);
+            rc = SSMR3GetMem(pSSM,      (void *)&pVirtio->virtqState[i].szVirtqName, 32);
+        }
+    }

trunk/src/VBox/Devices/VirtIO/Virtio_1_0.h

-              r80683
+              r80762
 #define VIRTQ_MAX_CNT                       24                   /**< Max queues we allow guest to create      */
 #define VIRTIO_NOTIFY_OFFSET_MULTIPLIER     2                    /**< VirtIO Notify Cap. MMIO config param     */
+#define VIRTIOSCSI_REGION_MEM_IO            0                    /**< BAR for MMIO (implementation specific)   */
+#define VIRTIOSCSI_REGION_PORT_IO           1                    /**< BAR for PORT I/O (impl specific)         */
+#define VIRTIOSCSI_REGION_PCI_CAP           2                    /**< BAR for VirtIO Cap. MMIO (impl specific) */
+#define VIRTIO_REGION_PCI_CAP               2                    /**< BAR for VirtIO Cap. MMIO (impl specific) */
 #define VIRTIO_HEX_DUMP(logLevel, pv, cb, base, title) \
 …
             virtioHexDump((pv), (cb), (base), (title)); \
     } while (0)
+/**
+ * The following structure holds the pre-processed context of descriptor chain pulled from a virtio queue
+ * to conduct a transaction between the client of this virtio implementation and the guest VM's virtio driver.
+ * It contains the head index of the descriptor chain, the output data from the client that has been
+ * converted to a contiguous virtual memory and a physical memory scatter-gather buffer for use by by
+ * the virtio framework to complete the transaction in the final phase of round-trip processing.
+ *
+ * The client should not modify the contents of this buffer. The primary field of interest to the
+ * client is pVirtSrc, which contains the VirtIO "OUT" (to device) buffer from the guest.
+ *
+ * Typical use is, When the client (worker thread) detects available data on the queue, it pulls the
+ * next one of these descriptor chain structs off the queue using virtioQueueGet(), processes the
+ * virtual memory buffer pVirtSrc, produces result data to pass back to the guest driver and calls
+ * virtioQueuePut() to return the result data to the client.
+ */
+typedef struct VIRTIO_DESC_CHAIN
+{
+    uint32_t  uHeadIdx;                                    /**< Head idx of associated desc chain        */
+    size_t    cbVirtSrc;                                   /**< Size of virt source buffer               */
+    void     *pVirtSrc;                                    /**< Virt mem buf holding out data from guest */
+    size_t    cbPhysDst;                                   /**< Total size of dst buffer                 */
+    PRTSGBUF  pSgPhysDst;                                  /**< Phys S/G buf to store result for guest   */
+} VIRTIO_DESC_CHAIN_T, *PVIRTIO_DESC_CHAIN_T, **PPVIRTIO_DESC_CHAIN_T;
 /**
 …
 int virtioQueueAttach(VIRTIOHANDLE hVirtio, uint16_t qIdx, const char *pcszName);
-/**
- * Get the features VirtIO is running withnow.
+ *
- * @returns Features the guest driver has accepted, finalizing the operational features
+ *
- */
-uint64_t virtioGetNegotiatedFeatures(VIRTIOHANDLE hVirtio);
 /**
  * Detaches from queue and release resources
 …
 /**
+ * Get name of queue, by qIdx, assigned at virtioQueueAttach()
+ *
+ * @param hVirtio   - Handle for VirtIO framework
+ * @param qIdx      - Queue number
+ *
+ * @returns          Success: Returns pointer to queue name
+ *                   Failure: Returns "<null>" (never returns NULL pointer).
+ */
+const char *virtioQueueGetName(VIRTIOHANDLE hVirtio, uint16_t qIdx);
+/**
+ * Removes descriptor chain from avail ring of indicated queue and converts it to
+ * scatter/gather buffer (whose segments contain guest phys. data pointers)
+ *
+ * @param hVirtio   - Handle for VirtIO framework
+ * @param qIdx      - Queue number
+ * @param ppInSegs  - Address to store pointer to host-to-guest data retrieved from virtq as RTSGBUF
+ * @param ppOutSegs - Address to store pointer to host-to-guest data retrieved from virtq as RTSGBUF
+ *
+ * @returns status    VINF_SUCCESS         - Success
+ *                    VERR_INVALID_STATE   - VirtIO not in ready state
+ */
+int virtioQueueGet(VIRTIOHANDLE hVirtio, uint16_t qIdx, bool fRemove, PPRTSGBUF ppInSegs, PPRTSGBUF ppOutSegs);
+/**
+ * Same as virtioQueueGet() but leaves the item on the avail ring of the queue.
+ *
+ * @param hVirtio   - Handle for VirtIO framework
+ * @param qIdx      - Queue number
+ * @param ppInSegs  - Address to store pointer to host-to-guest data retrieved from virtq as RTSGBUF
+ * @param ppOutSegs - Address to store pointer to host-to-guest data retrieved from virtq as RTSGBUF
+ *
+ * @returns           VINF_SUCCESS         - Success
+ *                    VERR_INVALID_STATE   - VirtIO not in ready state
