2 * FreeBSD/CAM specific routines for LSI '909 FC adapters.
5 * Copyright (c) 2000, 2001 by Greg Ansley
7 * Redistribution and use in source and binary forms, with or without
8 * modification, are permitted provided that the following conditions
10 * 1. Redistributions of source code must retain the above copyright
11 * notice immediately at the beginning of the file, without modification,
12 * this list of conditions, and the following disclaimer.
13 * 2. The name of the author may not be used to endorse or promote products
14 * derived from this software without specific prior written permission.
16 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
17 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
18 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
19 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE FOR
20 * ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
21 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
22 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
23 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
24 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
25 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
29 * Copyright (c) 2002, 2006 by Matthew Jacob
30 * All rights reserved.
32 * Redistribution and use in source and binary forms, with or without
33 * modification, are permitted provided that the following conditions are
35 * 1. Redistributions of source code must retain the above copyright
36 * notice, this list of conditions and the following disclaimer.
37 * 2. Redistributions in binary form must reproduce at minimum a disclaimer
38 * substantially similar to the "NO WARRANTY" disclaimer below
39 * ("Disclaimer") and any redistribution must be conditioned upon including
40 * a substantially similar Disclaimer requirement for further binary
42 * 3. Neither the names of the above listed copyright holders nor the names
43 * of any contributors may be used to endorse or promote products derived
44 * from this software without specific prior written permission.
46 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
47 * AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
48 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
49 * ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE
50 * LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
51 * CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
52 * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
53 * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
54 * CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
55 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF THE COPYRIGHT
56 * OWNER OR CONTRIBUTOR IS ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
58 * Support from Chris Ellsworth in order to make SAS adapters work
59 * is gratefully acknowledged.
61 * Support from LSI-Logic has also gone a great deal toward making this a
62 * workable subsystem and is gratefully acknowledged.
65 * Copyright (c) 2004, Avid Technology, Inc. and its contributors.
66 * Copyright (c) 2005, WHEEL Sp. z o.o.
67 * Copyright (c) 2004, 2005 Justin T. Gibbs
68 * All rights reserved.
70 * Redistribution and use in source and binary forms, with or without
71 * modification, are permitted provided that the following conditions are
73 * 1. Redistributions of source code must retain the above copyright
74 * notice, this list of conditions and the following disclaimer.
75 * 2. Redistributions in binary form must reproduce at minimum a disclaimer
76 * substantially similar to the "NO WARRANTY" disclaimer below
77 * ("Disclaimer") and any redistribution must be conditioned upon including
78 * a substantially similar Disclaimer requirement for further binary
80 * 3. Neither the names of the above listed copyright holders nor the names
81 * of any contributors may be used to endorse or promote products derived
82 * from this software without specific prior written permission.
84 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
85 * AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
86 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
87 * ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE
88 * LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
89 * CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
90 * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
91 * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
92 * CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
93 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF THE COPYRIGHT
94 * OWNER OR CONTRIBUTOR IS ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
96 #include <sys/cdefs.h>
97 __FBSDID("$FreeBSD$");
99 #include <dev/mpt/mpt.h>
100 #include <dev/mpt/mpt_cam.h>
101 #include <dev/mpt/mpt_raid.h>
103 #include "dev/mpt/mpilib/mpi_ioc.h" /* XXX Fix Event Handling!!! */
104 #include "dev/mpt/mpilib/mpi_init.h"
105 #include "dev/mpt/mpilib/mpi_targ.h"
106 #include "dev/mpt/mpilib/mpi_fc.h"
107 #include "dev/mpt/mpilib/mpi_sas.h"
108 #if __FreeBSD_version >= 500000
109 #include <sys/sysctl.h>
111 #include <sys/callout.h>
112 #include <sys/kthread.h>
114 #if __FreeBSD_version >= 700025
115 #ifndef CAM_NEW_TRAN_CODE
116 #define CAM_NEW_TRAN_CODE 1
120 static void mpt_poll(struct cam_sim *);
121 static timeout_t mpt_timeout;
122 static void mpt_action(struct cam_sim *, union ccb *);
124 mpt_get_spi_settings(struct mpt_softc *, struct ccb_trans_settings *);
125 static void mpt_setwidth(struct mpt_softc *, int, int);
126 static void mpt_setsync(struct mpt_softc *, int, int, int);
127 static int mpt_update_spi_config(struct mpt_softc *, int);
128 static void mpt_calc_geometry(struct ccb_calc_geometry *ccg, int extended);
130 static mpt_reply_handler_t mpt_scsi_reply_handler;
131 static mpt_reply_handler_t mpt_scsi_tmf_reply_handler;
132 static mpt_reply_handler_t mpt_fc_els_reply_handler;
133 static int mpt_scsi_reply_frame_handler(struct mpt_softc *, request_t *,
134 MSG_DEFAULT_REPLY *);
135 static int mpt_bus_reset(struct mpt_softc *, target_id_t, lun_id_t, int);
136 static int mpt_fc_reset_link(struct mpt_softc *, int);
138 static int mpt_spawn_recovery_thread(struct mpt_softc *mpt);
139 static void mpt_terminate_recovery_thread(struct mpt_softc *mpt);
140 static void mpt_recovery_thread(void *arg);
141 static void mpt_recover_commands(struct mpt_softc *mpt);
143 static int mpt_scsi_send_tmf(struct mpt_softc *, u_int, u_int, u_int,
144 u_int, u_int, u_int, int);
146 static void mpt_fc_post_els(struct mpt_softc *mpt, request_t *, int);
147 static void mpt_post_target_command(struct mpt_softc *, request_t *, int);
148 static int mpt_add_els_buffers(struct mpt_softc *mpt);
149 static int mpt_add_target_commands(struct mpt_softc *mpt);
150 static int mpt_enable_lun(struct mpt_softc *, target_id_t, lun_id_t);
151 static int mpt_disable_lun(struct mpt_softc *, target_id_t, lun_id_t);
152 static void mpt_target_start_io(struct mpt_softc *, union ccb *);
153 static cam_status mpt_abort_target_ccb(struct mpt_softc *, union ccb *);
154 static int mpt_abort_target_cmd(struct mpt_softc *, request_t *);
155 static void mpt_scsi_tgt_status(struct mpt_softc *, union ccb *, request_t *,
156 uint8_t, uint8_t const *);
158 mpt_scsi_tgt_tsk_mgmt(struct mpt_softc *, request_t *, mpt_task_mgmt_t,
159 tgt_resource_t *, int);
160 static void mpt_tgt_dump_tgt_state(struct mpt_softc *, request_t *);
161 static void mpt_tgt_dump_req_state(struct mpt_softc *, request_t *);
162 static mpt_reply_handler_t mpt_scsi_tgt_reply_handler;
163 static mpt_reply_handler_t mpt_sata_pass_reply_handler;
165 static uint32_t scsi_io_handler_id = MPT_HANDLER_ID_NONE;
166 static uint32_t scsi_tmf_handler_id = MPT_HANDLER_ID_NONE;
167 static uint32_t fc_els_handler_id = MPT_HANDLER_ID_NONE;
168 static uint32_t sata_pass_handler_id = MPT_HANDLER_ID_NONE;
170 static mpt_probe_handler_t mpt_cam_probe;
171 static mpt_attach_handler_t mpt_cam_attach;
172 static mpt_enable_handler_t mpt_cam_enable;
173 static mpt_ready_handler_t mpt_cam_ready;
174 static mpt_event_handler_t mpt_cam_event;
175 static mpt_reset_handler_t mpt_cam_ioc_reset;
176 static mpt_detach_handler_t mpt_cam_detach;
178 static struct mpt_personality mpt_cam_personality =
181 .probe = mpt_cam_probe,
182 .attach = mpt_cam_attach,
183 .enable = mpt_cam_enable,
184 .ready = mpt_cam_ready,
185 .event = mpt_cam_event,
186 .reset = mpt_cam_ioc_reset,
187 .detach = mpt_cam_detach,
190 DECLARE_MPT_PERSONALITY(mpt_cam, SI_ORDER_SECOND);
191 MODULE_DEPEND(mpt_cam, cam, 1, 1, 1);
193 int mpt_enable_sata_wc = -1;
194 TUNABLE_INT("hw.mpt.enable_sata_wc", &mpt_enable_sata_wc);
197 mpt_cam_probe(struct mpt_softc *mpt)
202 * Only attach to nodes that support the initiator or target role
203 * (or want to) or have RAID physical devices that need CAM pass-thru
206 if (mpt->do_cfg_role) {
207 role = mpt->cfg_role;
211 if ((role & (MPT_ROLE_TARGET|MPT_ROLE_INITIATOR)) != 0 ||
212 (mpt->ioc_page2 != NULL && mpt->ioc_page2->MaxPhysDisks != 0)) {
219 mpt_cam_attach(struct mpt_softc *mpt)
221 struct cam_devq *devq;
222 mpt_handler_t handler;
227 TAILQ_INIT(&mpt->request_timeout_list);
228 maxq = (mpt->ioc_facts.GlobalCredits < MPT_MAX_REQUESTS(mpt))?
229 mpt->ioc_facts.GlobalCredits : MPT_MAX_REQUESTS(mpt);
231 handler.reply_handler = mpt_scsi_reply_handler;
232 error = mpt_register_handler(mpt, MPT_HANDLER_REPLY, handler,
233 &scsi_io_handler_id);
239 handler.reply_handler = mpt_scsi_tmf_reply_handler;
240 error = mpt_register_handler(mpt, MPT_HANDLER_REPLY, handler,
241 &scsi_tmf_handler_id);
248 * If we're fibre channel and could support target mode, we register
249 * an ELS reply handler and give it resources.
251 if (mpt->is_fc && (mpt->role & MPT_ROLE_TARGET) != 0) {
252 handler.reply_handler = mpt_fc_els_reply_handler;
253 error = mpt_register_handler(mpt, MPT_HANDLER_REPLY, handler,
259 if (mpt_add_els_buffers(mpt) == FALSE) {
264 maxq -= mpt->els_cmds_allocated;
268 * If we support target mode, we register a reply handler for it,
269 * but don't add command resources until we actually enable target
272 if (mpt->is_fc && (mpt->role & MPT_ROLE_TARGET) != 0) {
273 handler.reply_handler = mpt_scsi_tgt_reply_handler;
274 error = mpt_register_handler(mpt, MPT_HANDLER_REPLY, handler,
275 &mpt->scsi_tgt_handler_id);
283 handler.reply_handler = mpt_sata_pass_reply_handler;
284 error = mpt_register_handler(mpt, MPT_HANDLER_REPLY, handler,
285 &sata_pass_handler_id);
293 * We keep one request reserved for timeout TMF requests.
295 mpt->tmf_req = mpt_get_request(mpt, FALSE);
296 if (mpt->tmf_req == NULL) {
297 mpt_prt(mpt, "Unable to allocate dedicated TMF request!\n");
304 * Mark the request as free even though not on the free list.
305 * There is only one TMF request allowed to be outstanding at
306 * a time and the TMF routines perform their own allocation
307 * tracking using the standard state flags.
309 mpt->tmf_req->state = REQ_STATE_FREE;
313 * The rest of this is CAM foo, for which we need to drop our lock
317 if (mpt_spawn_recovery_thread(mpt) != 0) {
318 mpt_prt(mpt, "Unable to spawn recovery thread!\n");
324 * Create the device queue for our SIM(s).
326 devq = cam_simq_alloc(maxq);
328 mpt_prt(mpt, "Unable to allocate CAM SIMQ!\n");
334 * Construct our SIM entry.
337 mpt_sim_alloc(mpt_action, mpt_poll, "mpt", mpt, 1, maxq, devq);
338 if (mpt->sim == NULL) {
339 mpt_prt(mpt, "Unable to allocate CAM SIM!\n");
346 * Register exactly this bus.
349 if (mpt_xpt_bus_register(mpt->sim, mpt->dev, 0) != CAM_SUCCESS) {
350 mpt_prt(mpt, "Bus registration Failed!\n");
356 if (xpt_create_path(&mpt->path, NULL, cam_sim_path(mpt->sim),
357 CAM_TARGET_WILDCARD, CAM_LUN_WILDCARD) != CAM_REQ_CMP) {
358 mpt_prt(mpt, "Unable to allocate Path!\n");
366 * Only register a second bus for RAID physical
367 * devices if the controller supports RAID.
369 if (mpt->ioc_page2 == NULL || mpt->ioc_page2->MaxPhysDisks == 0) {
374 * Create a "bus" to export all hidden disks to CAM.
377 mpt_sim_alloc(mpt_action, mpt_poll, "mpt", mpt, 1, maxq, devq);
378 if (mpt->phydisk_sim == NULL) {
379 mpt_prt(mpt, "Unable to allocate Physical Disk CAM SIM!\n");
388 if (mpt_xpt_bus_register(mpt->phydisk_sim, mpt->dev, 1) !=
390 mpt_prt(mpt, "Physical Disk Bus registration Failed!\n");
396 if (xpt_create_path(&mpt->phydisk_path, NULL,
397 cam_sim_path(mpt->phydisk_sim),
398 CAM_TARGET_WILDCARD, CAM_LUN_WILDCARD) != CAM_REQ_CMP) {
399 mpt_prt(mpt, "Unable to allocate Physical Disk Path!\n");
405 mpt_lprt(mpt, MPT_PRT_DEBUG, "attached cam\n");
414 * Read FC configuration information
417 mpt_read_config_info_fc(struct mpt_softc *mpt)
419 char *topology = NULL;
422 rv = mpt_read_cfg_header(mpt, MPI_CONFIG_PAGETYPE_FC_PORT, 0,
423 0, &mpt->mpt_fcport_page0.Header, FALSE, 5000);
427 mpt_lprt(mpt, MPT_PRT_DEBUG, "FC Port Page 0 Header: %x %x %x %x\n",
428 mpt->mpt_fcport_page0.Header.PageVersion,
429 mpt->mpt_fcport_page0.Header.PageLength,
430 mpt->mpt_fcport_page0.Header.PageNumber,
431 mpt->mpt_fcport_page0.Header.PageType);
434 rv = mpt_read_cur_cfg_page(mpt, 0, &mpt->mpt_fcport_page0.Header,
435 sizeof(mpt->mpt_fcport_page0), FALSE, 5000);
437 mpt_prt(mpt, "failed to read FC Port Page 0\n");
440 mpt2host_config_page_fc_port_0(&mpt->mpt_fcport_page0);
442 mpt->mpt_fcport_speed = mpt->mpt_fcport_page0.CurrentSpeed;
444 switch (mpt->mpt_fcport_page0.Flags &
445 MPI_FCPORTPAGE0_FLAGS_ATTACH_TYPE_MASK) {
446 case MPI_FCPORTPAGE0_FLAGS_ATTACH_NO_INIT:
447 mpt->mpt_fcport_speed = 0;
448 topology = "<NO LOOP>";
450 case MPI_FCPORTPAGE0_FLAGS_ATTACH_POINT_TO_POINT:
453 case MPI_FCPORTPAGE0_FLAGS_ATTACH_PRIVATE_LOOP:
454 topology = "NL-Port";
456 case MPI_FCPORTPAGE0_FLAGS_ATTACH_FABRIC_DIRECT:
459 case MPI_FCPORTPAGE0_FLAGS_ATTACH_PUBLIC_LOOP:
460 topology = "FL-Port";
463 mpt->mpt_fcport_speed = 0;
468 mpt_lprt(mpt, MPT_PRT_INFO,
469 "FC Port Page 0: Topology <%s> WWNN 0x%08x%08x WWPN 0x%08x%08x "
470 "Speed %u-Gbit\n", topology,
471 mpt->mpt_fcport_page0.WWNN.High,
472 mpt->mpt_fcport_page0.WWNN.Low,
473 mpt->mpt_fcport_page0.WWPN.High,
474 mpt->mpt_fcport_page0.WWPN.Low,
475 mpt->mpt_fcport_speed);
476 #if __FreeBSD_version >= 500000
479 struct sysctl_ctx_list *ctx = device_get_sysctl_ctx(mpt->dev);
480 struct sysctl_oid *tree = device_get_sysctl_tree(mpt->dev);
482 snprintf(mpt->scinfo.fc.wwnn,
483 sizeof (mpt->scinfo.fc.wwnn), "0x%08x%08x",
484 mpt->mpt_fcport_page0.WWNN.High,
485 mpt->mpt_fcport_page0.WWNN.Low);
487 snprintf(mpt->scinfo.fc.wwpn,
488 sizeof (mpt->scinfo.fc.wwpn), "0x%08x%08x",
489 mpt->mpt_fcport_page0.WWPN.High,
490 mpt->mpt_fcport_page0.WWPN.Low);
492 SYSCTL_ADD_STRING(ctx, SYSCTL_CHILDREN(tree), OID_AUTO,
493 "wwnn", CTLFLAG_RD, mpt->scinfo.fc.wwnn, 0,
494 "World Wide Node Name");
496 SYSCTL_ADD_STRING(ctx, SYSCTL_CHILDREN(tree), OID_AUTO,
497 "wwpn", CTLFLAG_RD, mpt->scinfo.fc.wwpn, 0,
498 "World Wide Port Name");
507 * Set FC configuration information.
