Changeset 80762 in vbox for trunk/src/VBox/Devices/VirtIO

Timestamp:

Sep 13, 2019 2:33:47 AM (5 years ago)

Author:

vboxsync

Message:

Storage/DevVirtioSCSI.cpp: Added multi-target support. See bugref:9440, Comment #90

Location:

trunk/src/VBox/Devices/VirtIO

Files:

• Virtio_1_0.cpp (modified) (29 diffs)
• Virtio_1_0.h (modified) (5 diffs)
• Virtio_1_0_impl.h (modified) (3 diffs)

trunk/src/VBox/Devices/VirtIO/Virtio_1_0.cpp

@@ -34 +34 @@
 
 #define INSTANCE(pVirtio) pVirtio->szInstance
-#define QUEUENAME(qIdx) (pVirtio->virtqProxy[qIdx].szVirtqName)
-
+#define QUEUENAME(qIdx) (pVirtio->virtqState[qIdx].szVirtqName)
+
+/**
+ * See API comments in header file for description
+ */
+void virtioVirtToSgPhys(VIRTIOHANDLE hVirtio, PRTSGBUF pSgDst, void *pvSrc, size_t cb)
+{
+    while (cb)
+    {
+        size_t cbSeg = cb;
+        RTGCPHYS GCPhys = (RTGCPHYS)RTSgBufGetNextSegment(pSgDst, &cbSeg);
+        PDMDevHlpPhysWrite(((PVIRTIOSTATE)hVirtio)->CTX_SUFF(pDevIns), GCPhys, pvSrc, cbSeg);
+        pvSrc = ((uint8_t *)pvSrc) + cbSeg;
+        cb -= cbSeg;
+    }
+}
+
+/**
+ * See API comments in header file for description
+ */
+void virtioSgPhysToVirt(VIRTIOHANDLE hVirtio, PRTSGBUF pSgSrc, void *pvDst, size_t cb)
+{
+    while (cb)
+    {
+        size_t cbSeg = cb;
+        RTGCPHYS GCPhys = (RTGCPHYS)RTSgBufGetNextSegment(pSgSrc, &cbSeg);
+        PDMDevHlpPhysRead(((PVIRTIOSTATE)hVirtio)->CTX_SUFF(pDevIns), GCPhys, pvDst, cbSeg);
+        pvDst = ((uint8_t *)pvDst) + cbSeg;
+        cb -= cbSeg;
+    }
+}
 
 /**
@@ -44 +73 @@
     LogFunc(("%s\n", pcszName));
     PVIRTIOSTATE pVirtio = (PVIRTIOSTATE)hVirtio;
-    PVIRTQ_PROXY_T pVirtqProxy = &(pVirtio->virtqProxy[qIdx]);
-    pVirtqProxy->pDescChain = (PVIRTQ_DESC_CHAIN_T)RTMemAllocZ(sizeof(VIRTQ_DESC_CHAIN_T));
-    if (!pVirtqProxy->pDescChain)
-    {
-        Log(("Out of memory!"));
-        return VERR_NO_MEMORY;
-    }
-    pVirtqProxy->uAvailIdx = 0;
-    pVirtqProxy->uUsedIdx  = 0;
-    pVirtqProxy->fEventThresholdReached = false;
-    RTStrCopy((char *)pVirtqProxy->szVirtqName, sizeof(pVirtqProxy->szVirtqName), pcszName);
+    PVIRTQSTATE  pVirtq  = &(pVirtio->virtqState[qIdx]);
+    pVirtq->uAvailIdx = 0;
+    pVirtq->uUsedIdx  = 0;
+    pVirtq->fEventThresholdReached = false;
+    RTStrCopy((char *)pVirtq->szVirtqName, sizeof(pVirtq->szVirtqName), pcszName);
     return VINF_SUCCESS;
 
@@ -64 +87 @@
 const char *virtioQueueGetName(VIRTIOHANDLE hVirtio, uint16_t qIdx)
 {
-    return (const char *)((PVIRTIOSTATE)hVirtio)->virtqProxy[qIdx].szVirtqName;
+    return (const char *)((PVIRTIOSTATE)hVirtio)->virtqState[qIdx].szVirtqName;
 }
 
@@ -72 +95 @@
 int virtioQueueSkip(VIRTIOHANDLE hVirtio, uint16_t qIdx)
 {
-    Assert(qIdx < sizeof(VIRTQ_PROXY_T));
+    Assert(qIdx < sizeof(VIRTQSTATE));
 
     PVIRTIOSTATE pVirtio = (PVIRTIOSTATE)hVirtio;
-    PVIRTQ_PROXY_T pVirtqProxy = &pVirtio->virtqProxy[qIdx];
+    PVIRTQSTATE  pVirtq  = &pVirtio->virtqState[qIdx];
 
     AssertMsgReturn(DRIVER_OK(pVirtio) && pVirtio->uQueueEnable[qIdx],
@@ -83 +106 @@
         return VERR_NOT_AVAILABLE;
 