+ *                    VERR_NOT_AVAILABLE   - Queue is empty
+ */
+int virtioQueuePeek(VIRTIOHANDLE hVirtio, uint16_t qIdx, PPRTSGBUF ppInSegs, PPRTSGBUF ppOutSegs);
+/**
+ * Writes a scatter/gather buffer (whose segments point to virtual memory) to next
+ * available descriptor chain (consisting of segments pointing to guest phys. memory),
+ * for the indicated virtq. The data won't be seen by the guest until the next
+ * client call to virtioQueueSync(), which puts aforementioned descriptor
+ * chain's head index on the indicated virtq's used ring (see VirtIO 1.0
+ * specification, Section 2.4 "Virtqueues").
+ *
+ * @param hVirtio   - Handle for VirtIO framework
+ * @param qIdx      - Queue number
+ * @param pSgBuf    - Caller's sgbuf of one or more virtual memory segments
+ *                    to write to the queue. This is useful because some kinds
+ *                    of transactions involve variable length subcomponents
+ *                    whose size can only be known near the time of writing.
+ * @parame fFence   - If set put up copy fence (memory barrier) after
+ *                    copying to guest phys. mem.
+ *
+ * @returns           VINF_SUCCESS         - Success
+ *                    VERR_INVALID_STATE   - VirtIO not in ready state
+ *                    VERR_NOT_AVAILABLE   - Queue is empty
+ */
+int virtioQueuePut(VIRTIOHANDLE hVirtio, uint16_t qIdx, PRTSGBUF pSgBuf, bool fFence);
+ * Removes descriptor chain from avail ring of indicated queue and converts the descriptor
+ * chain into its OUT (to device) and IN to guest components. Additionally it converts
+ * the OUT desc chain data to a contiguous virtual memory buffer for easy consumption
+ * by the caller. The caller must return the descriptor chain pointer via virtioQueuePut()
+ * and then call virtioQueueSync() at some point to return the data to the guest and
+ * complete the transaction.
+ *
+ * @param hVirtio      - Handle for VirtIO framework
+ * @param qIdx         - Queue number
+ * @param fRemove      - flags whether to remove desc chain from queue (false = peek)
+ * @param ppDescChain  - Address to store pointer to descriptor chain that contains the
+ *                       pre-processed transaction information pulled from the virtq.
+ *
+ * @returns status     VINF_SUCCESS         - Success
+ *                     VERR_INVALID_STATE   - VirtIO not in ready state
+ */
+int virtioQueueGet(VIRTIOHANDLE hVirtio, uint16_t qIdx, PPVIRTIO_DESC_CHAIN_T ppDescChain, bool fRemove);
+/**
+ * Returns data to the guest to complete a transaction initiated by virtQueueGet().
+ * The caller passes in a pointer to a scatter-gather buffer of virtual memory segments
+ * and a pointer to the descriptor chain context originally derived from the pulled
+ * queue entry, and this function will put write the virtual memory s/g buffer into the
+ * guest's physical memory free the descriptor chain. The caller handles the freeing
+ * (as needed) of the virtual memory buffer.
+ *
+ * NOTE: This does a write-ahead to the used ring of the guest's queue.
+ *       The data written won't be seen by the guest until the next call to virtioQueueSync()
+ *
+ *
+ * @param hVirtio       - Handle for VirtIO framework
+ * @param qIdx          - Queue number
+ *
+ * @param pSgVirtReturn - Points toscatter-gather buffer of virtual memory segments
+                          the caller is returning to the guest.
+ *
+ * @param pDescChain    - This contains the context of the scatter-gather buffer
+ *                        originally pulled from the queue.
+ *
+ * @parame fFence       - If true, put up copy fence (memory barrier) after
+ *                        copying to guest phys. mem.
+ *
+ * @returns              VINF_SUCCESS         - Success
+ *                       VERR_INVALID_STATE   - VirtIO not in ready state
+ *                       VERR_NOT_AVAILABLE   - Queue is empty
+ */
+ int virtioQueuePut(VIRTIOHANDLE hVirtio, uint16_t qIdx, PRTSGBUF pSgVirtReturn,
+                    PVIRTIO_DESC_CHAIN_T pDescChain, bool fFence);
 /**
 …
 void virtioPropagateResumeNotification(VIRTIOHANDLE hVirtio);
+/**
+ * Get name of queue, by qIdx, assigned at virtioQueueAttach()
+ *
+ * @param hVirtio   - Handle for VirtIO framework
+ * @param qIdx      - Queue number
+ *
+ * @returns          Success: Returns pointer to queue name
+ *                   Failure: Returns "<null>" (never returns NULL pointer).
+ */
+const char *virtioQueueGetName(VIRTIOHANDLE hVirtio, uint16_t qIdx);
+/**
+ * Get the features VirtIO is running withnow.
+ *
+ * @returns Features the guest driver has accepted, finalizing the operational features
+ *
+ */
+uint64_t virtioGetNegotiatedFeatures(VIRTIOHANDLE hVirtio);