510 mpt_set_initial_config_fc(struct mpt_softc *mpt)
513 CONFIG_PAGE_FC_PORT_1 fc;
518 r = mpt_read_cfg_header(mpt, MPI_CONFIG_PAGETYPE_FC_PORT, 1, 0,
519 &fc.Header, FALSE, 5000);
521 mpt_prt(mpt, "failed to read FC page 1 header\n");
522 return (mpt_fc_reset_link(mpt, 1));
525 r = mpt_read_cfg_page(mpt, MPI_CONFIG_ACTION_PAGE_READ_NVRAM, 0,
526 &fc.Header, sizeof (fc), FALSE, 5000);
528 mpt_prt(mpt, "failed to read FC page 1\n");
529 return (mpt_fc_reset_link(mpt, 1));
531 mpt2host_config_page_fc_port_1(&fc);
534 * Check our flags to make sure we support the role we want.
540 if (fl & MPI_FCPORTPAGE1_FLAGS_PROT_FCP_INIT) {
541 role |= MPT_ROLE_INITIATOR;
543 if (fl & MPI_FCPORTPAGE1_FLAGS_PROT_FCP_TARG) {
544 role |= MPT_ROLE_TARGET;
547 fl &= ~MPI_FCPORTPAGE1_FLAGS_PROT_MASK;
549 if (mpt->do_cfg_role == 0) {
550 role = mpt->cfg_role;
552 mpt->do_cfg_role = 0;
555 if (role != mpt->cfg_role) {
556 if (mpt->cfg_role & MPT_ROLE_INITIATOR) {
557 if ((role & MPT_ROLE_INITIATOR) == 0) {
558 mpt_prt(mpt, "adding initiator role\n");
559 fl |= MPI_FCPORTPAGE1_FLAGS_PROT_FCP_INIT;
562 mpt_prt(mpt, "keeping initiator role\n");
564 } else if (role & MPT_ROLE_INITIATOR) {
565 mpt_prt(mpt, "removing initiator role\n");
568 if (mpt->cfg_role & MPT_ROLE_TARGET) {
569 if ((role & MPT_ROLE_TARGET) == 0) {
570 mpt_prt(mpt, "adding target role\n");
571 fl |= MPI_FCPORTPAGE1_FLAGS_PROT_FCP_TARG;
574 mpt_prt(mpt, "keeping target role\n");
576 } else if (role & MPT_ROLE_TARGET) {
577 mpt_prt(mpt, "removing target role\n");
580 mpt->role = mpt->cfg_role;
583 if (fl & MPI_FCPORTPAGE1_FLAGS_PROT_FCP_TARG) {
584 if ((fl & MPI_FCPORTPAGE1_FLAGS_TARGET_MODE_OXID) == 0) {
585 mpt_prt(mpt, "adding OXID option\n");
586 fl |= MPI_FCPORTPAGE1_FLAGS_TARGET_MODE_OXID;
593 host2mpt_config_page_fc_port_1(&fc);
594 r = mpt_write_cfg_page(mpt,
595 MPI_CONFIG_ACTION_PAGE_WRITE_NVRAM, 0, &fc.Header,
596 sizeof(fc), FALSE, 5000);
598 mpt_prt(mpt, "failed to update NVRAM with changes\n");
601 mpt_prt(mpt, "NOTE: NVRAM changes will not take "
602 "effect until next reboot or IOC reset\n");
608 mptsas_sas_io_unit_pg0(struct mpt_softc *mpt, struct mptsas_portinfo *portinfo)
610 ConfigExtendedPageHeader_t hdr;
611 struct mptsas_phyinfo *phyinfo;
612 SasIOUnitPage0_t *buffer;
615 error = mpt_read_extcfg_header(mpt, MPI_SASIOUNITPAGE0_PAGEVERSION,
616 0, 0, MPI_CONFIG_EXTPAGETYPE_SAS_IO_UNIT,
620 if (hdr.ExtPageLength == 0) {
625 len = hdr.ExtPageLength * 4;
626 buffer = malloc(len, M_DEVBUF, M_NOWAIT|M_ZERO);
627 if (buffer == NULL) {
632 error = mpt_read_extcfg_page(mpt, MPI_CONFIG_ACTION_PAGE_READ_CURRENT,
633 0, &hdr, buffer, len, 0, 10000);
635 free(buffer, M_DEVBUF);
639 portinfo->num_phys = buffer->NumPhys;
640 portinfo->phy_info = malloc(sizeof(*portinfo->phy_info) *
641 portinfo->num_phys, M_DEVBUF, M_NOWAIT|M_ZERO);
642 if (portinfo->phy_info == NULL) {
643 free(buffer, M_DEVBUF);
648 for (i = 0; i < portinfo->num_phys; i++) {
649 phyinfo = &portinfo->phy_info[i];
650 phyinfo->phy_num = i;
651 phyinfo->port_id = buffer->PhyData[i].Port;
652 phyinfo->negotiated_link_rate =
653 buffer->PhyData[i].NegotiatedLinkRate;
655 le16toh(buffer->PhyData[i].ControllerDevHandle);
658 free(buffer, M_DEVBUF);
664 mptsas_sas_phy_pg0(struct mpt_softc *mpt, struct mptsas_phyinfo *phy_info,
665 uint32_t form, uint32_t form_specific)
667 ConfigExtendedPageHeader_t hdr;
668 SasPhyPage0_t *buffer;
671 error = mpt_read_extcfg_header(mpt, MPI_SASPHY0_PAGEVERSION, 0, 0,
672 MPI_CONFIG_EXTPAGETYPE_SAS_PHY, &hdr,
676 if (hdr.ExtPageLength == 0) {
681 buffer = malloc(sizeof(SasPhyPage0_t), M_DEVBUF, M_NOWAIT|M_ZERO);
682 if (buffer == NULL) {
687 error = mpt_read_extcfg_page(mpt, MPI_CONFIG_ACTION_PAGE_READ_CURRENT,
688 form + form_specific, &hdr, buffer,
689 sizeof(SasPhyPage0_t), 0, 10000);
691 free(buffer, M_DEVBUF);
695 phy_info->hw_link_rate = buffer->HwLinkRate;
696 phy_info->programmed_link_rate = buffer->ProgrammedLinkRate;
697 phy_info->identify.dev_handle = le16toh(buffer->OwnerDevHandle);
698 phy_info->attached.dev_handle = le16toh(buffer->AttachedDevHandle);
700 free(buffer, M_DEVBUF);
706 mptsas_sas_device_pg0(struct mpt_softc *mpt, struct mptsas_devinfo *device_info,
707 uint32_t form, uint32_t form_specific)
709 ConfigExtendedPageHeader_t hdr;
710 SasDevicePage0_t *buffer;
711 uint64_t sas_address;
714 bzero(device_info, sizeof(*device_info));
715 error = mpt_read_extcfg_header(mpt, MPI_SASDEVICE0_PAGEVERSION, 0, 0,
716 MPI_CONFIG_EXTPAGETYPE_SAS_DEVICE,
720 if (hdr.ExtPageLength == 0) {
725 buffer = malloc(sizeof(SasDevicePage0_t), M_DEVBUF, M_NOWAIT|M_ZERO);
726 if (buffer == NULL) {
731 error = mpt_read_extcfg_page(mpt, MPI_CONFIG_ACTION_PAGE_READ_CURRENT,
732 form + form_specific, &hdr, buffer,
733 sizeof(SasDevicePage0_t), 0, 10000);
735 free(buffer, M_DEVBUF);
739 device_info->dev_handle = le16toh(buffer->DevHandle);
740 device_info->parent_dev_handle = le16toh(buffer->ParentDevHandle);
741 device_info->enclosure_handle = le16toh(buffer->EnclosureHandle);
742 device_info->slot = le16toh(buffer->Slot);
743 device_info->phy_num = buffer->PhyNum;
744 device_info->physical_port = buffer->PhysicalPort;
745 device_info->target_id = buffer->TargetID;
746 device_info->bus = buffer->Bus;
747 bcopy(&buffer->SASAddress, &sas_address, sizeof(uint64_t));
748 device_info->sas_address = le64toh(sas_address);
749 device_info->device_info = le32toh(buffer->DeviceInfo);
751 free(buffer, M_DEVBUF);
757 * Read SAS configuration information. Nothing to do yet.
760 mpt_read_config_info_sas(struct mpt_softc *mpt)
762 struct mptsas_portinfo *portinfo;
763 struct mptsas_phyinfo *phyinfo;
766 portinfo = malloc(sizeof(*portinfo), M_DEVBUF, M_NOWAIT|M_ZERO);
767 if (portinfo == NULL)
770 error = mptsas_sas_io_unit_pg0(mpt, portinfo);
772 free(portinfo, M_DEVBUF);
776 for (i = 0; i < portinfo->num_phys; i++) {
777 phyinfo = &portinfo->phy_info[i];
778 error = mptsas_sas_phy_pg0(mpt, phyinfo,
779 (MPI_SAS_PHY_PGAD_FORM_PHY_NUMBER <<
780 MPI_SAS_PHY_PGAD_FORM_SHIFT), i);
783 error = mptsas_sas_device_pg0(mpt, &phyinfo->identify,
784 (MPI_SAS_DEVICE_PGAD_FORM_HANDLE <<
785 MPI_SAS_DEVICE_PGAD_FORM_SHIFT),
789 phyinfo->identify.phy_num = phyinfo->phy_num = i;
790 if (phyinfo->attached.dev_handle)
791 error = mptsas_sas_device_pg0(mpt,
793 (MPI_SAS_DEVICE_PGAD_FORM_HANDLE <<
794 MPI_SAS_DEVICE_PGAD_FORM_SHIFT),
795 phyinfo->attached.dev_handle);
799 mpt->sas_portinfo = portinfo;
804 mptsas_set_sata_wc(struct mpt_softc *mpt, struct mptsas_devinfo *devinfo,
807 SataPassthroughRequest_t *pass;
811 req = mpt_get_request(mpt, 0);
815 pass = req->req_vbuf;
816 bzero(pass, sizeof(SataPassthroughRequest_t));
817 pass->Function = MPI_FUNCTION_SATA_PASSTHROUGH;
818 pass->TargetID = devinfo->target_id;
819 pass->Bus = devinfo->bus;
820 pass->PassthroughFlags = 0;
821 pass->ConnectionRate = MPI_SATA_PT_REQ_CONNECT_RATE_NEGOTIATED;
822 pass->DataLength = 0;
823 pass->MsgContext = htole32(req->index | sata_pass_handler_id);
824 pass->CommandFIS[0] = 0x27;
825 pass->CommandFIS[1] = 0x80;
826 pass->CommandFIS[2] = 0xef;
827 pass->CommandFIS[3] = (enabled) ? 0x02 : 0x82;
828 pass->CommandFIS[7] = 0x40;
829 pass->CommandFIS[15] = 0x08;
831 mpt_check_doorbell(mpt);
832 mpt_send_cmd(mpt, req);
833 error = mpt_wait_req(mpt, req, REQ_STATE_DONE, REQ_STATE_DONE, 0,
836 mpt_free_request(mpt, req);
837 printf("error %d sending passthrough\n", error);
841 status = le16toh(req->IOCStatus);
842 if (status != MPI_IOCSTATUS_SUCCESS) {
843 mpt_free_request(mpt, req);
844 printf("IOCSTATUS %d\n", status);
848 mpt_free_request(mpt, req);
852 * Set SAS configuration information. Nothing to do yet.