-    Log2Func(("%s avail_idx=%u\n", pVirtqProxy->szVirtqName, pVirtqProxy->uAvailIdx));
-    pVirtqProxy->uAvailIdx++;
+    Log2Func(("%s avail_idx=%u\n", pVirtq->szVirtqName, pVirtq->uAvailIdx));
+    pVirtq->uAvailIdx++;
 
     return VINF_SUCCESS;
@@ -112 +135 @@
  * See API comments in header file for description
  */
-int virtioQueuePeek(VIRTIOHANDLE hVirtio, uint16_t qIdx, PPRTSGBUF ppInSegs, PPRTSGBUF ppOutSegs)
-{
-    return virtioQueueGet(hVirtio, qIdx, false /* fRemove */, ppInSegs, ppOutSegs);
-}
-
- /*/**
- * See API comments in header file for description
- */
-int virtioQueueGet(VIRTIOHANDLE hVirtio, uint16_t qIdx, bool fRemove,
-                PPRTSGBUF ppInSegs, PPRTSGBUF ppOutSegs)
-{
+int virtioQueueGet(VIRTIOHANDLE hVirtio, uint16_t qIdx, PPVIRTIO_DESC_CHAIN_T ppDescChain,  bool fRemove)
+{
+    Assert(ppDescChain);
+
     PVIRTIOSTATE pVirtio = (PVIRTIOSTATE)hVirtio;
-    PVIRTQ_PROXY_T pVirtqProxy = &pVirtio->virtqProxy[qIdx];
-    PVIRTQ_DESC_CHAIN_T pDescChain = pVirtqProxy->pDescChain;
+    PVIRTQSTATE  pVirtq  = &pVirtio->virtqState[qIdx];
+
+    PRTSGSEG paSegsIn = (PRTSGSEG)RTMemAlloc(VIRTQ_MAX_SIZE * sizeof(RTSGSEG));
+    AssertReturn(paSegsIn, VERR_NO_MEMORY);
+
+    PRTSGSEG paSegsOut = (PRTSGSEG)RTMemAlloc(VIRTQ_MAX_SIZE * sizeof(RTSGSEG));
+    AssertReturn(paSegsOut, VERR_NO_MEMORY);
 
     AssertMsgReturn(DRIVER_OK(pVirtio) && pVirtio->uQueueEnable[qIdx],
@@ -133 +154 @@
         return VERR_NOT_AVAILABLE;
 
-    pDescChain->cSegsIn = pDescChain->cSegsOut = 0;
-
-    pDescChain->uHeadIdx = virtioReadAvailDescIdx(pVirtio, qIdx, pVirtqProxy->uAvailIdx);
-    uint16_t uDescIdx = pDescChain->uHeadIdx;
+    uint16_t uHeadIdx = virtioReadAvailDescIdx(pVirtio, qIdx, pVirtq->uAvailIdx);
+    uint16_t uDescIdx = uHeadIdx;
 
     Log6Func(("%s DESC CHAIN: (head) desc_idx=%u [avail_idx=%u]\n",
-            pVirtqProxy->szVirtqName, pDescChain->uHeadIdx, pVirtqProxy->uAvailIdx));
+            pVirtq->szVirtqName, uHeadIdx, pVirtq->uAvailIdx));
 
     if (fRemove)
-        pVirtqProxy->uAvailIdx++;
-
-    uint32_t cbIn = 0, cbOut = 0;
+        pVirtq->uAvailIdx++;
+
     VIRTQ_DESC_T desc;
+
+    uint32_t cbIn = 0, cbOut = 0, cSegsIn = 0, cSegsOut = 0;
+
     do
     {
@@ -151 +172 @@
 
         /**
-        * Malicious guests may go beyond aSegsIn or aSegsOut boundaries by linking
+        * Malicious guests may go beyond paSegsIn or paSegsOut boundaries by linking
         * several descriptors into a loop. Since there is no legitimate way to get a sequences of
         * linked descriptors exceeding the total number of descriptors in the ring (see @bugref{8620}),
         * the following aborts I/O if breach and employs a simple log throttling algorithm to notify.
         */
-        if (pDescChain->cSegsIn + pDescChain->cSegsOut >= VIRTQ_MAX_SIZE)
+        if (cSegsIn + cSegsOut >= VIRTQ_MAX_SIZE)
         {
             static volatile uint32_t s_cMessages  = 0;
@@ -178 +199 @@
         {
             Log6Func(("%s IN  desc_idx=%u seg=%u addr=%RGp cb=%u\n",
-                QUEUENAME(qIdx), uDescIdx, pDescChain->cSegsIn, desc.pGcPhysBuf, desc.cb));
+                QUEUENAME(qIdx), uDescIdx, cSegsIn, desc.pGcPhysBuf, desc.cb));
             cbIn += desc.cb;
-            pSeg = &(pDescChain->aSegsIn[pDescChain->cSegsIn++]);
+            pSeg = &(paSegsIn[cSegsIn++]);
         }
         else
         {
             Log6Func(("%s OUT desc_idx=%u seg=%u addr=%RGp cb=%u\n",
-                QUEUENAME(qIdx), uDescIdx, pDescChain->cSegsOut, desc.pGcPhysBuf, desc.cb));
+                QUEUENAME(qIdx), uDescIdx, cSegsOut, desc.pGcPhysBuf, desc.cb));
             cbOut += desc.cb;
-            pSeg = &(pDescChain->aSegsOut[pDescChain->cSegsOut++]);
+            pSeg = &(paSegsOut[cSegsOut++]);
         }
 
@@ -196 +217 @@
     } while (desc.fFlags & VIRTQ_DESC_F_NEXT);
 