trunk/src/VBox/Devices/VirtIO/Virtio_1_0_impl.h

-              r80718
+              r80762
 /**
- * IN/OUT Descriptor chains descriptor chain associated with one element of virtq avail ring represented
- * as respective arrays of SG segments.
- */
-typedef struct VIRTQ_DESC_CHAIN                                  /**< Describes a single queue element          */
+{
-    RTSGSEG     aSegsIn[VIRTQ_MAX_SIZE];                         /**< List of segments to write to guest        */
-    RTSGSEG     aSegsOut[VIRTQ_MAX_SIZE];                        /**< List of segments read from guest          */
-    uint32_t    uHeadIdx;                                        /**< Index at head desc (source of seg arrays) */
-    uint32_t    cSegsIn;                                         /**< Count of segments in aSegsIn[]            */
-    uint32_t    cSegsOut;                                        /**< Count of segments in aSegsOut[]           */
-} VIRTQ_DESC_CHAIN_T, *PVIRTQ_DESC_CHAIN_T;
-/**
  * Local implementation's usage context of a queue (e.g. not part of VirtIO specification)
  */
+typedef struct VIRTQ_PROXY
+{
+    RTSGBUF     inSgBuf;                                         /**< host-to-guest buffers                     */
+    RTSGBUF     outSgBuf;                                        /**< guest-to-host buffers                     */
+typedef struct VIRTQSTATE
+{
     const char  szVirtqName[32];                                 /**< Dev-specific name of queue                */
     uint16_t    uAvailIdx;                                       /**< Consumer's position in avail ring         */
     uint16_t    uUsedIdx;                                        /**< Consumer's position in used ring          */
     bool        fEventThresholdReached;                          /**< Don't lose track while queueing ahead     */
+    PVIRTQ_DESC_CHAIN_T pDescChain;                              /**< Per-queue s/g data.                       */
+} VIRTQ_PROXY_T, *PVIRTQ_PROXY_T;
+} VIRTQSTATE, *PVIRTQSTATE;
 /**
 …
     uint8_t                   uConfigGeneration;                 /**< (MMIO) Device config sequencer       HOST */
     VIRTQ_PROXY_T             virtqProxy[VIRTQ_MAX_CNT];         /**< Local impl-specific queue context         */
+    VIRTQSTATE                virtqState[VIRTQ_MAX_CNT];         /**< Local impl-specific queue context         */
     VIRTIOCALLBACKS           virtioCallbacks;                   /**< Callback vectors to client                */
 …
 DECLINLINE(bool) virtqIsEmpty(PVIRTIOSTATE pVirtio, uint16_t qIdx)
+{
     return virtioReadAvailRingIdx(pVirtio, qIdx) == pVirtio->virtqProxy[qIdx].uAvailIdx;
+    return virtioReadAvailRingIdx(pVirtio, qIdx) == pVirtio->virtqState[qIdx].uAvailIdx;
+}

Note: See TracChangeset for help on using the changeset viewer.