855 mpt_set_initial_config_sas(struct mpt_softc *mpt)
857 struct mptsas_phyinfo *phyinfo;
860 if ((mpt_enable_sata_wc != -1) && (mpt->sas_portinfo != NULL)) {
861 for (i = 0; i < mpt->sas_portinfo->num_phys; i++) {
862 phyinfo = &mpt->sas_portinfo->phy_info[i];
863 if (phyinfo->attached.dev_handle == 0)
865 if ((phyinfo->attached.device_info &
866 MPI_SAS_DEVICE_INFO_SATA_DEVICE) == 0)
869 device_printf(mpt->dev,
870 "%sabling SATA WC on phy %d\n",
871 (mpt_enable_sata_wc) ? "En" : "Dis", i);
872 mptsas_set_sata_wc(mpt, &phyinfo->attached,
881 mpt_sata_pass_reply_handler(struct mpt_softc *mpt, request_t *req,
882 uint32_t reply_desc, MSG_DEFAULT_REPLY *reply_frame)
886 if (reply_frame != NULL) {
887 MSG_SATA_PASSTHROUGH_REQUEST *pass;
888 MSG_SATA_PASSTHROUGH_REPLY *reply;
890 pass = (MSG_SATA_PASSTHROUGH_REQUEST *)req->req_vbuf;
891 reply = (MSG_SATA_PASSTHROUGH_REPLY *)reply_frame;
892 req->IOCStatus = le16toh(reply_frame->IOCStatus);
894 req->state &= ~REQ_STATE_QUEUED;
895 req->state |= REQ_STATE_DONE;
896 TAILQ_REMOVE(&mpt->request_pending_list, req, links);
897 if ((req->state & REQ_STATE_NEED_WAKEUP) != 0) {
899 } else if ((req->state & REQ_STATE_TIMEDOUT) != 0) {
901 * Whew- we can free this request (late completion)
903 mpt_free_request(mpt, req);
911 * Read SCSI configuration information
914 mpt_read_config_info_spi(struct mpt_softc *mpt)
918 rv = mpt_read_cfg_header(mpt, MPI_CONFIG_PAGETYPE_SCSI_PORT, 0, 0,
919 &mpt->mpt_port_page0.Header, FALSE, 5000);
923 mpt_lprt(mpt, MPT_PRT_DEBUG, "SPI Port Page 0 Header: %x %x %x %x\n",
924 mpt->mpt_port_page0.Header.PageVersion,
925 mpt->mpt_port_page0.Header.PageLength,
926 mpt->mpt_port_page0.Header.PageNumber,
927 mpt->mpt_port_page0.Header.PageType);
929 rv = mpt_read_cfg_header(mpt, MPI_CONFIG_PAGETYPE_SCSI_PORT, 1, 0,
930 &mpt->mpt_port_page1.Header, FALSE, 5000);
934 mpt_lprt(mpt, MPT_PRT_DEBUG, "SPI Port Page 1 Header: %x %x %x %x\n",
935 mpt->mpt_port_page1.Header.PageVersion,
936 mpt->mpt_port_page1.Header.PageLength,
937 mpt->mpt_port_page1.Header.PageNumber,
938 mpt->mpt_port_page1.Header.PageType);
940 rv = mpt_read_cfg_header(mpt, MPI_CONFIG_PAGETYPE_SCSI_PORT, 2, 0,
941 &mpt->mpt_port_page2.Header, FALSE, 5000);
945 mpt_lprt(mpt, MPT_PRT_DEBUG, "SPI Port Page 2 Header: %x %x %x %x\n",
946 mpt->mpt_port_page2.Header.PageVersion,
947 mpt->mpt_port_page2.Header.PageLength,
948 mpt->mpt_port_page2.Header.PageNumber,
949 mpt->mpt_port_page2.Header.PageType);
951 for (i = 0; i < 16; i++) {
952 rv = mpt_read_cfg_header(mpt, MPI_CONFIG_PAGETYPE_SCSI_DEVICE,
953 0, i, &mpt->mpt_dev_page0[i].Header, FALSE, 5000);
957 mpt_lprt(mpt, MPT_PRT_DEBUG,
958 "SPI Target %d Device Page 0 Header: %x %x %x %x\n", i,
959 mpt->mpt_dev_page0[i].Header.PageVersion,
960 mpt->mpt_dev_page0[i].Header.PageLength,
961 mpt->mpt_dev_page0[i].Header.PageNumber,
962 mpt->mpt_dev_page0[i].Header.PageType);
964 rv = mpt_read_cfg_header(mpt, MPI_CONFIG_PAGETYPE_SCSI_DEVICE,
965 1, i, &mpt->mpt_dev_page1[i].Header, FALSE, 5000);
969 mpt_lprt(mpt, MPT_PRT_DEBUG,
970 "SPI Target %d Device Page 1 Header: %x %x %x %x\n", i,
971 mpt->mpt_dev_page1[i].Header.PageVersion,
972 mpt->mpt_dev_page1[i].Header.PageLength,
973 mpt->mpt_dev_page1[i].Header.PageNumber,
974 mpt->mpt_dev_page1[i].Header.PageType);
978 * At this point, we don't *have* to fail. As long as we have
979 * valid config header information, we can (barely) lurch
983 rv = mpt_read_cur_cfg_page(mpt, 0, &mpt->mpt_port_page0.Header,
984 sizeof(mpt->mpt_port_page0), FALSE, 5000);
986 mpt_prt(mpt, "failed to read SPI Port Page 0\n");
988 mpt2host_config_page_scsi_port_0(&mpt->mpt_port_page0);
989 mpt_lprt(mpt, MPT_PRT_NEGOTIATION,
990 "SPI Port Page 0: Capabilities %x PhysicalInterface %x\n",
991 mpt->mpt_port_page0.Capabilities,
992 mpt->mpt_port_page0.PhysicalInterface);
995 rv = mpt_read_cur_cfg_page(mpt, 0, &mpt->mpt_port_page1.Header,
996 sizeof(mpt->mpt_port_page1), FALSE, 5000);
998 mpt_prt(mpt, "failed to read SPI Port Page 1\n");
1000 mpt2host_config_page_scsi_port_1(&mpt->mpt_port_page1);
1001 mpt_lprt(mpt, MPT_PRT_DEBUG,
1002 "SPI Port Page 1: Configuration %x OnBusTimerValue %x\n",
1003 mpt->mpt_port_page1.Configuration,
1004 mpt->mpt_port_page1.OnBusTimerValue);
1007 rv = mpt_read_cur_cfg_page(mpt, 0, &mpt->mpt_port_page2.Header,
1008 sizeof(mpt->mpt_port_page2), FALSE, 5000);
1010 mpt_prt(mpt, "failed to read SPI Port Page 2\n");
1012 mpt_lprt(mpt, MPT_PRT_NEGOTIATION,
1013 "Port Page 2: Flags %x Settings %x\n",
1014 mpt->mpt_port_page2.PortFlags,
1015 mpt->mpt_port_page2.PortSettings);
1016 mpt2host_config_page_scsi_port_2(&mpt->mpt_port_page2);
1017 for (i = 0; i < 16; i++) {
1018 mpt_lprt(mpt, MPT_PRT_NEGOTIATION,
1019 " Port Page 2 Tgt %d: timo %x SF %x Flags %x\n",
1020 i, mpt->mpt_port_page2.DeviceSettings[i].Timeout,
1021 mpt->mpt_port_page2.DeviceSettings[i].SyncFactor,
1022 mpt->mpt_port_page2.DeviceSettings[i].DeviceFlags);
1026 for (i = 0; i < 16; i++) {
1027 rv = mpt_read_cur_cfg_page(mpt, i,
1028 &mpt->mpt_dev_page0[i].Header, sizeof(*mpt->mpt_dev_page0),
1032 "cannot read SPI Target %d Device Page 0\n", i);
1035 mpt2host_config_page_scsi_device_0(&mpt->mpt_dev_page0[i]);
1036 mpt_lprt(mpt, MPT_PRT_NEGOTIATION,
1037 "target %d page 0: Negotiated Params %x Information %x\n",
1038 i, mpt->mpt_dev_page0[i].NegotiatedParameters,
1039 mpt->mpt_dev_page0[i].Information);
1041 rv = mpt_read_cur_cfg_page(mpt, i,
1042 &mpt->mpt_dev_page1[i].Header, sizeof(*mpt->mpt_dev_page1),
1046 "cannot read SPI Target %d Device Page 1\n", i);
1049 mpt2host_config_page_scsi_device_1(&mpt->mpt_dev_page1[i]);
1050 mpt_lprt(mpt, MPT_PRT_NEGOTIATION,
1051 "target %d page 1: Requested Params %x Configuration %x\n",
1052 i, mpt->mpt_dev_page1[i].RequestedParameters,
1053 mpt->mpt_dev_page1[i].Configuration);
1059 * Validate SPI configuration information.
1061 * In particular, validate SPI Port Page 1.
1064 mpt_set_initial_config_spi(struct mpt_softc *mpt)
1066 int i, j, pp1val = ((1 << mpt->mpt_ini_id) << 16) | mpt->mpt_ini_id;
1069 mpt->mpt_disc_enable = 0xff;
1070 mpt->mpt_tag_enable = 0;
1072 if (mpt->mpt_port_page1.Configuration != pp1val) {
1073 CONFIG_PAGE_SCSI_PORT_1 tmp;
1075 mpt_prt(mpt, "SPI Port Page 1 Config value bad (%x)- should "
1076 "be %x\n", mpt->mpt_port_page1.Configuration, pp1val);
1077 tmp = mpt->mpt_port_page1;
1078 tmp.Configuration = pp1val;
1079 host2mpt_config_page_scsi_port_1(&tmp);
1080 error = mpt_write_cur_cfg_page(mpt, 0,
1081 &tmp.Header, sizeof(tmp), FALSE, 5000);
1085 error = mpt_read_cur_cfg_page(mpt, 0,
1086 &tmp.Header, sizeof(tmp), FALSE, 5000);
1090 mpt2host_config_page_scsi_port_1(&tmp);
1091 if (tmp.Configuration != pp1val) {
1093 "failed to reset SPI Port Page 1 Config value\n");
1096 mpt->mpt_port_page1 = tmp;
1100 * The purpose of this exercise is to get
1101 * all targets back to async/narrow.
1103 * We skip this step if the BIOS has already negotiated
1104 * speeds with the targets and does not require us to
1105 * do Domain Validation.
1107 i = mpt->mpt_port_page2.PortSettings &
1108 MPI_SCSIPORTPAGE2_PORT_MASK_NEGO_MASTER_SETTINGS;
1109 j = mpt->mpt_port_page2.PortFlags &
1110 MPI_SCSIPORTPAGE2_PORT_FLAGS_DV_MASK;
1111 if (i == MPI_SCSIPORTPAGE2_PORT_ALL_MASTER_SETTINGS /* &&
1112 j == MPI_SCSIPORTPAGE2_PORT_FLAGS_OFF_DV */) {
1113 mpt_lprt(mpt, MPT_PRT_NEGOTIATION,
1114 "honoring BIOS transfer negotiations\n");
1116 for (i = 0; i < 16; i++) {
1117 mpt->mpt_dev_page1[i].RequestedParameters = 0;
1118 mpt->mpt_dev_page1[i].Configuration = 0;
1119 (void) mpt_update_spi_config(mpt, i);
1126 mpt_cam_enable(struct mpt_softc *mpt)
1134 if (mpt_read_config_info_fc(mpt)) {
1137 if (mpt_set_initial_config_fc(mpt)) {
1140 } else if (mpt->is_sas) {
1141 if (mpt_read_config_info_sas(mpt)) {
1144 if (mpt_set_initial_config_sas(mpt)) {
1147 } else if (mpt->is_spi) {
1148 if (mpt_read_config_info_spi(mpt)) {
1151 if (mpt_set_initial_config_spi(mpt)) {
1163 mpt_cam_ready(struct mpt_softc *mpt)
1166 * If we're in target mode, hang out resources now
1167 * so we don't cause the world to hang talking to us.
1169 if (mpt->is_fc && (mpt->role & MPT_ROLE_TARGET)) {
1171 * Try to add some target command resources
1174 if (mpt_add_target_commands(mpt) == FALSE) {
1175 mpt_prt(mpt, "failed to add target commands\n");
1183 mpt_cam_detach(struct mpt_softc *mpt)
1185 mpt_handler_t handler;
1189 mpt_terminate_recovery_thread(mpt);
1191 handler.reply_handler = mpt_scsi_reply_handler;
1192 mpt_deregister_handler(mpt, MPT_HANDLER_REPLY, handler,
1193 scsi_io_handler_id);
1194 handler.reply_handler = mpt_scsi_tmf_reply_handler;
1195 mpt_deregister_handler(mpt, MPT_HANDLER_REPLY, handler,
1196 scsi_tmf_handler_id);
1197 handler.reply_handler = mpt_fc_els_reply_handler;
1198 mpt_deregister_handler(mpt, MPT_HANDLER_REPLY, handler,
1200 handler.reply_handler = mpt_scsi_tgt_reply_handler;
1201 mpt_deregister_handler(mpt, MPT_HANDLER_REPLY, handler,
1202 mpt->scsi_tgt_handler_id);
1203 handler.reply_handler = mpt_sata_pass_reply_handler;
1204 mpt_deregister_handler(mpt, MPT_HANDLER_REPLY, handler,
1205 sata_pass_handler_id);
1207 if (mpt->tmf_req != NULL) {
1208 mpt->tmf_req->state = REQ_STATE_ALLOCATED;
1209 mpt_free_request(mpt, mpt->tmf_req);
1210 mpt->tmf_req = NULL;
1212 if (mpt->sas_portinfo != NULL) {
1213 free(mpt->sas_portinfo, M_DEVBUF);
1214 mpt->sas_portinfo = NULL;
1218 if (mpt->sim != NULL) {
1219 xpt_free_path(mpt->path);
1220 xpt_bus_deregister(cam_sim_path(mpt->sim));
1221 cam_sim_free(mpt->sim, TRUE);
1225 if (mpt->phydisk_sim != NULL) {
1226 xpt_free_path(mpt->phydisk_path);
1227 xpt_bus_deregister(cam_sim_path(mpt->phydisk_sim));
1228 cam_sim_free(mpt->phydisk_sim, TRUE);
1229 mpt->phydisk_sim = NULL;
1233 /* This routine is used after a system crash to dump core onto the swap device.
1236 mpt_poll(struct cam_sim *sim)
1238 struct mpt_softc *mpt;
1240 mpt = (struct mpt_softc *)cam_sim_softc(sim);
1245 * Watchdog timeout routine for SCSI requests.
1248 mpt_timeout(void *arg)
1251 struct mpt_softc *mpt;
1254 ccb = (union ccb *)arg;
1255 mpt = ccb->ccb_h.ccb_mpt_ptr;
1258 req = ccb->ccb_h.ccb_req_ptr;
1259 mpt_prt(mpt, "request %p:%u timed out for ccb %p (req->ccb %p)\n", req,
1260 req->serno, ccb, req->ccb);
1261 /* XXX: WHAT ARE WE TRYING TO DO HERE? */
1262 if ((req->state & REQ_STATE_QUEUED) == REQ_STATE_QUEUED) {
1263 TAILQ_REMOVE(&mpt->request_pending_list, req, links);
1264 TAILQ_INSERT_TAIL(&mpt->request_timeout_list, req, links);
1265 req->state |= REQ_STATE_TIMEDOUT;
1266 mpt_wakeup_recovery_thread(mpt);
1272 * Callback routine from "bus_dmamap_load" or, in simple cases, called directly.
1274 * Takes a list of physical segments and builds the SGL for SCSI IO command
1275 * and forwards the commard to the IOC after one last check that CAM has not
1276 * aborted the transaction.
1279 mpt_execute_req_a64(void *arg, bus_dma_segment_t *dm_segs, int nseg, int error)
1281 request_t *req, *trq;
1284 struct mpt_softc *mpt;
1286 uint32_t flags, nxt_off;
1288 MSG_REQUEST_HEADER *hdrp;
1293 req = (request_t *)arg;
1296 mpt = ccb->ccb_h.ccb_mpt_ptr;
1297 req = ccb->ccb_h.ccb_req_ptr;
1299 hdrp = req->req_vbuf;
1300 mpt_off = req->req_vbuf;
1302 if (error == 0 && ((uint32_t)nseg) >= mpt->max_seg_cnt) {
1307 switch (hdrp->Function) {
1308 case MPI_FUNCTION_SCSI_IO_REQUEST:
1309 case MPI_FUNCTION_RAID_SCSI_IO_PASSTHROUGH:
1311 sglp = &((PTR_MSG_SCSI_IO_REQUEST)hdrp)->SGL;
1313 case MPI_FUNCTION_TARGET_ASSIST:
1315 sglp = &((PTR_MSG_TARGET_ASSIST_REQUEST)hdrp)->SGL;
1318 mpt_prt(mpt, "bad fct 0x%x in mpt_execute_req_a64\n",
1325 if (error == 0 && ((uint32_t)nseg) >= mpt->max_seg_cnt) {
1327 mpt_prt(mpt, "segment count %d too large (max %u)\n",
1328 nseg, mpt->max_seg_cnt);
1333 if (error != EFBIG && error != ENOMEM) {
1334 mpt_prt(mpt, "mpt_execute_req_a64: err %d\n", error);
1336 if ((ccb->ccb_h.status & CAM_STATUS_MASK) == CAM_REQ_INPROG) {
1338 mpt_freeze_ccb(ccb);
1339 if (error == EFBIG) {
1340 status = CAM_REQ_TOO_BIG;
1341 } else if (error == ENOMEM) {
1342 if (mpt->outofbeer == 0) {
1344 xpt_freeze_simq(mpt->sim, 1);
1345 mpt_lprt(mpt, MPT_PRT_DEBUG,
1348 status = CAM_REQUEUE_REQ;
1350 status = CAM_REQ_CMP_ERR;
1352 mpt_set_ccb_status(ccb, status);
1354 if (hdrp->Function == MPI_FUNCTION_TARGET_ASSIST) {
1355 request_t *cmd_req =
1356 MPT_TAG_2_REQ(mpt, ccb->csio.tag_id);
1357 MPT_TGT_STATE(mpt, cmd_req)->state = TGT_STATE_IN_CAM;
1358 MPT_TGT_STATE(mpt, cmd_req)->ccb = NULL;
1359 MPT_TGT_STATE(mpt, cmd_req)->req = NULL;
1361 ccb->ccb_h.status &= ~CAM_SIM_QUEUED;
1362 KASSERT(ccb->ccb_h.status, ("zero ccb sts at %d\n", __LINE__));
1364 CAMLOCK_2_MPTLOCK(mpt);
1365 mpt_free_request(mpt, req);
1366 MPTLOCK_2_CAMLOCK(mpt);
1371 * No data to transfer?
1372 * Just make a single simple SGL with zero length.
1375 if (mpt->verbose >= MPT_PRT_DEBUG) {
1376 int tidx = ((char *)sglp) - mpt_off;
1377 memset(&mpt_off[tidx], 0xff, MPT_REQUEST_AREA - tidx);
1381 SGE_SIMPLE32 *se1 = (SGE_SIMPLE32 *) sglp;
1382 MPI_pSGE_SET_FLAGS(se1,
1383 (MPI_SGE_FLAGS_LAST_ELEMENT | MPI_SGE_FLAGS_END_OF_BUFFER |
1384 MPI_SGE_FLAGS_SIMPLE_ELEMENT | MPI_SGE_FLAGS_END_OF_LIST));
1385 se1->FlagsLength = htole32(se1->FlagsLength);
1390 flags = MPI_SGE_FLAGS_SIMPLE_ELEMENT | MPI_SGE_FLAGS_64_BIT_ADDRESSING;
1392 if ((ccb->ccb_h.flags & CAM_DIR_MASK) == CAM_DIR_OUT) {
1393 flags |= MPI_SGE_FLAGS_HOST_TO_IOC;
1396 if ((ccb->ccb_h.flags & CAM_DIR_MASK) == CAM_DIR_IN) {
1397 flags |= MPI_SGE_FLAGS_HOST_TO_IOC;
1401 if (!(ccb->ccb_h.flags & (CAM_SG_LIST_PHYS|CAM_DATA_PHYS))) {
1402 bus_dmasync_op_t op;
1404 if ((ccb->ccb_h.flags & CAM_DIR_MASK) == CAM_DIR_IN) {
1405 op = BUS_DMASYNC_PREREAD;
1407 op = BUS_DMASYNC_PREWRITE;
1410 if ((ccb->ccb_h.flags & CAM_DIR_MASK) == CAM_DIR_IN) {
1411 op = BUS_DMASYNC_PREWRITE;
1413 op = BUS_DMASYNC_PREREAD;
1416 bus_dmamap_sync(mpt->buffer_dmat, req->dmap, op);
1420 * Okay, fill in what we can at the end of the command frame.