-    RTSgBufInit(&pVirtqProxy->inSgBuf,  (PCRTSGSEG)&pDescChain->aSegsIn,  pDescChain->cSegsIn);
-    RTSgBufInit(&pVirtqProxy->outSgBuf, (PCRTSGSEG)&pDescChain->aSegsOut, pDescChain->cSegsOut);
-
-    if (ppInSegs)
-        *ppInSegs = &pVirtqProxy->inSgBuf;
-
-    if (ppOutSegs)
-        *ppOutSegs = &pVirtqProxy->outSgBuf;
+
+    PRTSGBUF pSgPhysIn = (PRTSGBUF)RTMemAllocZ(sizeof(RTSGBUF));
+    AssertReturn(pSgPhysIn, VERR_NO_MEMORY);
+
+    RTSgBufInit(pSgPhysIn, (PCRTSGSEG)paSegsIn, cSegsIn);
+
+    void *pSgVirtOut = RTMemAlloc(cbOut);
+    AssertReturn(pSgVirtOut, VERR_NO_MEMORY);
+
+    if (cSegsOut)
+    {
+        RTSGBUF outSgPhys;
+        RTSgBufInit(&outSgPhys, (PCRTSGSEG)paSegsOut, cSegsOut);
+        virtioSgPhysToVirt((PVIRTIOSTATE)hVirtio, &outSgPhys, pSgVirtOut, cbOut);
+        RTMemFree(paSegsOut);
+    }
+
+    PVIRTIO_DESC_CHAIN_T pDescChain = (PVIRTIO_DESC_CHAIN_T)RTMemAllocZ(sizeof(VIRTIO_DESC_CHAIN_T));
+    AssertReturn(pDescChain, VERR_NO_MEMORY);
+
+    pDescChain->uHeadIdx   = uHeadIdx;
+    pDescChain->cbVirtSrc  = cbOut;
+    pDescChain->pVirtSrc   = pSgVirtOut;
+    pDescChain->cbPhysDst  = cbIn;
+    pDescChain->pSgPhysDst = pSgPhysIn;
+    *ppDescChain = pDescChain;
 
     Log6Func(("%s -- segs OUT: %u (%u bytes)   IN: %u (%u bytes) --\n",
-              pVirtqProxy->szVirtqName, pDescChain->cSegsOut, cbOut, pDescChain->cSegsIn, cbIn));
+              pVirtq->szVirtqName, cSegsOut, cbOut, cSegsIn, cbIn));
 
     return VINF_SUCCESS;
@@ -212 +251 @@
 
  /** See API comments in header file prototype for description */
-int virtioQueuePut(VIRTIOHANDLE hVirtio, uint16_t qIdx, PRTSGBUF pSgBuf, bool fFence)
-{
-
-    Assert(qIdx < sizeof(VIRTQ_PROXY_T));
+int virtioQueuePut(VIRTIOHANDLE hVirtio, uint16_t qIdx, PRTSGBUF pSgVirtReturn,
+                   PVIRTIO_DESC_CHAIN_T pDescChain, bool fFence)
+{
+    Assert(qIdx < VIRTQ_MAX_CNT);
 
     PVIRTIOSTATE pVirtio = (PVIRTIOSTATE)hVirtio;
-    PVIRTQ_PROXY_T pVirtqProxy = &pVirtio->virtqProxy[qIdx];
-    PVIRTQ_DESC_CHAIN_T pDescChain = pVirtqProxy->pDescChain;
+    PVIRTQSTATE  pVirtq = &pVirtio->virtqState[qIdx];
+    PRTSGBUF pSgPhysReturn = pDescChain->pSgPhysDst;
 
     AssertMsgReturn(DRIVER_OK(pVirtio) /*&& pVirtio->uQueueEnable[qIdx]*/,
                     ("Guest driver not in ready state.\n"), VERR_INVALID_STATE);
-    /**
-     * Copy caller's virtual memory sg buffer to physical memory
-     */
-    PRTSGBUF pBufSrc = pSgBuf;
-    PRTSGBUF pBufDst = &pVirtqProxy->inSgBuf;
-
-    size_t cbRemain = RTSgBufCalcTotalLength(pBufSrc);
+
     uint16_t uUsedIdx = virtioReadUsedRingIdx(pVirtio, qIdx);
     Log6Func(("Copying client data to %s, desc chain (head desc_idx %d)\n",
                QUEUENAME(qIdx), uUsedIdx));
 
+    /*
+     * Copy virtual memory s/g buffer containing data to return to the guest
+     * to phys. memory described by (IN direction ) s/g buffer of the descriptor chain
+     * original pulled from the queue, to 'send back' to the guest driver.
+     */
+    size_t cbRemain = RTSgBufCalcTotalLength(pSgVirtReturn);
+    size_t cbCopy = 0;
     while (cbRemain)
     {
-        uint64_t dstSgStart = (uint64_t)pBufDst->paSegs[pBufDst->idxSeg].pvSeg;
-        uint64_t dstSgLen   = (uint64_t)pBufDst->paSegs[pBufDst->idxSeg].cbSeg;
-        uint64_t dstSgCur   = (uint64_t)pBufDst->pvSegCur;
-        size_t cbCopy = RT_MIN(pBufSrc->cbSegLeft, dstSgLen - (dstSgCur - dstSgStart));
+        PCRTSGSEG paSeg = &pSgPhysReturn->paSegs[pSgPhysReturn->idxSeg];
+        uint64_t dstSgStart = (uint64_t)paSeg->pvSeg;
+        uint64_t dstSgLen   = (uint64_t)paSeg->cbSeg;
+        uint64_t dstSgCur   = (uint64_t)pSgPhysReturn->pvSegCur;
+        cbCopy = RT_MIN(pSgVirtReturn->cbSegLeft, dstSgLen - (dstSgCur - dstSgStart));
         PDMDevHlpPhysWrite(pVirtio->CTX_SUFF(pDevIns),
-                          (RTGCPHYS)pBufDst->pvSegCur, pBufSrc->pvSegCur, cbCopy);
-        RTSgBufAdvance(pBufSrc, cbCopy);
-        RTSgBufAdvance(pBufDst, cbCopy);
+                          (RTGCPHYS)pSgPhysReturn->pvSegCur, pSgVirtReturn->pvSegCur, cbCopy);
+        RTSgBufAdvance(pSgVirtReturn, cbCopy);
+        RTSgBufAdvance(pSgPhysReturn, cbCopy);
         cbRemain -= cbCopy;
     }
+
 