1421 * If we have up to MPT_NSGL_FIRST, we can fit them all into
1422 * the command frame.
1424 * Otherwise, we fill up through MPT_NSGL_FIRST less one
1425 * SIMPLE64 pointers and start doing CHAIN64 entries after
1429 if (nseg < MPT_NSGL_FIRST(mpt)) {
1433 * Leave room for CHAIN element
1435 first_lim = MPT_NSGL_FIRST(mpt) - 1;
1438 se = (SGE_SIMPLE64 *) sglp;
1439 for (seg = 0; seg < first_lim; seg++, se++, dm_segs++) {
1442 memset(se, 0, sizeof (*se));
1443 se->Address.Low = htole32(dm_segs->ds_addr & 0xffffffff);
1444 if (sizeof(bus_addr_t) > 4) {
1446 htole32(((uint64_t)dm_segs->ds_addr) >> 32);
1448 MPI_pSGE_SET_LENGTH(se, dm_segs->ds_len);
1450 if (seg == first_lim - 1) {
1451 tf |= MPI_SGE_FLAGS_LAST_ELEMENT;
1453 if (seg == nseg - 1) {
1454 tf |= MPI_SGE_FLAGS_END_OF_LIST |
1455 MPI_SGE_FLAGS_END_OF_BUFFER;
1457 MPI_pSGE_SET_FLAGS(se, tf);
1458 se->FlagsLength = htole32(se->FlagsLength);
1466 * Tell the IOC where to find the first chain element.
1468 hdrp->ChainOffset = ((char *)se - (char *)hdrp) >> 2;
1469 nxt_off = MPT_RQSL(mpt);
1473 * Make up the rest of the data segments out of a chain element
1474 * (contiained in the current request frame) which points to
1475 * SIMPLE64 elements in the next request frame, possibly ending
1476 * with *another* chain element (if there's more).
1478 while (seg < nseg) {
1480 uint32_t tf, cur_off;
1481 bus_addr_t chain_list_addr;
1484 * Point to the chain descriptor. Note that the chain
1485 * descriptor is at the end of the *previous* list (whether
1488 ce = (SGE_CHAIN64 *) se;
1491 * Before we change our current pointer, make sure we won't
1492 * overflow the request area with this frame. Note that we
1493 * test against 'greater than' here as it's okay in this case
1494 * to have next offset be just outside the request area.
1496 if ((nxt_off + MPT_RQSL(mpt)) > MPT_REQUEST_AREA) {
1497 nxt_off = MPT_REQUEST_AREA;
1502 * Set our SGE element pointer to the beginning of the chain
1503 * list and update our next chain list offset.
1505 se = (SGE_SIMPLE64 *) &mpt_off[nxt_off];
1507 nxt_off += MPT_RQSL(mpt);
1510 * Now initialized the chain descriptor.
1512 memset(ce, 0, sizeof (*ce));
1515 * Get the physical address of the chain list.
1517 chain_list_addr = trq->req_pbuf;
1518 chain_list_addr += cur_off;
1519 if (sizeof (bus_addr_t) > 4) {
1521 htole32(((uint64_t)chain_list_addr) >> 32);
1523 ce->Address.Low = htole32(chain_list_addr & 0xffffffff);
1524 ce->Flags = MPI_SGE_FLAGS_CHAIN_ELEMENT |
1525 MPI_SGE_FLAGS_64_BIT_ADDRESSING;
1528 * If we have more than a frame's worth of segments left,
1529 * set up the chain list to have the last element be another
1532 if ((nseg - seg) > MPT_NSGL(mpt)) {
1533 this_seg_lim = seg + MPT_NSGL(mpt) - 1;
1535 * The length of the chain is the length in bytes of the
1536 * number of segments plus the next chain element.
1538 * The next chain descriptor offset is the length,
1539 * in words, of the number of segments.
1541 ce->Length = (this_seg_lim - seg) *
1542 sizeof (SGE_SIMPLE64);
1543 ce->NextChainOffset = ce->Length >> 2;
1544 ce->Length += sizeof (SGE_CHAIN64);
1546 this_seg_lim = nseg;
1547 ce->Length = (this_seg_lim - seg) *
1548 sizeof (SGE_SIMPLE64);
1550 ce->Length = htole16(ce->Length);
1553 * Fill in the chain list SGE elements with our segment data.
1555 * If we're the last element in this chain list, set the last
1556 * element flag. If we're the completely last element period,
1557 * set the end of list and end of buffer flags.
1559 while (seg < this_seg_lim) {
1560 memset(se, 0, sizeof (*se));
1561 se->Address.Low = htole32(dm_segs->ds_addr &
1563 if (sizeof (bus_addr_t) > 4) {
1565 htole32(((uint64_t)dm_segs->ds_addr) >> 32);
1567 MPI_pSGE_SET_LENGTH(se, dm_segs->ds_len);
1569 if (seg == this_seg_lim - 1) {
1570 tf |= MPI_SGE_FLAGS_LAST_ELEMENT;
1572 if (seg == nseg - 1) {
1573 tf |= MPI_SGE_FLAGS_END_OF_LIST |
1574 MPI_SGE_FLAGS_END_OF_BUFFER;
1576 MPI_pSGE_SET_FLAGS(se, tf);
1577 se->FlagsLength = htole32(se->FlagsLength);
1585 * If we have more segments to do and we've used up all of
1586 * the space in a request area, go allocate another one
1587 * and chain to that.
1589 if (seg < nseg && nxt_off >= MPT_REQUEST_AREA) {
1592 CAMLOCK_2_MPTLOCK(mpt);
1593 nrq = mpt_get_request(mpt, FALSE);
1594 MPTLOCK_2_CAMLOCK(mpt);
1602 * Append the new request area on the tail of our list.
1604 if ((trq = req->chain) == NULL) {
1607 while (trq->chain != NULL) {
1613 mpt_off = trq->req_vbuf;
1614 if (mpt->verbose >= MPT_PRT_DEBUG) {
1615 memset(mpt_off, 0xff, MPT_REQUEST_AREA);
1623 * Last time we need to check if this CCB needs to be aborted.
1625 if ((ccb->ccb_h.status & CAM_STATUS_MASK) != CAM_REQ_INPROG) {
1626 if (hdrp->Function == MPI_FUNCTION_TARGET_ASSIST) {
1627 request_t *cmd_req =
1628 MPT_TAG_2_REQ(mpt, ccb->csio.tag_id);
1629 MPT_TGT_STATE(mpt, cmd_req)->state = TGT_STATE_IN_CAM;
1630 MPT_TGT_STATE(mpt, cmd_req)->ccb = NULL;
1631 MPT_TGT_STATE(mpt, cmd_req)->req = NULL;
1634 "mpt_execute_req_a64: I/O cancelled (status 0x%x)\n",
1635 ccb->ccb_h.status & CAM_STATUS_MASK);
1636 if (nseg && (ccb->ccb_h.flags & CAM_SG_LIST_PHYS) == 0) {
1637 bus_dmamap_unload(mpt->buffer_dmat, req->dmap);
1639 ccb->ccb_h.status &= ~CAM_SIM_QUEUED;
1640 KASSERT(ccb->ccb_h.status, ("zero ccb sts at %d\n", __LINE__));
1642 CAMLOCK_2_MPTLOCK(mpt);
1643 mpt_free_request(mpt, req);
1644 MPTLOCK_2_CAMLOCK(mpt);
1648 ccb->ccb_h.status |= CAM_SIM_QUEUED;
1649 if (ccb->ccb_h.timeout != CAM_TIME_INFINITY) {
1650 mpt_req_timeout(req, (ccb->ccb_h.timeout * hz) / 1000,
1653 if (mpt->verbose > MPT_PRT_DEBUG) {
1655 mpt_print_request(req->req_vbuf);
1656 for (trq = req->chain; trq; trq = trq->chain) {
1657 printf(" Additional Chain Area %d\n", nc++);
1658 mpt_dump_sgl(trq->req_vbuf, 0);
1662 if (hdrp->Function == MPI_FUNCTION_TARGET_ASSIST) {
1663 request_t *cmd_req = MPT_TAG_2_REQ(mpt, ccb->csio.tag_id);
1664 mpt_tgt_state_t *tgt = MPT_TGT_STATE(mpt, cmd_req);
1665 #ifdef WE_TRUST_AUTO_GOOD_STATUS
1666 if ((ccb->ccb_h.flags & CAM_SEND_STATUS) &&
1667 csio->scsi_status == SCSI_STATUS_OK && tgt->resid == 0) {
1668 tgt->state = TGT_STATE_MOVING_DATA_AND_STATUS;
1670 tgt->state = TGT_STATE_MOVING_DATA;
1673 tgt->state = TGT_STATE_MOVING_DATA;
1676 CAMLOCK_2_MPTLOCK(mpt);
1677 mpt_send_cmd(mpt, req);
1678 MPTLOCK_2_CAMLOCK(mpt);
1682 mpt_execute_req(void *arg, bus_dma_segment_t *dm_segs, int nseg, int error)
1684 request_t *req, *trq;
1687 struct mpt_softc *mpt;
1689 uint32_t flags, nxt_off;
1691 MSG_REQUEST_HEADER *hdrp;
1696 req = (request_t *)arg;
1699 mpt = ccb->ccb_h.ccb_mpt_ptr;
1700 req = ccb->ccb_h.ccb_req_ptr;
1702 hdrp = req->req_vbuf;
1703 mpt_off = req->req_vbuf;
1706 if (error == 0 && ((uint32_t)nseg) >= mpt->max_seg_cnt) {
1711 switch (hdrp->Function) {
1712 case MPI_FUNCTION_SCSI_IO_REQUEST:
1713 case MPI_FUNCTION_RAID_SCSI_IO_PASSTHROUGH:
1714 sglp = &((PTR_MSG_SCSI_IO_REQUEST)hdrp)->SGL;
1716 case MPI_FUNCTION_TARGET_ASSIST:
1718 sglp = &((PTR_MSG_TARGET_ASSIST_REQUEST)hdrp)->SGL;
1721 mpt_prt(mpt, "bad fct 0x%x in mpt_execute_req\n",
1728 if (error == 0 && ((uint32_t)nseg) >= mpt->max_seg_cnt) {
1730 mpt_prt(mpt, "segment count %d too large (max %u)\n",
1731 nseg, mpt->max_seg_cnt);
1736 if (error != EFBIG && error != ENOMEM) {
1737 mpt_prt(mpt, "mpt_execute_req: err %d\n", error);
1739 if ((ccb->ccb_h.status & CAM_STATUS_MASK) == CAM_REQ_INPROG) {
1741 mpt_freeze_ccb(ccb);
1742 if (error == EFBIG) {
1743 status = CAM_REQ_TOO_BIG;
1744 } else if (error == ENOMEM) {
1745 if (mpt->outofbeer == 0) {
1747 xpt_freeze_simq(mpt->sim, 1);
1748 mpt_lprt(mpt, MPT_PRT_DEBUG,
1751 status = CAM_REQUEUE_REQ;
1753 status = CAM_REQ_CMP_ERR;
1755 mpt_set_ccb_status(ccb, status);
1757 if (hdrp->Function == MPI_FUNCTION_TARGET_ASSIST) {
1758 request_t *cmd_req =
1759 MPT_TAG_2_REQ(mpt, ccb->csio.tag_id);
1760 MPT_TGT_STATE(mpt, cmd_req)->state = TGT_STATE_IN_CAM;
1761 MPT_TGT_STATE(mpt, cmd_req)->ccb = NULL;
1762 MPT_TGT_STATE(mpt, cmd_req)->req = NULL;
1764 ccb->ccb_h.status &= ~CAM_SIM_QUEUED;
1765 KASSERT(ccb->ccb_h.status, ("zero ccb sts at %d\n", __LINE__));
1767 CAMLOCK_2_MPTLOCK(mpt);
1768 mpt_free_request(mpt, req);
1769 MPTLOCK_2_CAMLOCK(mpt);
1774 * No data to transfer?
1775 * Just make a single simple SGL with zero length.
1778 if (mpt->verbose >= MPT_PRT_DEBUG) {
1779 int tidx = ((char *)sglp) - mpt_off;
1780 memset(&mpt_off[tidx], 0xff, MPT_REQUEST_AREA - tidx);
1784 SGE_SIMPLE32 *se1 = (SGE_SIMPLE32 *) sglp;
1785 MPI_pSGE_SET_FLAGS(se1,
1786 (MPI_SGE_FLAGS_LAST_ELEMENT | MPI_SGE_FLAGS_END_OF_BUFFER |
1787 MPI_SGE_FLAGS_SIMPLE_ELEMENT | MPI_SGE_FLAGS_END_OF_LIST));
1788 se1->FlagsLength = htole32(se1->FlagsLength);
1793 flags = MPI_SGE_FLAGS_SIMPLE_ELEMENT;
1795 if ((ccb->ccb_h.flags & CAM_DIR_MASK) == CAM_DIR_OUT) {
1796 flags |= MPI_SGE_FLAGS_HOST_TO_IOC;
1799 if ((ccb->ccb_h.flags & CAM_DIR_MASK) == CAM_DIR_IN) {
1800 flags |= MPI_SGE_FLAGS_HOST_TO_IOC;
1804 if (!(ccb->ccb_h.flags & (CAM_SG_LIST_PHYS|CAM_DATA_PHYS))) {
1805 bus_dmasync_op_t op;
1807 if ((ccb->ccb_h.flags & CAM_DIR_MASK) == CAM_DIR_IN) {
1808 op = BUS_DMASYNC_PREREAD;
1810 op = BUS_DMASYNC_PREWRITE;
1813 if ((ccb->ccb_h.flags & CAM_DIR_MASK) == CAM_DIR_IN) {
1814 op = BUS_DMASYNC_PREWRITE;
1816 op = BUS_DMASYNC_PREREAD;
1819 bus_dmamap_sync(mpt->buffer_dmat, req->dmap, op);
1823 * Okay, fill in what we can at the end of the command frame.
1824 * If we have up to MPT_NSGL_FIRST, we can fit them all into
1825 * the command frame.
1827 * Otherwise, we fill up through MPT_NSGL_FIRST less one
1828 * SIMPLE32 pointers and start doing CHAIN32 entries after
1832 if (nseg < MPT_NSGL_FIRST(mpt)) {
1836 * Leave room for CHAIN element
1838 first_lim = MPT_NSGL_FIRST(mpt) - 1;
1841 se = (SGE_SIMPLE32 *) sglp;
1842 for (seg = 0; seg < first_lim; seg++, se++, dm_segs++) {
1845 memset(se, 0,sizeof (*se));
1846 se->Address = htole32(dm_segs->ds_addr);
1850 MPI_pSGE_SET_LENGTH(se, dm_segs->ds_len);
1852 if (seg == first_lim - 1) {
1853 tf |= MPI_SGE_FLAGS_LAST_ELEMENT;
1855 if (seg == nseg - 1) {
1856 tf |= MPI_SGE_FLAGS_END_OF_LIST |
1857 MPI_SGE_FLAGS_END_OF_BUFFER;
1859 MPI_pSGE_SET_FLAGS(se, tf);
1860 se->FlagsLength = htole32(se->FlagsLength);
1868 * Tell the IOC where to find the first chain element.
1870 hdrp->ChainOffset = ((char *)se - (char *)hdrp) >> 2;
1871 nxt_off = MPT_RQSL(mpt);
1875 * Make up the rest of the data segments out of a chain element
1876 * (contiained in the current request frame) which points to
1877 * SIMPLE32 elements in the next request frame, possibly ending
1878 * with *another* chain element (if there's more).