     if (fFence)
@@ -252 +294 @@
     /** If this write-ahead crosses threshold where the driver wants to get an event flag it */
     if (pVirtio->uDriverFeatures & VIRTIO_F_EVENT_IDX)
-        if (pVirtqProxy->uUsedIdx == virtioReadAvailUsedEvent(pVirtio, qIdx))
-            pVirtqProxy->fEventThresholdReached = true;
+        if (pVirtq->uUsedIdx == virtioReadAvailUsedEvent(pVirtio, qIdx))
+            pVirtq->fEventThresholdReached = true;
 
     /**
      * Place used buffer's descriptor in used ring but don't update used ring's slot index.
      * That will be done with a subsequent client call to virtioQueueSync() */
-    virtioWriteUsedElem(pVirtio, qIdx,
-                        pVirtqProxy->uUsedIdx++,
-                        pDescChain->uHeadIdx,
-                        pDescChain->cSegsIn);
+    virtioWriteUsedElem(pVirtio, qIdx, pVirtq->uUsedIdx++, pDescChain->uHeadIdx, cbCopy);
+
 
     if (LogIs2Enabled())
     {
-        size_t cbInSgBuf = RTSgBufCalcTotalLength(pBufDst);
-        size_t cbWritten = cbInSgBuf - RTSgBufCalcLengthLeft(pBufDst);
         Log2Func((".... Copied %u bytes to %u byte buffer, residual=%d\n",
-             cbWritten, cbInSgBuf, cbInSgBuf - cbWritten));
+             cbCopy, pDescChain->cbPhysDst, pDescChain->cbPhysDst - cbCopy));
     }
     Log6Func(("Write ahead used_idx=%d, %s used_idx=%d\n",
-         pVirtqProxy->uUsedIdx,  QUEUENAME(qIdx), uUsedIdx));
+         pVirtq->uUsedIdx,  QUEUENAME(qIdx), uUsedIdx));
+
+    RTMemFree((void *)pSgPhysReturn->paSegs);
+    RTMemFree(pSgPhysReturn);
+    RTMemFree(pDescChain);
 
     return VINF_SUCCESS;
@@ -281 +323 @@
 int virtioQueueSync(VIRTIOHANDLE hVirtio, uint16_t qIdx)
 {
-    Assert(qIdx < sizeof(VIRTQ_PROXY_T));
+    Assert(qIdx < sizeof(VIRTQSTATE));
 
     PVIRTIOSTATE pVirtio = (PVIRTIOSTATE)hVirtio;
-    PVIRTQ_PROXY_T pVirtqProxy = &pVirtio->virtqProxy[qIdx];
+    PVIRTQSTATE pVirtq = &pVirtio->virtqState[qIdx];
 
     AssertMsgReturn(DRIVER_OK(pVirtio) && pVirtio->uQueueEnable[qIdx],
@@ -291 +333 @@
     uint16_t uIdx = virtioReadUsedRingIdx(pVirtio, qIdx);
     Log6Func(("Updating %s used_idx from %u to %u\n",
-              QUEUENAME(qIdx), uIdx, pVirtqProxy->uUsedIdx));
-
-    virtioWriteUsedRingIdx(pVirtio, qIdx, pVirtqProxy->uUsedIdx);
+              QUEUENAME(qIdx), uIdx, pVirtq->uUsedIdx));
+
+    virtioWriteUsedRingIdx(pVirtio, qIdx, pVirtq->uUsedIdx);
     virtioNotifyGuestDriver(pVirtio, qIdx, false);
 
@@ -306 +348 @@
     Assert(uNotifyIdx == qIdx);
 
-    PVIRTQ_PROXY_T pVirtqProxy = &pVirtio->virtqProxy[qIdx];
-    Log6Func(("%s\n", pVirtqProxy->szVirtqName));
+    PVIRTQSTATE pVirtq = &pVirtio->virtqState[qIdx];
+    Log6Func(("%s\n", pVirtq->szVirtqName));
 
     /** Inform client */
@@ -337 +379 @@
 static void virtioNotifyGuestDriver(PVIRTIOSTATE pVirtio, uint16_t qIdx, bool fForce)
 {
-    PVIRTQ_PROXY_T pVirtqProxy = &pVirtio->virtqProxy[qIdx];
+    PVIRTQSTATE pVirtq = &pVirtio->virtqState[qIdx];
 
     AssertMsgReturnVoid(DRIVER_OK(pVirtio), ("Guest driver not in ready state.\n"));
@@ -345 +387 @@
         if (pVirtio->uDriverFeatures & VIRTIO_F_EVENT_IDX)
         {
-            if (pVirtqProxy->fEventThresholdReached)
+            if (pVirtq->fEventThresholdReached)
             {
                 virtioRaiseInterrupt(pVirtio, VIRTIO_ISR_VIRTQ_INTERRUPT, fForce);
-                pVirtqProxy->fEventThresholdReached = false;
+                pVirtq->fEventThresholdReached = false;
                 return;
             }
@@ -434 +476 @@
 static void virtioResetQueue(PVIRTIOSTATE pVirtio, uint16_t qIdx)
 {
-    PVIRTQ_PROXY_T pVirtQ = &pVirtio->virtqProxy[qIdx];
+    PVIRTQSTATE pVirtQ = &pVirtio->virtqState[qIdx];
     pVirtQ->uAvailIdx = 0;
     pVirtQ->uUsedIdx  = 0;
@@ -832 +874 @@
     Assert(cb >= 32);
 
-    if (iRegion == VIRTIOSCSI_REGION_PCI_CAP)
+    if (iRegion == VIRTIO_REGION_PCI_CAP)
     {
         /* We use the assigned size here, because we currently only support page aligned MMIO ranges. */
@@ -885 +927 @@
         uint8_t  uBar    = pVirtio->pPciCfgCap->pciCap.uBar;
         uint32_t pv = 0;
-        if (uBar == VIRTIOSCSI_REGION_PCI_CAP)
+        if (uBar == VIRTIO_REGION_PCI_CAP)
             (void)virtioR3MmioRead(pDevIns, NULL, (RTGCPHYS)((uint32_t)pVirtio->pGcPhysPciCapBase + uOffset),
                                     &pv, uLength);
@@ -929 +971 @@
         uint32_t uOffset = pVirtio->pPciCfgCap->pciCap.uOffset;
         uint8_t  uBar    = pVirtio->pPciCfgCap->pciCap.uBar;
-        if (uBar == VIRTIOSCSI_REGION_PCI_CAP)
+        if (uBar == VIRTIO_REGION_PCI_CAP)
             (void)virtioR3MmioWrite(pDevIns, NULL, (RTGCPHYS)((uint32_t)pVirtio->pGcPhysPciCapBase + uOffset),
                                     (void *)&u32Value, uLength);
@@ -1117 +1159 @@
     pCfg->uCapLen  = sizeof(VIRTIO_PCI_CAP_T);
     pCfg->uCapNext = CFGADDR2IDX(pCfg) + pCfg->uCapLen;
-    pCfg->uBar     = VIRTIOSCSI_REGION_PCI_CAP;
+    pCfg->uBar     = VIRTIO_REGION_PCI_CAP;
     pCfg->uOffset  = RT_ALIGN_32(0, 4); /* reminder, in case someone changes offset */
     pCfg->uLength  = sizeof(VIRTIO_PCI_COMMON_CFG_T);
@@ -1132 +1174 @@
     pCfg->uCapLen  = sizeof(VIRTIO_PCI_NOTIFY_CAP_T);
     pCfg->uCapNext = CFGADDR2IDX(pCfg) + pCfg->uCapLen;
-    pCfg->uBar     = VIRTIOSCSI_REGION_PCI_CAP;
+    pCfg->uBar     = VIRTIO_REGION_PCI_CAP;
     pCfg->uOffset  = pVirtio->pCommonCfgCap->uOffset + pVirtio->pCommonCfgCap->uLength;
     pCfg->uOffset  = RT_ALIGN_32(pCfg->uOffset, 2);
@@ -1151 +1193 @@
     pCfg->uCapLen  = sizeof(VIRTIO_PCI_CAP_T);
     pCfg->uCapNext = CFGADDR2IDX(pCfg) + pCfg->uCapLen;
-    pCfg->uBar     = VIRTIOSCSI_REGION_PCI_CAP;
+    pCfg->uBar     = VIRTIO_REGION_PCI_CAP;
     pCfg->uOffset  = pVirtio->pNotifyCap->pciCap.uOffset + pVirtio->pNotifyCap->pciCap.uLength;
     pCfg->uLength  = sizeof(uint8_t);
@@ -1184 +1226 @@
         pCfg->uCapLen  = sizeof(VIRTIO_PCI_CAP_T);
         pCfg->uCapNext = fMsiSupport ? CFGADDR2IDX(pCfg) + pCfg->uCapLen : 0;
-        pCfg->uBar     = VIRTIOSCSI_REGION_PCI_CAP;
+        pCfg->uBar     = VIRTIO_REGION_PCI_CAP;
         pCfg->uOffset  = pVirtio->pIsrCap->uOffset + pVirtio->pIsrCap->uLength;
         pCfg->uOffset  = RT_ALIGN_32(pCfg->uOffset, 4);
@@ -1214 +1256 @@
      *  out size, so pad with an extra page */
 