1880 while (seg < nseg) {
1882 uint32_t tf, cur_off;
1883 bus_addr_t chain_list_addr;
1886 * Point to the chain descriptor. Note that the chain
1887 * descriptor is at the end of the *previous* list (whether
1890 ce = (SGE_CHAIN32 *) se;
1893 * Before we change our current pointer, make sure we won't
1894 * overflow the request area with this frame. Note that we
1895 * test against 'greater than' here as it's okay in this case
1896 * to have next offset be just outside the request area.
1898 if ((nxt_off + MPT_RQSL(mpt)) > MPT_REQUEST_AREA) {
1899 nxt_off = MPT_REQUEST_AREA;
1904 * Set our SGE element pointer to the beginning of the chain
1905 * list and update our next chain list offset.
1907 se = (SGE_SIMPLE32 *) &mpt_off[nxt_off];
1909 nxt_off += MPT_RQSL(mpt);
1912 * Now initialized the chain descriptor.
1914 memset(ce, 0, sizeof (*ce));
1917 * Get the physical address of the chain list.
1919 chain_list_addr = trq->req_pbuf;
1920 chain_list_addr += cur_off;
1924 ce->Address = htole32(chain_list_addr);
1925 ce->Flags = MPI_SGE_FLAGS_CHAIN_ELEMENT;
1929 * If we have more than a frame's worth of segments left,
1930 * set up the chain list to have the last element be another
1933 if ((nseg - seg) > MPT_NSGL(mpt)) {
1934 this_seg_lim = seg + MPT_NSGL(mpt) - 1;
1936 * The length of the chain is the length in bytes of the
1937 * number of segments plus the next chain element.
1939 * The next chain descriptor offset is the length,
1940 * in words, of the number of segments.
1942 ce->Length = (this_seg_lim - seg) *
1943 sizeof (SGE_SIMPLE32);
1944 ce->NextChainOffset = ce->Length >> 2;
1945 ce->Length += sizeof (SGE_CHAIN32);
1947 this_seg_lim = nseg;
1948 ce->Length = (this_seg_lim - seg) *
1949 sizeof (SGE_SIMPLE32);
1951 ce->Length = htole16(ce->Length);
1954 * Fill in the chain list SGE elements with our segment data.
1956 * If we're the last element in this chain list, set the last
1957 * element flag. If we're the completely last element period,
1958 * set the end of list and end of buffer flags.
1960 while (seg < this_seg_lim) {
1961 memset(se, 0, sizeof (*se));
1962 se->Address = htole32(dm_segs->ds_addr);
1967 MPI_pSGE_SET_LENGTH(se, dm_segs->ds_len);
1969 if (seg == this_seg_lim - 1) {
1970 tf |= MPI_SGE_FLAGS_LAST_ELEMENT;
1972 if (seg == nseg - 1) {
1973 tf |= MPI_SGE_FLAGS_END_OF_LIST |
1974 MPI_SGE_FLAGS_END_OF_BUFFER;
1976 MPI_pSGE_SET_FLAGS(se, tf);
1977 se->FlagsLength = htole32(se->FlagsLength);
1985 * If we have more segments to do and we've used up all of
1986 * the space in a request area, go allocate another one
1987 * and chain to that.
1989 if (seg < nseg && nxt_off >= MPT_REQUEST_AREA) {
1992 CAMLOCK_2_MPTLOCK(mpt);
1993 nrq = mpt_get_request(mpt, FALSE);
1994 MPTLOCK_2_CAMLOCK(mpt);
2002 * Append the new request area on the tail of our list.
2004 if ((trq = req->chain) == NULL) {
2007 while (trq->chain != NULL) {
2013 mpt_off = trq->req_vbuf;
2014 if (mpt->verbose >= MPT_PRT_DEBUG) {
2015 memset(mpt_off, 0xff, MPT_REQUEST_AREA);
2023 * Last time we need to check if this CCB needs to be aborted.
2025 if ((ccb->ccb_h.status & CAM_STATUS_MASK) != CAM_REQ_INPROG) {
2026 if (hdrp->Function == MPI_FUNCTION_TARGET_ASSIST) {
2027 request_t *cmd_req =
2028 MPT_TAG_2_REQ(mpt, ccb->csio.tag_id);
2029 MPT_TGT_STATE(mpt, cmd_req)->state = TGT_STATE_IN_CAM;
2030 MPT_TGT_STATE(mpt, cmd_req)->ccb = NULL;
2031 MPT_TGT_STATE(mpt, cmd_req)->req = NULL;
2034 "mpt_execute_req: I/O cancelled (status 0x%x)\n",
2035 ccb->ccb_h.status & CAM_STATUS_MASK);
2036 if (nseg && (ccb->ccb_h.flags & CAM_SG_LIST_PHYS) == 0) {
2037 bus_dmamap_unload(mpt->buffer_dmat, req->dmap);
2039 ccb->ccb_h.status &= ~CAM_SIM_QUEUED;
2040 KASSERT(ccb->ccb_h.status, ("zero ccb sts at %d\n", __LINE__));
2042 CAMLOCK_2_MPTLOCK(mpt);
2043 mpt_free_request(mpt, req);
2044 MPTLOCK_2_CAMLOCK(mpt);
2048 ccb->ccb_h.status |= CAM_SIM_QUEUED;
2049 if (ccb->ccb_h.timeout != CAM_TIME_INFINITY) {
2050 mpt_req_timeout(req, (ccb->ccb_h.timeout * hz) / 1000,
2053 if (mpt->verbose > MPT_PRT_DEBUG) {
2055 mpt_print_request(req->req_vbuf);
2056 for (trq = req->chain; trq; trq = trq->chain) {
2057 printf(" Additional Chain Area %d\n", nc++);
2058 mpt_dump_sgl(trq->req_vbuf, 0);
2062 if (hdrp->Function == MPI_FUNCTION_TARGET_ASSIST) {
2063 request_t *cmd_req = MPT_TAG_2_REQ(mpt, ccb->csio.tag_id);
2064 mpt_tgt_state_t *tgt = MPT_TGT_STATE(mpt, cmd_req);
2065 #ifdef WE_TRUST_AUTO_GOOD_STATUS
2066 if ((ccb->ccb_h.flags & CAM_SEND_STATUS) &&
2067 csio->scsi_status == SCSI_STATUS_OK && tgt->resid == 0) {
2068 tgt->state = TGT_STATE_MOVING_DATA_AND_STATUS;
2070 tgt->state = TGT_STATE_MOVING_DATA;
2073 tgt->state = TGT_STATE_MOVING_DATA;
2076 CAMLOCK_2_MPTLOCK(mpt);
2077 mpt_send_cmd(mpt, req);
2078 MPTLOCK_2_CAMLOCK(mpt);
2082 mpt_start(struct cam_sim *sim, union ccb *ccb)
2085 struct mpt_softc *mpt;
2086 MSG_SCSI_IO_REQUEST *mpt_req;
2087 struct ccb_scsiio *csio = &ccb->csio;
2088 struct ccb_hdr *ccbh = &ccb->ccb_h;
2089 bus_dmamap_callback_t *cb;
2093 /* Get the pointer for the physical addapter */
2094 mpt = ccb->ccb_h.ccb_mpt_ptr;
2095 raid_passthru = (sim == mpt->phydisk_sim);
2097 CAMLOCK_2_MPTLOCK(mpt);
2098 if ((req = mpt_get_request(mpt, FALSE)) == NULL) {
2099 if (mpt->outofbeer == 0) {
2101 xpt_freeze_simq(mpt->sim, 1);
2102 mpt_lprt(mpt, MPT_PRT_DEBUG, "FREEZEQ\n");
2104 ccb->ccb_h.status &= ~CAM_SIM_QUEUED;
2105 mpt_set_ccb_status(ccb, CAM_REQUEUE_REQ);
2106 MPTLOCK_2_CAMLOCK(mpt);
2111 mpt_req_not_spcl(mpt, req, "mpt_start", __LINE__);
2113 MPTLOCK_2_CAMLOCK(mpt);
2115 if (sizeof (bus_addr_t) > 4) {
2116 cb = mpt_execute_req_a64;
2118 cb = mpt_execute_req;
2122 * Link the ccb and the request structure so we can find
2123 * the other knowing either the request or the ccb
2126 ccb->ccb_h.ccb_req_ptr = req;
2128 /* Now we build the command for the IOC */
2129 mpt_req = req->req_vbuf;
2130 memset(mpt_req, 0, sizeof (MSG_SCSI_IO_REQUEST));
2132 mpt_req->Function = MPI_FUNCTION_SCSI_IO_REQUEST;
2133 if (raid_passthru) {
2134 mpt_req->Function = MPI_FUNCTION_RAID_SCSI_IO_PASSTHROUGH;
2135 CAMLOCK_2_MPTLOCK(mpt);
2136 if (mpt_map_physdisk(mpt, ccb, &tgt) != 0) {
2137 MPTLOCK_2_CAMLOCK(mpt);
2138 ccb->ccb_h.status &= ~CAM_SIM_QUEUED;
2139 mpt_set_ccb_status(ccb, CAM_DEV_NOT_THERE);
2143 MPTLOCK_2_CAMLOCK(mpt);
2144 mpt_req->Bus = 0; /* we never set bus here */
2146 tgt = ccb->ccb_h.target_id;
2147 mpt_req->Bus = 0; /* XXX */
2150 mpt_req->SenseBufferLength =
2151 (csio->sense_len < MPT_SENSE_SIZE) ?
2152 csio->sense_len : MPT_SENSE_SIZE;
2155 * We use the message context to find the request structure when we
2156 * Get the command completion interrupt from the IOC.
2158 mpt_req->MsgContext = htole32(req->index | scsi_io_handler_id);
2160 /* Which physical device to do the I/O on */
2161 mpt_req->TargetID = tgt;
2163 /* We assume a single level LUN type */
2164 if (ccb->ccb_h.target_lun >= 256) {
2165 mpt_req->LUN[0] = 0x40 | ((ccb->ccb_h.target_lun >> 8) & 0x3f);
2166 mpt_req->LUN[1] = ccb->ccb_h.target_lun & 0xff;
2168 mpt_req->LUN[1] = ccb->ccb_h.target_lun;
2171 /* Set the direction of the transfer */
2172 if ((ccb->ccb_h.flags & CAM_DIR_MASK) == CAM_DIR_IN) {
2173 mpt_req->Control = MPI_SCSIIO_CONTROL_READ;
2174 } else if ((ccb->ccb_h.flags & CAM_DIR_MASK) == CAM_DIR_OUT) {
2175 mpt_req->Control = MPI_SCSIIO_CONTROL_WRITE;
2177 mpt_req->Control = MPI_SCSIIO_CONTROL_NODATATRANSFER;
2180 if ((ccb->ccb_h.flags & CAM_TAG_ACTION_VALID) != 0) {
2181 switch(ccb->csio.tag_action) {
2182 case MSG_HEAD_OF_Q_TAG:
2183 mpt_req->Control |= MPI_SCSIIO_CONTROL_HEADOFQ;
2186 mpt_req->Control |= MPI_SCSIIO_CONTROL_ACAQ;
2188 case MSG_ORDERED_Q_TAG:
2189 mpt_req->Control |= MPI_SCSIIO_CONTROL_ORDEREDQ;
2191 case MSG_SIMPLE_Q_TAG:
2193 mpt_req->Control |= MPI_SCSIIO_CONTROL_SIMPLEQ;
2197 if (mpt->is_fc || mpt->is_sas) {
2198 mpt_req->Control |= MPI_SCSIIO_CONTROL_SIMPLEQ;
2200 /* XXX No such thing for a target doing packetized. */
2201 mpt_req->Control |= MPI_SCSIIO_CONTROL_UNTAGGED;
2206 if (ccb->ccb_h.flags & CAM_DIS_DISCONNECT) {
2207 mpt_req->Control |= MPI_SCSIIO_CONTROL_NO_DISCONNECT;
2210 mpt_req->Control = htole32(mpt_req->Control);
2212 /* Copy the scsi command block into place */
2213 if ((ccb->ccb_h.flags & CAM_CDB_POINTER) != 0) {
2214 bcopy(csio->cdb_io.cdb_ptr, mpt_req->CDB, csio->cdb_len);
2216 bcopy(csio->cdb_io.cdb_bytes, mpt_req->CDB, csio->cdb_len);
2219 mpt_req->CDBLength = csio->cdb_len;
2220 mpt_req->DataLength = htole32(csio->dxfer_len);
2221 mpt_req->SenseBufferLowAddr = htole32(req->sense_pbuf);
2224 * Do a *short* print here if we're set to MPT_PRT_DEBUG
2226 if (mpt->verbose == MPT_PRT_DEBUG) {
2228 mpt_prt(mpt, "mpt_start: %s op 0x%x ",
2229 (mpt_req->Function == MPI_FUNCTION_SCSI_IO_REQUEST)?
2230 "SCSI_IO_REQUEST" : "SCSI_IO_PASSTHRU", mpt_req->CDB[0]);
2231 df = mpt_req->Control & MPI_SCSIIO_CONTROL_DATADIRECTION_MASK;
2232 if (df != MPI_SCSIIO_CONTROL_NODATATRANSFER) {
2233 mpt_prtc(mpt, "(%s %u byte%s ",
2234 (df == MPI_SCSIIO_CONTROL_READ)?
2235 "read" : "write", csio->dxfer_len,
2236 (csio->dxfer_len == 1)? ")" : "s)");
2238 mpt_prtc(mpt, "tgt %u lun %u req %p:%u\n", tgt,
2239 ccb->ccb_h.target_lun, req, req->serno);
2243 * If we have any data to send with this command map it into bus space.
2245 if ((ccbh->flags & CAM_DIR_MASK) != CAM_DIR_NONE) {
2246 if ((ccbh->flags & CAM_SCATTER_VALID) == 0) {
2248 * We've been given a pointer to a single buffer.
2250 if ((ccbh->flags & CAM_DATA_PHYS) == 0) {
2252 * Virtual address that needs to translated into
2253 * one or more physical address ranges.
2256 int s = splsoftvm();
2257 error = bus_dmamap_load(mpt->buffer_dmat,
2258 req->dmap, csio->data_ptr, csio->dxfer_len,
2261 if (error == EINPROGRESS) {
2263 * So as to maintain ordering,
2264 * freeze the controller queue
2265 * until our mapping is
2268 xpt_freeze_simq(mpt->sim, 1);
2269 ccbh->status |= CAM_RELEASE_SIMQ;
2273 * We have been given a pointer to single
2276 struct bus_dma_segment seg;
2278 (bus_addr_t)(vm_offset_t)csio->data_ptr;
2279 seg.ds_len = csio->dxfer_len;
2280 (*cb)(req, &seg, 1, 0);
2284 * We have been given a list of addresses.
2285 * This case could be easily supported but they are not
2286 * currently generated by the CAM subsystem so there
2287 * is no point in wasting the time right now.
2289 struct bus_dma_segment *segs;
2290 if ((ccbh->flags & CAM_SG_LIST_PHYS) == 0) {
2291 (*cb)(req, NULL, 0, EFAULT);
2293 /* Just use the segments provided */
2294 segs = (struct bus_dma_segment *)csio->data_ptr;
2295 (*cb)(req, segs, csio->sglist_cnt, 0);
2299 (*cb)(req, NULL, 0, 0);
2304 mpt_bus_reset(struct mpt_softc *mpt, target_id_t tgt, lun_id_t lun,
2311 error = mpt_scsi_send_tmf(mpt,
2312 (tgt != CAM_TARGET_WILDCARD || lun != CAM_LUN_WILDCARD) ?
2313 MPI_SCSITASKMGMT_TASKTYPE_TARGET_RESET :
2314 MPI_SCSITASKMGMT_TASKTYPE_RESET_BUS,
2315 mpt->is_fc ? MPI_SCSITASKMGMT_MSGFLAGS_LIP_RESET_OPTION : 0,
2316 0, /* XXX How do I get the channel ID? */
2317 tgt != CAM_TARGET_WILDCARD ? tgt : 0,
2318 lun != CAM_LUN_WILDCARD ? lun : 0,
2323 * mpt_scsi_send_tmf hard resets on failure, so no
2324 * need to do so here.