-    rc = PDMDevHlpPCIIORegionRegister(pDevIns, VIRTIOSCSI_REGION_PCI_CAP,  RT_ALIGN_32(cbRegion + 0x1000, 0x1000),
+    rc = PDMDevHlpPCIIORegionRegister(pDevIns, VIRTIO_REGION_PCI_CAP,  RT_ALIGN_32(cbRegion + 0x1000, 0x1000),
                                       PCI_ADDRESS_SPACE_MEM, virtioR3Map);
     if (RT_FAILURE(rc))
@@ -1266 +1308 @@
     {
         Log2Func(("%s queue:\n",
-                  "  virtqProxy[%u].uAvailIdx    = %u\n  virtqProxy[%u].uUsedIdx    = %u\n"
+                  "  virtqState[%u].uAvailIdx    = %u\n  virtqState[%u].uUsedIdx    = %u\n"
                   "  uQueueSize[%u]              = %u\n  uQueueNotifyOff[%u]         = %04x\n"
                   "  uQueueMsixVector[%u]        = %04x\n  uQueueEnable[%u]            = %04x\n"
                   "  pGcPhysQueueDesc[%u]        = %RGp\n  pGcPhysQueueAvail[%u]       = %RGp\n"
                   "  pGcPhysQueueUsed[%u]        = %RGp\n",
-                        i, pVirtio->virtqProxy[i].szVirtqName, i, pVirtio->virtqProxy[i].uAvailIdx,
-                        i, pVirtio->virtqProxy[i].uUsedIdx, i, pVirtio->uQueueSize[i],
+                        i, pVirtio->virtqState[i].szVirtqName, i, pVirtio->virtqState[i].uAvailIdx,
+                        i, pVirtio->virtqState[i].uUsedIdx, i, pVirtio->uQueueSize[i],
                         i, pVirtio->uQueueNotifyOff[i],i, pVirtio->uQueueMsixVector[i],
                         i, pVirtio->uQueueEnable[i], i, pVirtio->pGcPhysQueueDesc[i],
@@ -1330 +1372 @@
         rc = SSMR3PutU16(pSSM,      pVirtio->uQueueEnable[i]);
         rc = SSMR3PutU16(pSSM,      pVirtio->uQueueSize[i]);
-        rc = SSMR3PutU16(pSSM,      pVirtio->virtqProxy[i].uAvailIdx);
-        rc = SSMR3PutU16(pSSM,      pVirtio->virtqProxy[i].uUsedIdx);
-        rc = SSMR3PutMem(pSSM,      pVirtio->virtqProxy[i].szVirtqName, 32);
+        rc = SSMR3PutU16(pSSM,      pVirtio->virtqState[i].uAvailIdx);
+        rc = SSMR3PutU16(pSSM,      pVirtio->virtqState[i].uUsedIdx);
+        rc = SSMR3PutMem(pSSM,      pVirtio->virtqState[i].szVirtqName, 32);
     }
 
@@ -1389 +1431 @@
             rc = SSMR3GetU16(pSSM,      &pVirtio->uQueueEnable[i]);
             rc = SSMR3GetU16(pSSM,      &pVirtio->uQueueSize[i]);
-            rc = SSMR3GetU16(pSSM,      &pVirtio->virtqProxy[i].uAvailIdx);
-            rc = SSMR3GetU16(pSSM,      &pVirtio->virtqProxy[i].uUsedIdx);
-            rc = SSMR3GetMem(pSSM,      (void *)&pVirtio->virtqProxy[i].szVirtqName, 32);
+            rc = SSMR3GetU16(pSSM,      &pVirtio->virtqState[i].uAvailIdx);
+            rc = SSMR3GetU16(pSSM,      &pVirtio->virtqState[i].uUsedIdx);
+            rc = SSMR3GetMem(pSSM,      (void *)&pVirtio->virtqState[i].szVirtqName, 32);
         }
     }

trunk/src/VBox/Devices/VirtIO/Virtio_1_0.h

@@ -38 +38 @@
 #define VIRTQ_MAX_CNT                       24                   /**< Max queues we allow guest to create      */
 #define VIRTIO_NOTIFY_OFFSET_MULTIPLIER     2                    /**< VirtIO Notify Cap. MMIO config param     */
-#define VIRTIOSCSI_REGION_MEM_IO            0                    /**< BAR for MMIO (implementation specific)   */
-#define VIRTIOSCSI_REGION_PORT_IO           1                    /**< BAR for PORT I/O (impl specific)         */
-#define VIRTIOSCSI_REGION_PCI_CAP           2                    /**< BAR for VirtIO Cap. MMIO (impl specific) */
+#define VIRTIO_REGION_PCI_CAP               2                    /**< BAR for VirtIO Cap. MMIO (impl specific) */
 
 #define VIRTIO_HEX_DUMP(logLevel, pv, cb, base, title) \
@@ -47 +45 @@
             virtioHexDump((pv), (cb), (base), (title)); \
     } while (0)
+
+
+/**
+ * The following structure holds the pre-processed context of descriptor chain pulled from a virtio queue
+ * to conduct a transaction between the client of this virtio implementation and the guest VM's virtio driver.
+ * It contains the head index of the descriptor chain, the output data from the client that has been
+ * converted to a contiguous virtual memory and a physical memory scatter-gather buffer for use by by
+ * the virtio framework to complete the transaction in the final phase of round-trip processing.
+ *
+ * The client should not modify the contents of this buffer. The primary field of interest to the
+ * client is pVirtSrc, which contains the VirtIO "OUT" (to device) buffer from the guest.
+ *
+ * Typical use is, When the client (worker thread) detects available data on the queue, it pulls the
+ * next one of these descriptor chain structs off the queue using virtioQueueGet(), processes the
+ * virtual memory buffer pVirtSrc, produces result data to pass back to the guest driver and calls
+ * virtioQueuePut() to return the result data to the client.
+ */
+typedef struct VIRTIO_DESC_CHAIN
+{
+    uint32_t  uHeadIdx;                                    /**< Head idx of associated desc chain        */
+    size_t    cbVirtSrc;                                   /**< Size of virt source buffer               */
+    void     *pVirtSrc;                                    /**< Virt mem buf holding out data from guest */
+    size_t    cbPhysDst;                                   /**< Total size of dst buffer                 */
+    PRTSGBUF  pSgPhysDst;                                  /**< Phys S/G buf to store result for guest   */
+} VIRTIO_DESC_CHAIN_T, *PVIRTIO_DESC_CHAIN_T, **PPVIRTIO_DESC_CHAIN_T;
 
 /**
@@ -155 +178 @@
 int virtioQueueAttach(VIRTIOHANDLE hVirtio, uint16_t qIdx, const char *pcszName);
 
-
-/**
- * Get the features VirtIO is running withnow.
- *
- * @returns Features the guest driver has accepted, finalizing the operational features
- *
- */
-uint64_t virtioGetNegotiatedFeatures(VIRTIOHANDLE hVirtio);
-
 /**
  * Detaches from queue and release resources
@@ -174 +188 @@
 
 /**
- * Get name of queue, by qIdx, assigned at virtioQueueAttach()
- *
- * @param hVirtio   - Handle for VirtIO framework
- * @param qIdx      - Queue number
- *
- * @returns          Success: Returns pointer to queue name
- *                   Failure: Returns "<null>" (never returns NULL pointer).
- */
-const char *virtioQueueGetName(VIRTIOHANDLE hVirtio, uint16_t qIdx);
-
-/**
- * Removes descriptor chain from avail ring of indicated queue and converts it to
- * scatter/gather buffer (whose segments contain guest phys. data pointers)
- *
- * @param hVirtio   - Handle for VirtIO framework
- * @param qIdx      - Queue number
- * @param ppInSegs  - Address to store pointer to host-to-guest data retrieved from virtq as RTSGBUF
- * @param ppOutSegs - Address to store pointer to host-to-guest data retrieved from virtq as RTSGBUF
- *
- * @returns status    VINF_SUCCESS         - Success
- *                    VERR_INVALID_STATE   - VirtIO not in ready state
- */
-int virtioQueueGet(VIRTIOHANDLE hVirtio, uint16_t qIdx, bool fRemove, PPRTSGBUF ppInSegs, PPRTSGBUF ppOutSegs);
-
-/**
- * Same as virtioQueueGet() but leaves the item on the avail ring of the queue.
- *
- * @param hVirtio   - Handle for VirtIO framework
- * @param qIdx      - Queue number
- * @param ppInSegs  - Address to store pointer to host-to-guest data retrieved from virtq as RTSGBUF
- * @param ppOutSegs - Address to store pointer to host-to-guest data retrieved from virtq as RTSGBUF
- *
- * @returns           VINF_SUCCESS         - Success
- *                    VERR_INVALID_STATE   - VirtIO not in ready state
- *                    VERR_NOT_AVAILABLE   - Queue is empty
- */
-int virtioQueuePeek(VIRTIOHANDLE hVirtio, uint16_t qIdx, PPRTSGBUF ppInSegs, PPRTSGBUF ppOutSegs);
-
-/**
- * Writes a scatter/gather buffer (whose segments point to virtual memory) to next
- * available descriptor chain (consisting of segments pointing to guest phys. memory),
- * for the indicated virtq. The data won't be seen by the guest until the next
- * client call to virtioQueueSync(), which puts aforementioned descriptor
- * chain's head index on the indicated virtq's used ring (see VirtIO 1.0
- * specification, Section 2.4 "Virtqueues").
- *
- * @param hVirtio   - Handle for VirtIO framework
- * @param qIdx      - Queue number
- * @param pSgBuf    - Caller's sgbuf of one or more virtual memory segments
- *                    to write to the queue. This is useful because some kinds
- *                    of transactions involve variable length subcomponents
- *                    whose size can only be known near the time of writing.
- * @parame fFence   - If set put up copy fence (memory barrier) after
- *                    copying to guest phys. mem.
- *
- * @returns           VINF_SUCCESS         - Success
- *                    VERR_INVALID_STATE   - VirtIO not in ready state
- *                    VERR_NOT_AVAILABLE   - Queue is empty
- */
-int virtioQueuePut(VIRTIOHANDLE hVirtio, uint16_t qIdx, PRTSGBUF pSgBuf, bool fFence);
+ * Removes descriptor chain from avail ring of indicated queue and converts the descriptor
+ * chain into its OUT (to device) and IN to guest components. Additionally it converts
+ * the OUT desc chain data to a contiguous virtual memory buffer for easy consumption
+ * by the caller. The caller must return the descriptor chain pointer via virtioQueuePut()
+ * and then call virtioQueueSync() at some point to return the data to the guest and
+ * complete the transaction.
+ *
+ * @param hVirtio      - Handle for VirtIO framework
+ * @param qIdx         - Queue number
+ * @param fRemove      - flags whether to remove desc chain from queue (false = peek)
+ * @param ppDescChain  - Address to store pointer to descriptor chain that contains the
+ *                       pre-processed transaction information pulled from the virtq.
+ *
+ * @returns status     VINF_SUCCESS         - Success
+ *                     VERR_INVALID_STATE   - VirtIO not in ready state
+ */
+int virtioQueueGet(VIRTIOHANDLE hVirtio, uint16_t qIdx, PPVIRTIO_DESC_CHAIN_T ppDescChain, bool fRemove);
+
+
+/**
+ * Returns data to the guest to complete a transaction initiated by virtQueueGet().
+ * The caller passes in a pointer to a scatter-gather buffer of virtual memory segments
+ * and a pointer to the descriptor chain context originally derived from the pulled
+ * queue entry, and this function will put write the virtual memory s/g buffer into the
+ * guest's physical memory free the descriptor chain. The caller handles the freeing
+ * (as needed) of the virtual memory buffer.
+ *
+ * NOTE: This does a write-ahead to the used ring of the guest's queue.
+ *       The data written won't be seen by the guest until the next call to virtioQueueSync()
+ *
+ *
+ * @param hVirtio       - Handle for VirtIO framework
+ * @param qIdx          - Queue number
+ *
+ * @param pSgVirtReturn - Points toscatter-gather buffer of virtual memory segments
+                          the caller is returning to the guest.
+ *
+ * @param pDescChain    - This contains the context of the scatter-gather buffer
+ *                        originally pulled from the queue.
+ *
+ * @parame fFence       - If true, put up copy fence (memory barrier) after
+ *                        copying to guest phys. mem.
+ *
+ * @returns              VINF_SUCCESS         - Success
+ *                       VERR_INVALID_STATE   - VirtIO not in ready state
+ *                       VERR_NOT_AVAILABLE   - Queue is empty
+ */
+
+ int virtioQueuePut(VIRTIOHANDLE hVirtio, uint16_t qIdx, PRTSGBUF pSgVirtReturn,
+                    PVIRTIO_DESC_CHAIN_T pDescChain, bool fFence);
+
 