2327 "mpt_bus_reset: mpt_scsi_send_tmf returned %d\n", error);
2331 /* Wait for bus reset to be processed by the IOC. */
2332 error = mpt_wait_req(mpt, mpt->tmf_req, REQ_STATE_DONE,
2333 REQ_STATE_DONE, sleep_ok, 5000);
2335 status = le16toh(mpt->tmf_req->IOCStatus);
2336 response = mpt->tmf_req->ResponseCode;
2337 mpt->tmf_req->state = REQ_STATE_FREE;
2340 mpt_prt(mpt, "mpt_bus_reset: Reset timed-out. "
2341 "Resetting controller.\n");
2342 mpt_reset(mpt, TRUE);
2346 if ((status & MPI_IOCSTATUS_MASK) != MPI_IOCSTATUS_SUCCESS) {
2347 mpt_prt(mpt, "mpt_bus_reset: TMF IOC Status 0x%x. "
2348 "Resetting controller.\n", status);
2349 mpt_reset(mpt, TRUE);
2353 if (response != MPI_SCSITASKMGMT_RSP_TM_SUCCEEDED &&
2354 response != MPI_SCSITASKMGMT_RSP_TM_COMPLETE) {
2355 mpt_prt(mpt, "mpt_bus_reset: TMF Response 0x%x. "
2356 "Resetting controller.\n", response);
2357 mpt_reset(mpt, TRUE);
2364 mpt_fc_reset_link(struct mpt_softc *mpt, int dowait)
2368 PTR_MSG_FC_PRIMITIVE_SEND_REQUEST fc;
2370 req = mpt_get_request(mpt, FALSE);
2375 memset(fc, 0, sizeof(*fc));
2376 fc->SendFlags = MPI_FC_PRIM_SEND_FLAGS_RESET_LINK;
2377 fc->Function = MPI_FUNCTION_FC_PRIMITIVE_SEND;
2378 fc->MsgContext = htole32(req->index | fc_els_handler_id);
2379 mpt_send_cmd(mpt, req);
2381 r = mpt_wait_req(mpt, req, REQ_STATE_DONE,
2382 REQ_STATE_DONE, FALSE, 60 * 1000);
2384 mpt_free_request(mpt, req);
2391 mpt_cam_event(struct mpt_softc *mpt, request_t *req,
2392 MSG_EVENT_NOTIFY_REPLY *msg)
2394 uint32_t data0, data1;
2396 data0 = le32toh(msg->Data[0]);
2397 data1 = le32toh(msg->Data[1]);
2398 switch(msg->Event & 0xFF) {
2399 case MPI_EVENT_UNIT_ATTENTION:
2400 mpt_prt(mpt, "UNIT ATTENTION: Bus: 0x%02x TargetID: 0x%02x\n",
2401 (data0 >> 8) & 0xff, data0 & 0xff);
2404 case MPI_EVENT_IOC_BUS_RESET:
2405 /* We generated a bus reset */
2406 mpt_prt(mpt, "IOC Generated Bus Reset Port: %d\n",
2407 (data0 >> 8) & 0xff);
2408 xpt_async(AC_BUS_RESET, mpt->path, NULL);
2411 case MPI_EVENT_EXT_BUS_RESET:
2412 /* Someone else generated a bus reset */
2413 mpt_prt(mpt, "External Bus Reset Detected\n");
2415 * These replies don't return EventData like the MPI
2418 xpt_async(AC_BUS_RESET, mpt->path, NULL);
2421 case MPI_EVENT_RESCAN:
2422 #if __FreeBSD_version >= 600000
2427 * In general this means a device has been added to the loop.
2429 mpt_prt(mpt, "Rescan Port: %d\n", (data0 >> 8) & 0xff);
2430 if (mpt->ready == 0) {
2433 if (mpt->phydisk_sim) {
2434 pathid = cam_sim_path(mpt->phydisk_sim);
2436 pathid = cam_sim_path(mpt->sim);
2438 MPTLOCK_2_CAMLOCK(mpt);
2440 * Allocate a CCB, create a wildcard path for this bus,
2441 * and schedule a rescan.
2443 ccb = xpt_alloc_ccb_nowait();
2445 mpt_prt(mpt, "unable to alloc CCB for rescan\n");
2446 CAMLOCK_2_MPTLOCK(mpt);
2450 if (xpt_create_path(&ccb->ccb_h.path, xpt_periph, pathid,
2451 CAM_TARGET_WILDCARD, CAM_LUN_WILDCARD) != CAM_REQ_CMP) {
2452 CAMLOCK_2_MPTLOCK(mpt);
2453 mpt_prt(mpt, "unable to create path for rescan\n");
2458 CAMLOCK_2_MPTLOCK(mpt);
2462 mpt_prt(mpt, "Rescan Port: %d\n", (data0 >> 8) & 0xff);
2465 case MPI_EVENT_LINK_STATUS_CHANGE:
2466 mpt_prt(mpt, "Port %d: LinkState: %s\n",
2467 (data1 >> 8) & 0xff,
2468 ((data0 & 0xff) == 0)? "Failed" : "Active");
2471 case MPI_EVENT_LOOP_STATE_CHANGE:
2472 switch ((data0 >> 16) & 0xff) {
2475 "Port 0x%x: FC LinkEvent: LIP(%02x,%02x) "
2476 "(Loop Initialization)\n",
2477 (data1 >> 8) & 0xff,
2478 (data0 >> 8) & 0xff,
2480 switch ((data0 >> 8) & 0xff) {
2482 if ((data0 & 0xff) == 0xF7) {
2483 mpt_prt(mpt, "Device needs AL_PA\n");
2485 mpt_prt(mpt, "Device %02x doesn't like "
2491 if ((data0 & 0xff) == 0xF7) {
2492 mpt_prt(mpt, "Device had loop failure "
2493 "at its receiver prior to acquiring"
2496 mpt_prt(mpt, "Device %02x detected loop"
2497 " failure at its receiver\n",
2502 mpt_prt(mpt, "Device %02x requests that device "
2503 "%02x reset itself\n",
2505 (data0 >> 8) & 0xFF);
2510 mpt_prt(mpt, "Port 0x%x: FC LinkEvent: "
2511 "LPE(%02x,%02x) (Loop Port Enable)\n",
2512 (data1 >> 8) & 0xff, /* Port */
2513 (data0 >> 8) & 0xff, /* Character 3 */
2514 (data0 ) & 0xff /* Character 4 */);
2517 mpt_prt(mpt, "Port 0x%x: FC LinkEvent: "
2518 "LPB(%02x,%02x) (Loop Port Bypass)\n",
2519 (data1 >> 8) & 0xff, /* Port */
2520 (data0 >> 8) & 0xff, /* Character 3 */
2521 (data0 ) & 0xff /* Character 4 */);
2524 mpt_prt(mpt, "Port 0x%x: FC LinkEvent: Unknown "
2525 "FC event (%02x %02x %02x)\n",
2526 (data1 >> 8) & 0xff, /* Port */
2527 (data0 >> 16) & 0xff, /* Event */
2528 (data0 >> 8) & 0xff, /* Character 3 */
2529 (data0 ) & 0xff /* Character 4 */);
2533 case MPI_EVENT_LOGOUT:
2534 mpt_prt(mpt, "FC Logout Port: %d N_PortID: %02x\n",
2535 (data1 >> 8) & 0xff, data0);
2537 case MPI_EVENT_QUEUE_FULL:
2539 struct cam_sim *sim;
2540 struct cam_path *tmppath;
2541 struct ccb_relsim crs;
2542 PTR_EVENT_DATA_QUEUE_FULL pqf;
2545 pqf = (PTR_EVENT_DATA_QUEUE_FULL)msg->Data;
2546 pqf->CurrentDepth = le16toh(pqf->CurrentDepth);
2547 mpt_prt(mpt, "QUEUE FULL EVENT: Bus 0x%02x Target 0x%02x Depth "
2548 "%d\n", pqf->Bus, pqf->TargetID, pqf->CurrentDepth);
2549 if (mpt->phydisk_sim) {
2550 sim = mpt->phydisk_sim;
2554 MPTLOCK_2_CAMLOCK(mpt);
2555 for (lun_id = 0; lun_id < MPT_MAX_LUNS; lun_id++) {
2556 if (xpt_create_path(&tmppath, NULL, cam_sim_path(sim),
2557 pqf->TargetID, lun_id) != CAM_REQ_CMP) {
2558 mpt_prt(mpt, "unable to create a path to send "
2560 CAMLOCK_2_MPTLOCK(mpt);
2563 xpt_setup_ccb(&crs.ccb_h, tmppath, 5);
2564 crs.ccb_h.func_code = XPT_REL_SIMQ;
2565 crs.release_flags = RELSIM_ADJUST_OPENINGS;
2566 crs.openings = pqf->CurrentDepth - 1;
2567 xpt_action((union ccb *)&crs);
2568 if (crs.ccb_h.status != CAM_REQ_CMP) {
2569 mpt_prt(mpt, "XPT_REL_SIMQ failed\n");
2571 xpt_free_path(tmppath);
2573 CAMLOCK_2_MPTLOCK(mpt);
2576 case MPI_EVENT_EVENT_CHANGE:
2577 case MPI_EVENT_INTEGRATED_RAID:
2578 case MPI_EVENT_SAS_DEVICE_STATUS_CHANGE:
2579 case MPI_EVENT_SAS_SES:
2582 mpt_lprt(mpt, MPT_PRT_WARN, "mpt_cam_event: 0x%x\n",
2590 * Reply path for all SCSI I/O requests, called from our
2591 * interrupt handler by extracting our handler index from
2592 * the MsgContext field of the reply from the IOC.
2594 * This routine is optimized for the common case of a
2595 * completion without error. All exception handling is
2596 * offloaded to non-inlined helper routines to minimize
2600 mpt_scsi_reply_handler(struct mpt_softc *mpt, request_t *req,
2601 uint32_t reply_desc, MSG_DEFAULT_REPLY *reply_frame)
2603 MSG_SCSI_IO_REQUEST *scsi_req;
2607 if (req->state == REQ_STATE_FREE) {
2608 mpt_prt(mpt, "mpt_scsi_reply_handler: req already free\n");
2612 scsi_req = (MSG_SCSI_IO_REQUEST *)req->req_vbuf;
2615 mpt_prt(mpt, "mpt_scsi_reply_handler: req %p:%u with no ccb\n",
2620 tgt = scsi_req->TargetID;
2621 mpt_req_untimeout(req, mpt_timeout, ccb);
2622 ccb->ccb_h.status &= ~CAM_SIM_QUEUED;
2624 if ((ccb->ccb_h.flags & CAM_DIR_MASK) != CAM_DIR_NONE) {
2625 bus_dmasync_op_t op;
2627 if ((ccb->ccb_h.flags & CAM_DIR_MASK) == CAM_DIR_IN)
2628 op = BUS_DMASYNC_POSTREAD;
2630 op = BUS_DMASYNC_POSTWRITE;
2631 bus_dmamap_sync(mpt->buffer_dmat, req->dmap, op);
2632 bus_dmamap_unload(mpt->buffer_dmat, req->dmap);
2635 if (reply_frame == NULL) {
2637 * Context only reply, completion without error status.
2639 ccb->csio.resid = 0;
2640 mpt_set_ccb_status(ccb, CAM_REQ_CMP);
2641 ccb->csio.scsi_status = SCSI_STATUS_OK;
2643 mpt_scsi_reply_frame_handler(mpt, req, reply_frame);
2646 if (mpt->outofbeer) {
2647 ccb->ccb_h.status |= CAM_RELEASE_SIMQ;
2649 mpt_lprt(mpt, MPT_PRT_DEBUG, "THAWQ\n");
2651 if (scsi_req->CDB[0] == INQUIRY && (scsi_req->CDB[1] & SI_EVPD) == 0) {
2652 struct scsi_inquiry_data *iq =
2653 (struct scsi_inquiry_data *)ccb->csio.data_ptr;
2654 if (scsi_req->Function ==
2655 MPI_FUNCTION_RAID_SCSI_IO_PASSTHROUGH) {
2657 * Fake out the device type so that only the
2658 * pass-thru device will attach.
2660 iq->device &= ~0x1F;
2661 iq->device |= T_NODEVICE;
2664 if (mpt->verbose == MPT_PRT_DEBUG) {
2665 mpt_prt(mpt, "mpt_scsi_reply_handler: %p:%u complete\n",
2668 KASSERT(ccb->ccb_h.status, ("zero ccb sts at %d\n", __LINE__));
2669 MPTLOCK_2_CAMLOCK(mpt);
2671 CAMLOCK_2_MPTLOCK(mpt);
2672 if ((req->state & REQ_STATE_TIMEDOUT) == 0) {
2673 TAILQ_REMOVE(&mpt->request_pending_list, req, links);
2675 mpt_prt(mpt, "completing timedout/aborted req %p:%u\n",
2677 TAILQ_REMOVE(&mpt->request_timeout_list, req, links);
2679 KASSERT((req->state & REQ_STATE_NEED_WAKEUP) == 0,
2680 ("CCB req needed wakeup"));
2682 mpt_req_not_spcl(mpt, req, "mpt_scsi_reply_handler", __LINE__);
2684 mpt_free_request(mpt, req);
2689 mpt_scsi_tmf_reply_handler(struct mpt_softc *mpt, request_t *req,
2690 uint32_t reply_desc, MSG_DEFAULT_REPLY *reply_frame)
2692 MSG_SCSI_TASK_MGMT_REPLY *tmf_reply;
2694 KASSERT(req == mpt->tmf_req, ("TMF Reply not using mpt->tmf_req"));
2696 mpt_req_not_spcl(mpt, req, "mpt_scsi_tmf_reply_handler", __LINE__);
2698 tmf_reply = (MSG_SCSI_TASK_MGMT_REPLY *)reply_frame;
2699 /* Record IOC Status and Response Code of TMF for any waiters. */
2700 req->IOCStatus = le16toh(tmf_reply->IOCStatus);
2701 req->ResponseCode = tmf_reply->ResponseCode;
2703 mpt_lprt(mpt, MPT_PRT_DEBUG, "TMF complete: req %p:%u status 0x%x\n",
2704 req, req->serno, le16toh(tmf_reply->IOCStatus));
2705 TAILQ_REMOVE(&mpt->request_pending_list, req, links);
2706 if ((req->state & REQ_STATE_NEED_WAKEUP) != 0) {
2707 req->state |= REQ_STATE_DONE;
2710 mpt->tmf_req->state = REQ_STATE_FREE;
2716 * XXX: Move to definitions file
2734 mpt_fc_els_send_response(struct mpt_softc *mpt, request_t *req,
2735 PTR_MSG_LINK_SERVICE_BUFFER_POST_REPLY rp, U8 length)
2738 MSG_LINK_SERVICE_RSP_REQUEST tmp;
2739 PTR_MSG_LINK_SERVICE_RSP_REQUEST rsp;
2742 * We are going to reuse the ELS request to send this response back.
2745 memset(rsp, 0, sizeof(*rsp));
2747 #ifdef USE_IMMEDIATE_LINK_DATA
2749 * Apparently the IMMEDIATE stuff doesn't seem to work.
2751 rsp->RspFlags = LINK_SERVICE_RSP_FLAGS_IMMEDIATE;
2753 rsp->RspLength = length;
2754 rsp->Function = MPI_FUNCTION_FC_LINK_SRVC_RSP;
2755 rsp->MsgContext = htole32(req->index | fc_els_handler_id);
2758 * Copy over information from the original reply frame to
2759 * it's correct place in the response.
2761 memcpy((U8 *)rsp + 0x0c, (U8 *)rp + 0x1c, 24);
2764 * And now copy back the temporary area to the original frame.