 /**
@@ -297 +302 @@
 void virtioPropagateResumeNotification(VIRTIOHANDLE hVirtio);
 
+/**
+ * Get name of queue, by qIdx, assigned at virtioQueueAttach()
+ *
+ * @param hVirtio   - Handle for VirtIO framework
+ * @param qIdx      - Queue number
+ *
+ * @returns          Success: Returns pointer to queue name
+ *                   Failure: Returns "<null>" (never returns NULL pointer).
+ */
+const char *virtioQueueGetName(VIRTIOHANDLE hVirtio, uint16_t qIdx);
+
+/**
+ * Get the features VirtIO is running withnow.
+ *
+ * @returns Features the guest driver has accepted, finalizing the operational features
+ *
+ */
+uint64_t virtioGetNegotiatedFeatures(VIRTIOHANDLE hVirtio);
 
 

trunk/src/VBox/Devices/VirtIO/Virtio_1_0_impl.h

@@ -85 +85 @@
 
 /**
- * IN/OUT Descriptor chains descriptor chain associated with one element of virtq avail ring represented
- * as respective arrays of SG segments.
- */
-typedef struct VIRTQ_DESC_CHAIN                                  /**< Describes a single queue element          */
-{
-    RTSGSEG     aSegsIn[VIRTQ_MAX_SIZE];                         /**< List of segments to write to guest        */
-    RTSGSEG     aSegsOut[VIRTQ_MAX_SIZE];                        /**< List of segments read from guest          */
-    uint32_t    uHeadIdx;                                        /**< Index at head desc (source of seg arrays) */
-    uint32_t    cSegsIn;                                         /**< Count of segments in aSegsIn[]            */
-    uint32_t    cSegsOut;                                        /**< Count of segments in aSegsOut[]           */
-} VIRTQ_DESC_CHAIN_T, *PVIRTQ_DESC_CHAIN_T;
-
-/**
  * Local implementation's usage context of a queue (e.g. not part of VirtIO specification)
  */
-typedef struct VIRTQ_PROXY
-{
-    RTSGBUF     inSgBuf;                                         /**< host-to-guest buffers                     */
-    RTSGBUF     outSgBuf;                                        /**< guest-to-host buffers                     */
+typedef struct VIRTQSTATE
+{
     const char  szVirtqName[32];                                 /**< Dev-specific name of queue                */
     uint16_t    uAvailIdx;                                       /**< Consumer's position in avail ring         */
     uint16_t    uUsedIdx;                                        /**< Consumer's position in used ring          */
     bool        fEventThresholdReached;                          /**< Don't lose track while queueing ahead     */
-    PVIRTQ_DESC_CHAIN_T pDescChain;                              /**< Per-queue s/g data.                       */
-} VIRTQ_PROXY_T, *PVIRTQ_PROXY_T;
+} VIRTQSTATE, *PVIRTQSTATE;
 
 /**
@@ -191 +175 @@
     uint8_t                   uConfigGeneration;                 /**< (MMIO) Device config sequencer       HOST */
 
-    VIRTQ_PROXY_T             virtqProxy[VIRTQ_MAX_CNT];         /**< Local impl-specific queue context         */
+    VIRTQSTATE                virtqState[VIRTQ_MAX_CNT];         /**< Local impl-specific queue context         */
     VIRTIOCALLBACKS           virtioCallbacks;                   /**< Callback vectors to client                */
 
@@ -378 +362 @@
 DECLINLINE(bool) virtqIsEmpty(PVIRTIOSTATE pVirtio, uint16_t qIdx)
 {
-    return virtioReadAvailRingIdx(pVirtio, qIdx) == pVirtio->virtqProxy[qIdx].uAvailIdx;
+    return virtioReadAvailRingIdx(pVirtio, qIdx) == pVirtio->virtqState[qIdx].uAvailIdx;
 }