2766 memcpy(req->req_vbuf, rsp, sizeof (MSG_LINK_SERVICE_RSP_REQUEST));
2767 rsp = req->req_vbuf;
2769 #ifdef USE_IMMEDIATE_LINK_DATA
2770 memcpy((U8 *)&rsp->SGL, &((U8 *)req->req_vbuf)[MPT_RQSL(mpt)], length);
2773 PTR_SGE_SIMPLE32 se = (PTR_SGE_SIMPLE32) &rsp->SGL;
2774 bus_addr_t paddr = req->req_pbuf;
2775 paddr += MPT_RQSL(mpt);
2778 MPI_SGE_FLAGS_HOST_TO_IOC |
2779 MPI_SGE_FLAGS_SIMPLE_ELEMENT |
2780 MPI_SGE_FLAGS_LAST_ELEMENT |
2781 MPI_SGE_FLAGS_END_OF_LIST |
2782 MPI_SGE_FLAGS_END_OF_BUFFER;
2783 fl <<= MPI_SGE_FLAGS_SHIFT;
2785 se->FlagsLength = htole32(fl);
2786 se->Address = htole32((uint32_t) paddr);
2793 mpt_send_cmd(mpt, req);
2797 mpt_fc_els_reply_handler(struct mpt_softc *mpt, request_t *req,
2798 uint32_t reply_desc, MSG_DEFAULT_REPLY *reply_frame)
2800 PTR_MSG_LINK_SERVICE_BUFFER_POST_REPLY rp =
2801 (PTR_MSG_LINK_SERVICE_BUFFER_POST_REPLY) reply_frame;
2805 U16 status = le16toh(reply_frame->IOCStatus);
2808 int do_refresh = TRUE;
2811 KASSERT(mpt_req_on_free_list(mpt, req) == 0,
2812 ("fc_els_reply_handler: req %p:%u for function %x on freelist!",
2813 req, req->serno, rp->Function));
2814 if (rp->Function != MPI_FUNCTION_FC_PRIMITIVE_SEND) {
2815 mpt_req_spcl(mpt, req, "fc_els_reply_handler", __LINE__);
2817 mpt_req_not_spcl(mpt, req, "fc_els_reply_handler", __LINE__);
2820 mpt_lprt(mpt, MPT_PRT_DEBUG,
2821 "FC_ELS Complete: req %p:%u, reply %p function %x\n",
2822 req, req->serno, reply_frame, reply_frame->Function);
2824 if (status != MPI_IOCSTATUS_SUCCESS) {
2825 mpt_prt(mpt, "ELS REPLY STATUS 0x%x for Function %x\n",
2826 status, reply_frame->Function);
2827 if (status == MPI_IOCSTATUS_INVALID_STATE) {
2829 * XXX: to get around shutdown issue
2838 * If the function of a link service response, we recycle the
2839 * response to be a refresh for a new link service request.
2841 * The request pointer is bogus in this case and we have to fetch
2842 * it based upon the TransactionContext.
2844 if (rp->Function == MPI_FUNCTION_FC_LINK_SRVC_RSP) {
2845 /* Freddie Uncle Charlie Katie */
2846 /* We don't get the IOINDEX as part of the Link Svc Rsp */
2847 for (ioindex = 0; ioindex < mpt->els_cmds_allocated; ioindex++)
2848 if (mpt->els_cmd_ptrs[ioindex] == req) {
2852 KASSERT(ioindex < mpt->els_cmds_allocated,
2853 ("can't find my mommie!"));
2855 /* remove from active list as we're going to re-post it */
2856 TAILQ_REMOVE(&mpt->request_pending_list, req, links);
2857 req->state &= ~REQ_STATE_QUEUED;
2858 req->state |= REQ_STATE_DONE;
2859 mpt_fc_post_els(mpt, req, ioindex);
2863 if (rp->Function == MPI_FUNCTION_FC_PRIMITIVE_SEND) {
2864 /* remove from active list as we're done */
2865 TAILQ_REMOVE(&mpt->request_pending_list, req, links);
2866 req->state &= ~REQ_STATE_QUEUED;
2867 req->state |= REQ_STATE_DONE;
2868 if (req->state & REQ_STATE_TIMEDOUT) {
2869 mpt_lprt(mpt, MPT_PRT_DEBUG,
2870 "Sync Primitive Send Completed After Timeout\n");
2871 mpt_free_request(mpt, req);
2872 } else if ((req->state & REQ_STATE_NEED_WAKEUP) == 0) {
2873 mpt_lprt(mpt, MPT_PRT_DEBUG,
2874 "Async Primitive Send Complete\n");
2875 mpt_free_request(mpt, req);
2877 mpt_lprt(mpt, MPT_PRT_DEBUG,
2878 "Sync Primitive Send Complete- Waking Waiter\n");
2884 if (rp->Function != MPI_FUNCTION_FC_LINK_SRVC_BUF_POST) {
2885 mpt_prt(mpt, "unexpected ELS_REPLY: Function 0x%x Flags %x "
2886 "Length %d Message Flags %x\n", rp->Function, rp->Flags,
2887 rp->MsgLength, rp->MsgFlags);
2891 if (rp->MsgLength <= 5) {
2893 * This is just a ack of an original ELS buffer post
2895 mpt_lprt(mpt, MPT_PRT_DEBUG,
2896 "RECV'd ACK of FC_ELS buf post %p:%u\n", req, req->serno);
2901 rctl = (le32toh(rp->Rctl_Did) & MPI_FC_RCTL_MASK) >> MPI_FC_RCTL_SHIFT;
2902 type = (le32toh(rp->Type_Fctl) & MPI_FC_TYPE_MASK) >> MPI_FC_TYPE_SHIFT;
2904 elsbuf = &((U32 *)req->req_vbuf)[MPT_RQSL(mpt)/sizeof (U32)];
2905 cmd = be32toh(elsbuf[0]) >> 24;
2907 if (rp->Flags & MPI_LS_BUF_POST_REPLY_FLAG_NO_RSP_NEEDED) {
2908 mpt_lprt(mpt, MPT_PRT_ALWAYS, "ELS_REPLY: response unneeded\n");
2912 ioindex = le32toh(rp->TransactionContext);
2913 req = mpt->els_cmd_ptrs[ioindex];
2915 if (rctl == ELS && type == 1) {
2919 * Send back a PRLI ACC
2921 mpt_prt(mpt, "PRLI from 0x%08x%08x\n",
2922 le32toh(rp->Wwn.PortNameHigh),
2923 le32toh(rp->Wwn.PortNameLow));
2924 elsbuf[0] = htobe32(0x02100014);
2925 elsbuf[1] |= htobe32(0x00000100);
2926 elsbuf[4] = htobe32(0x00000002);
2927 if (mpt->role & MPT_ROLE_TARGET)
2928 elsbuf[4] |= htobe32(0x00000010);
2929 if (mpt->role & MPT_ROLE_INITIATOR)
2930 elsbuf[4] |= htobe32(0x00000020);
2931 /* remove from active list as we're done */
2932 TAILQ_REMOVE(&mpt->request_pending_list, req, links);
2933 req->state &= ~REQ_STATE_QUEUED;
2934 req->state |= REQ_STATE_DONE;
2935 mpt_fc_els_send_response(mpt, req, rp, 20);
2939 memset(elsbuf, 0, 5 * (sizeof (U32)));
2940 elsbuf[0] = htobe32(0x02100014);
2941 elsbuf[1] = htobe32(0x08000100);
2942 mpt_prt(mpt, "PRLO from 0x%08x%08x\n",
2943 le32toh(rp->Wwn.PortNameHigh),
2944 le32toh(rp->Wwn.PortNameLow));
2945 /* remove from active list as we're done */
2946 TAILQ_REMOVE(&mpt->request_pending_list, req, links);
2947 req->state &= ~REQ_STATE_QUEUED;
2948 req->state |= REQ_STATE_DONE;
2949 mpt_fc_els_send_response(mpt, req, rp, 20);
2953 mpt_prt(mpt, "ELS TYPE 1 COMMAND: %x\n", cmd);
2956 } else if (rctl == ABTS && type == 0) {
2957 uint16_t rx_id = le16toh(rp->Rxid);
2958 uint16_t ox_id = le16toh(rp->Oxid);
2959 request_t *tgt_req = NULL;
2962 "ELS: ABTS OX_ID 0x%x RX_ID 0x%x from 0x%08x%08x\n",
2963 ox_id, rx_id, le32toh(rp->Wwn.PortNameHigh),
2964 le32toh(rp->Wwn.PortNameLow));
2965 if (rx_id >= mpt->mpt_max_tgtcmds) {
2966 mpt_prt(mpt, "Bad RX_ID 0x%x\n", rx_id);
2967 } else if (mpt->tgt_cmd_ptrs == NULL) {
2968 mpt_prt(mpt, "No TGT CMD PTRS\n");
2970 tgt_req = mpt->tgt_cmd_ptrs[rx_id];
2973 mpt_tgt_state_t *tgt = MPT_TGT_STATE(mpt, tgt_req);
2975 union ccb *ccb = tgt->ccb;
2978 vbuf = tgt_req->req_vbuf;
2979 vbuf += MPT_RQSL(mpt);
2982 * Check to make sure we have the correct command
2983 * The reply descriptor in the target state should
2984 * should contain an IoIndex that should match the
2987 * It'd be nice to have OX_ID to crosscheck with
2990 ct_id = GET_IO_INDEX(tgt->reply_desc);
2992 if (ct_id != rx_id) {
2993 mpt_lprt(mpt, MPT_PRT_ERROR, "ABORT Mismatch: "
2994 "RX_ID received=0x%x; RX_ID in cmd=0x%x\n",
3002 "CCB (%p): lun %u flags %x status %x\n",
3003 ccb, ccb->ccb_h.target_lun,
3004 ccb->ccb_h.flags, ccb->ccb_h.status);
3006 mpt_prt(mpt, "target state 0x%x resid %u xfrd %u rpwrd "
3007 "%x nxfers %x\n", tgt->state,
3008 tgt->resid, tgt->bytes_xfered, tgt->reply_desc,
3011 if (mpt_abort_target_cmd(mpt, tgt_req)) {
3012 mpt_prt(mpt, "unable to start TargetAbort\n");
3015 mpt_prt(mpt, "no back pointer for RX_ID 0x%x\n", rx_id);
3017 memset(elsbuf, 0, 5 * (sizeof (U32)));
3018 elsbuf[0] = htobe32(0);
3019 elsbuf[1] = htobe32((ox_id << 16) | rx_id);
3020 elsbuf[2] = htobe32(0x000ffff);
3022 * Dork with the reply frame so that the reponse to it
3025 rp->Rctl_Did += ((BA_ACC - ABTS) << MPI_FC_RCTL_SHIFT);
3026 /* remove from active list as we're done */
3027 TAILQ_REMOVE(&mpt->request_pending_list, req, links);
3028 req->state &= ~REQ_STATE_QUEUED;
3029 req->state |= REQ_STATE_DONE;
3030 mpt_fc_els_send_response(mpt, req, rp, 12);
3033 mpt_prt(mpt, "ELS: RCTL %x TYPE %x CMD %x\n", rctl, type, cmd);
3035 if (do_refresh == TRUE) {
3036 /* remove from active list as we're done */
3037 TAILQ_REMOVE(&mpt->request_pending_list, req, links);
3038 req->state &= ~REQ_STATE_QUEUED;
3039 req->state |= REQ_STATE_DONE;
3040 mpt_fc_post_els(mpt, req, ioindex);
3046 * Clean up all SCSI Initiator personality state in response
3047 * to a controller reset.
3050 mpt_cam_ioc_reset(struct mpt_softc *mpt, int type)
3053 * The pending list is already run down by
3054 * the generic handler. Perform the same
3055 * operation on the timed out request list.
3057 mpt_complete_request_chain(mpt, &mpt->request_timeout_list,
3058 MPI_IOCSTATUS_INVALID_STATE);
3061 * XXX: We need to repost ELS and Target Command Buffers?
3065 * Inform the XPT that a bus reset has occurred.
3067 xpt_async(AC_BUS_RESET, mpt->path, NULL);
3071 * Parse additional completion information in the reply
3072 * frame for SCSI I/O requests.
3075 mpt_scsi_reply_frame_handler(struct mpt_softc *mpt, request_t *req,
3076 MSG_DEFAULT_REPLY *reply_frame)
3079 MSG_SCSI_IO_REPLY *scsi_io_reply;
3084 MPT_DUMP_REPLY_FRAME(mpt, reply_frame);
3085 KASSERT(reply_frame->Function == MPI_FUNCTION_SCSI_IO_REQUEST
3086 || reply_frame->Function == MPI_FUNCTION_RAID_SCSI_IO_PASSTHROUGH,
3087 ("MPT SCSI I/O Handler called with incorrect reply type"));
3088 KASSERT((reply_frame->MsgFlags & MPI_MSGFLAGS_CONTINUATION_REPLY) == 0,
3089 ("MPT SCSI I/O Handler called with continuation reply"));
3091 scsi_io_reply = (MSG_SCSI_IO_REPLY *)reply_frame;
3092 ioc_status = le16toh(scsi_io_reply->IOCStatus);
3093 loginfo = ioc_status & MPI_IOCSTATUS_FLAG_LOG_INFO_AVAILABLE;
3094 ioc_status &= MPI_IOCSTATUS_MASK;
3095 sstate = scsi_io_reply->SCSIState;
3099 ccb->csio.dxfer_len - le32toh(scsi_io_reply->TransferCount);
3101 if ((sstate & MPI_SCSI_STATE_AUTOSENSE_VALID) != 0
3102 && (ccb->ccb_h.flags & (CAM_SENSE_PHYS | CAM_SENSE_PTR)) == 0) {
3103 ccb->ccb_h.status |= CAM_AUTOSNS_VALID;
3104 ccb->csio.sense_resid =
3105 ccb->csio.sense_len - le32toh(scsi_io_reply->SenseCount);
3106 bcopy(req->sense_vbuf, &ccb->csio.sense_data,
3107 min(ccb->csio.sense_len,
3108 le32toh(scsi_io_reply->SenseCount)));
3111 if ((sstate & MPI_SCSI_STATE_QUEUE_TAG_REJECTED) != 0) {
3113 * Tag messages rejected, but non-tagged retry
3116 mpt_set_tags(mpt, devinfo, MPT_QUEUE_NONE);
3120 switch(ioc_status) {
3121 case MPI_IOCSTATUS_SCSI_RESIDUAL_MISMATCH:
3124 * Linux driver indicates that a zero
3125 * transfer length with this error code
3126 * indicates a CRC error.
3128 * No need to swap the bytes for checking
3131 if (scsi_io_reply->TransferCount == 0) {
3132 mpt_set_ccb_status(ccb, CAM_UNCOR_PARITY);
3136 case MPI_IOCSTATUS_SCSI_DATA_UNDERRUN:
3137 case MPI_IOCSTATUS_SUCCESS:
3138 case MPI_IOCSTATUS_SCSI_RECOVERED_ERROR:
3139 if ((sstate & MPI_SCSI_STATE_NO_SCSI_STATUS) != 0) {
3141 * Status was never returned for this transaction.
3143 mpt_set_ccb_status(ccb, CAM_UNEXP_BUSFREE);
3144 } else if (scsi_io_reply->SCSIStatus != SCSI_STATUS_OK) {
3145 ccb->csio.scsi_status = scsi_io_reply->SCSIStatus;
3146 mpt_set_ccb_status(ccb, CAM_SCSI_STATUS_ERROR);
3147 if ((sstate & MPI_SCSI_STATE_AUTOSENSE_FAILED) != 0)
3148 mpt_set_ccb_status(ccb, CAM_AUTOSENSE_FAIL);
3149 } else if ((sstate & MPI_SCSI_STATE_RESPONSE_INFO_VALID) != 0) {
3151 /* XXX Handle SPI-Packet and FCP-2 reponse info. */
3152 mpt_set_ccb_status(ccb, CAM_REQ_CMP_ERR);
3154 mpt_set_ccb_status(ccb, CAM_REQ_CMP);
3156 case MPI_IOCSTATUS_SCSI_DATA_OVERRUN:
3157 mpt_set_ccb_status(ccb, CAM_DATA_RUN_ERR);
3159 case MPI_IOCSTATUS_SCSI_IO_DATA_ERROR:
3160 mpt_set_ccb_status(ccb, CAM_UNCOR_PARITY);
3162 case MPI_IOCSTATUS_SCSI_DEVICE_NOT_THERE:
3164 * Since selection timeouts and "device really not
3165 * there" are grouped into this error code, report
3166 * selection timeout. Selection timeouts are
3167 * typically retried before giving up on the device
3168 * whereas "device not there" errors are considered
3171 mpt_set_ccb_status(ccb, CAM_SEL_TIMEOUT);
3173 case MPI_IOCSTATUS_SCSI_PROTOCOL_ERROR:
3174 mpt_set_ccb_status(ccb, CAM_SEQUENCE_FAIL);
3176 case MPI_IOCSTATUS_SCSI_INVALID_BUS:
3177 mpt_set_ccb_status(ccb, CAM_PATH_INVALID);
3179 case MPI_IOCSTATUS_SCSI_INVALID_TARGETID:
3180 mpt_set_ccb_status(ccb, CAM_TID_INVALID);
3182 case MPI_IOCSTATUS_SCSI_TASK_MGMT_FAILED:
3183 ccb->ccb_h.status = CAM_UA_TERMIO;
3185 case MPI_IOCSTATUS_INVALID_STATE:
3187 * The IOC has been reset. Emulate a bus reset.
3190 case MPI_IOCSTATUS_SCSI_EXT_TERMINATED:
3191 ccb->ccb_h.status = CAM_SCSI_BUS_RESET;
3193 case MPI_IOCSTATUS_SCSI_TASK_TERMINATED:
3194 case MPI_IOCSTATUS_SCSI_IOC_TERMINATED:
3196 * Don't clobber any timeout status that has
3197 * already been set for this transaction. We
3198 * want the SCSI layer to be able to differentiate
3199 * between the command we aborted due to timeout
3200 * and any innocent bystanders.
3202 if ((ccb->ccb_h.status & CAM_STATUS_MASK) != CAM_REQ_INPROG)
3204 mpt_set_ccb_status(ccb, CAM_REQ_TERMIO);
3207 case MPI_IOCSTATUS_INSUFFICIENT_RESOURCES:
3208 mpt_set_ccb_status(ccb, CAM_RESRC_UNAVAIL);
3210 case MPI_IOCSTATUS_BUSY:
3211 mpt_set_ccb_status(ccb, CAM_BUSY);
3213 case MPI_IOCSTATUS_INVALID_FUNCTION:
3214 case MPI_IOCSTATUS_INVALID_SGL:
3215 case MPI_IOCSTATUS_INTERNAL_ERROR:
3216 case MPI_IOCSTATUS_INVALID_FIELD:
3219 * Some of the above may need to kick
3220 * of a recovery action!!!!
3222 ccb->ccb_h.status = CAM_UNREC_HBA_ERROR;
3226 if ((ccb->ccb_h.status & CAM_STATUS_MASK) != CAM_REQ_CMP) {
3227 mpt_freeze_ccb(ccb);
3234 mpt_action(struct cam_sim *sim, union ccb *ccb)
3236 struct mpt_softc *mpt;
3237 struct ccb_trans_settings *cts;
3242 CAM_DEBUG(ccb->ccb_h.path, CAM_DEBUG_TRACE, ("mpt_action\n"));
3244 mpt = (struct mpt_softc *)cam_sim_softc(sim);
3245 raid_passthru = (sim == mpt->phydisk_sim);
3246 MPT_LOCK_ASSERT(mpt);
3248 tgt = ccb->ccb_h.target_id;
3249 lun = ccb->ccb_h.target_lun;
3250 if (raid_passthru &&
3251 ccb->ccb_h.func_code != XPT_PATH_INQ &&
3252 ccb->ccb_h.func_code != XPT_RESET_BUS &&
3253 ccb->ccb_h.func_code != XPT_RESET_DEV) {
3254 CAMLOCK_2_MPTLOCK(mpt);
3255 if (mpt_map_physdisk(mpt, ccb, &tgt) != 0) {
3256 MPTLOCK_2_CAMLOCK(mpt);
3257 ccb->ccb_h.status &= ~CAM_SIM_QUEUED;
3258 mpt_set_ccb_status(ccb, CAM_DEV_NOT_THERE);
3262 MPTLOCK_2_CAMLOCK(mpt);
3264 ccb->ccb_h.ccb_mpt_ptr = mpt;
3266 switch (ccb->ccb_h.func_code) {
3267 case XPT_SCSI_IO: /* Execute the requested I/O operation */
3269 * Do a couple of preliminary checks...
3271 if ((ccb->ccb_h.flags & CAM_CDB_POINTER) != 0) {
3272 if ((ccb->ccb_h.flags & CAM_CDB_PHYS) != 0) {
3273 ccb->ccb_h.status &= ~CAM_SIM_QUEUED;
3274 mpt_set_ccb_status(ccb, CAM_REQ_INVALID);
3278 /* Max supported CDB length is 16 bytes */
3279 /* XXX Unless we implement the new 32byte message type */
3280 if (ccb->csio.cdb_len >
3281 sizeof (((PTR_MSG_SCSI_IO_REQUEST)0)->CDB)) {
3282 ccb->ccb_h.status &= ~CAM_SIM_QUEUED;
3283 mpt_set_ccb_status(ccb, CAM_REQ_INVALID);
3286 #ifdef MPT_TEST_MULTIPATH
3287 if (mpt->failure_id == ccb->ccb_h.target_id) {
3288 ccb->ccb_h.status &= ~CAM_SIM_QUEUED;
3289 mpt_set_ccb_status(ccb, CAM_SEL_TIMEOUT);
3293 ccb->csio.scsi_status = SCSI_STATUS_OK;
3294 mpt_start(sim, ccb);
3298 if (raid_passthru) {
3299 ccb->ccb_h.status &= ~CAM_SIM_QUEUED;
3300 mpt_set_ccb_status(ccb, CAM_REQ_CMP);
3304 if (ccb->ccb_h.func_code == XPT_RESET_BUS) {
3306 xpt_print(ccb->ccb_h.path, "reset bus\n");
3309 xpt_print(ccb->ccb_h.path, "reset device\n");
3311 CAMLOCK_2_MPTLOCK(mpt);
3312 (void) mpt_bus_reset(mpt, tgt, lun, FALSE);
3313 MPTLOCK_2_CAMLOCK(mpt);
3316 * mpt_bus_reset is always successful in that it
3317 * will fall back to a hard reset should a bus
3318 * reset attempt fail.
3320 ccb->ccb_h.status &= ~CAM_SIM_QUEUED;
3321 mpt_set_ccb_status(ccb, CAM_REQ_CMP);
3326 union ccb *accb = ccb->cab.abort_ccb;
3327 CAMLOCK_2_MPTLOCK(mpt);
3328 switch (accb->ccb_h.func_code) {
3329 case XPT_ACCEPT_TARGET_IO:
3330 case XPT_IMMED_NOTIFY:
3331 ccb->ccb_h.status = mpt_abort_target_ccb(mpt, ccb);
3333 case XPT_CONT_TARGET_IO:
3334 mpt_prt(mpt, "cannot abort active CTIOs yet\n");
3335 ccb->ccb_h.status = CAM_UA_ABORT;
3338 ccb->ccb_h.status = CAM_UA_ABORT;
3341 ccb->ccb_h.status = CAM_REQ_INVALID;
3344 MPTLOCK_2_CAMLOCK(mpt);
3348 #ifdef CAM_NEW_TRAN_CODE
3349 #define IS_CURRENT_SETTINGS(c) ((c)->type == CTS_TYPE_CURRENT_SETTINGS)
3351 #define IS_CURRENT_SETTINGS(c) ((c)->flags & CCB_TRANS_CURRENT_SETTINGS)
3353 #define DP_DISC_ENABLE 0x1
3354 #define DP_DISC_DISABL 0x2
3355 #define DP_DISC (DP_DISC_ENABLE|DP_DISC_DISABL)
3357 #define DP_TQING_ENABLE 0x4
3358 #define DP_TQING_DISABL 0x8
3359 #define DP_TQING (DP_TQING_ENABLE|DP_TQING_DISABL)
3361 #define DP_WIDE 0x10
3362 #define DP_NARROW 0x20
3363 #define DP_WIDTH (DP_WIDE|DP_NARROW)
3365 #define DP_SYNC 0x40
3367 case XPT_SET_TRAN_SETTINGS: /* Nexus Settings */
3369 #ifdef CAM_NEW_TRAN_CODE
3370 struct ccb_trans_settings_scsi *scsi;
3371 struct ccb_trans_settings_spi *spi;
3380 if (mpt->is_fc || mpt->is_sas) {
3381 mpt_set_ccb_status(ccb, CAM_REQ_CMP);
3385 #ifdef CAM_NEW_TRAN_CODE
3386 scsi = &cts->proto_specific.scsi;
3387 spi = &cts->xport_specific.spi;
3390 * We can be called just to valid transport and proto versions
3392 if (scsi->valid == 0 && spi->valid == 0) {
3393 mpt_set_ccb_status(ccb, CAM_REQ_CMP);
3399 * Skip attempting settings on RAID volume disks.
3400 * Other devices on the bus get the normal treatment.
3402 if (mpt->phydisk_sim && raid_passthru == 0 &&
3403 mpt_is_raid_volume(mpt, tgt) != 0) {
3404 mpt_lprt(mpt, MPT_PRT_NEGOTIATION,
3405 "no transfer settings for RAID vols\n");
3406 mpt_set_ccb_status(ccb, CAM_REQ_CMP);
3410 i = mpt->mpt_port_page2.PortSettings &
3411 MPI_SCSIPORTPAGE2_PORT_MASK_NEGO_MASTER_SETTINGS;
3412 j = mpt->mpt_port_page2.PortFlags &
3413 MPI_SCSIPORTPAGE2_PORT_FLAGS_DV_MASK;
3414 if (i == MPI_SCSIPORTPAGE2_PORT_ALL_MASTER_SETTINGS &&
3415 j == MPI_SCSIPORTPAGE2_PORT_FLAGS_OFF_DV) {
3416 mpt_lprt(mpt, MPT_PRT_ALWAYS,
3417 "honoring BIOS transfer negotiations\n");
3418 mpt_set_ccb_status(ccb, CAM_REQ_CMP);
3426 #ifndef CAM_NEW_TRAN_CODE
3427 if ((cts->valid & CCB_TRANS_DISC_VALID) != 0) {
3428 dval |= (cts->flags & CCB_TRANS_DISC_ENB) ?
3429 DP_DISC_ENABLE : DP_DISC_DISABL;
3432 if ((cts->valid & CCB_TRANS_TQ_VALID) != 0) {
3433 dval |= (cts->flags & CCB_TRANS_TAG_ENB) ?
3434 DP_TQING_ENABLE : DP_TQING_DISABL;
3437 if ((cts->valid & CCB_TRANS_BUS_WIDTH_VALID) != 0) {
3438 dval |= cts->bus_width ? DP_WIDE : DP_NARROW;
3441 if ((cts->valid & CCB_TRANS_SYNC_RATE_VALID) &&
3442 (cts->valid & CCB_TRANS_SYNC_OFFSET_VALID)) {
3444 period = cts->sync_period;
3445 offset = cts->sync_offset;
3448 if ((spi->valid & CTS_SPI_VALID_DISC) != 0) {
3449 dval |= ((spi->flags & CTS_SPI_FLAGS_DISC_ENB) != 0) ?
3450 DP_DISC_ENABLE : DP_DISC_DISABL;
3453 if ((scsi->valid & CTS_SCSI_VALID_TQ) != 0) {
3454 dval |= ((scsi->flags & CTS_SCSI_FLAGS_TAG_ENB) != 0) ?
3455 DP_TQING_ENABLE : DP_TQING_DISABL;
3458 if ((spi->valid & CTS_SPI_VALID_BUS_WIDTH) != 0) {
3459 dval |= (spi->bus_width == MSG_EXT_WDTR_BUS_16_BIT) ?
3460 DP_WIDE : DP_NARROW;
3463 if (spi->valid & CTS_SPI_VALID_SYNC_OFFSET) {
3465 offset = spi->sync_offset;
3467 PTR_CONFIG_PAGE_SCSI_DEVICE_1 ptr =
3468 &mpt->mpt_dev_page1[tgt];
3469 offset = ptr->RequestedParameters;
3470 offset &= MPI_SCSIDEVPAGE1_RP_MAX_SYNC_OFFSET_MASK;
3471 offset >>= MPI_SCSIDEVPAGE1_RP_SHIFT_MAX_SYNC_OFFSET;
3473 if (spi->valid & CTS_SPI_VALID_SYNC_RATE) {
3475 period = spi->sync_period;
3477 PTR_CONFIG_PAGE_SCSI_DEVICE_1 ptr =
3478 &mpt->mpt_dev_page1[tgt];
3479 period = ptr->RequestedParameters;
3480 period &= MPI_SCSIDEVPAGE1_RP_MIN_SYNC_PERIOD_MASK;
3481 period >>= MPI_SCSIDEVPAGE1_RP_SHIFT_MIN_SYNC_PERIOD;
3484 CAMLOCK_2_MPTLOCK(mpt);
3485 if (dval & DP_DISC_ENABLE) {
3486 mpt->mpt_disc_enable |= (1 << tgt);
3487 } else if (dval & DP_DISC_DISABL) {
3488 mpt->mpt_disc_enable &= ~(1 << tgt);
3490 if (dval & DP_TQING_ENABLE) {
3491 mpt->mpt_tag_enable |= (1 << tgt);
3492 } else if (dval & DP_TQING_DISABL) {
3493 mpt->mpt_tag_enable &= ~(1 << tgt);
3495 if (dval & DP_WIDTH) {
3496 mpt_setwidth(mpt, tgt, 1);
3498 if (dval & DP_SYNC) {
3499 mpt_setsync(mpt, tgt, period, offset);
3502 MPTLOCK_2_CAMLOCK(mpt);
3503 mpt_set_ccb_status(ccb, CAM_REQ_CMP);
3506 mpt_lprt(mpt, MPT_PRT_NEGOTIATION,
3507 "set [%d]: 0x%x period 0x%x offset %d\n",
3508 tgt, dval, period, offset);
3509 if (mpt_update_spi_config(mpt, tgt)) {
3510 mpt_set_ccb_status(ccb, CAM_REQ_CMP_ERR);
3512 mpt_set_ccb_status(ccb, CAM_REQ_CMP);
3514 MPTLOCK_2_CAMLOCK(mpt);
3517 case XPT_GET_TRAN_SETTINGS:
3519 #ifdef CAM_NEW_TRAN_CODE
3520 struct ccb_trans_settings_scsi *scsi;
3522 cts->protocol = PROTO_SCSI;
3524 struct ccb_trans_settings_fc *fc =
3525 &cts->xport_specific.fc;
3526 cts->protocol_version = SCSI_REV_SPC;
3527 cts->transport = XPORT_FC;
3528 cts->transport_version = 0;
3529 fc->valid = CTS_FC_VALID_SPEED;
3530 fc->bitrate = 100000;
3531 } else if (mpt->is_sas) {
3532 struct ccb_trans_settings_sas *sas =
3533 &cts->xport_specific.sas;
3534 cts->protocol_version = SCSI_REV_SPC2;
3535 cts->transport = XPORT_SAS;
3536 cts->transport_version = 0;
3537 sas->valid = CTS_SAS_VALID_SPEED;
3538 sas->bitrate = 300000;
3540 cts->protocol_version = SCSI_REV_2;
3541 cts->transport = XPORT_SPI;
3542 cts->transport_version = 2;
3543 if (mpt_get_spi_settings(mpt, cts) != 0) {
3544 mpt_set_ccb_status(ccb, CAM_REQ_CMP_ERR);
3548 scsi = &cts->proto_specific.scsi;
3549 scsi->valid = CTS_SCSI_VALID_TQ;
3550 scsi->flags = CTS_SCSI_FLAGS_TAG_ENB;
3554 cts->flags = CCB_TRANS_TAG_ENB | CCB_TRANS_DISC_ENB;
3555 cts->valid = CCB_TRANS_DISC_VALID | CCB_TRANS_TQ_VALID;
3556 cts->bus_width = MSG_EXT_WDTR_BUS_8_BIT;
3557 } else if (mpt->is_sas) {
3558 cts->flags = CCB_TRANS_TAG_ENB | CCB_TRANS_DISC_ENB;
3559 cts->valid = CCB_TRANS_DISC_VALID | CCB_TRANS_TQ_VALID;
3560 cts->bus_width = MSG_EXT_WDTR_BUS_8_BIT;
3561 } else if (mpt_get_spi_settings(mpt, cts) != 0) {
3562 mpt_set_ccb_status(ccb, CAM_REQ_CMP_ERR);
3566 mpt_set_ccb_status(ccb, CAM_REQ_CMP);
3569 case XPT_CALC_GEOMETRY:
3571 struct ccb_calc_geometry *ccg;
3574 if (ccg->block_size == 0) {
3575 ccb->ccb_h.status &= ~CAM_SIM_QUEUED;
3576 mpt_set_ccb_status(ccb, CAM_REQ_INVALID);
3579 mpt_calc_geometry(ccg, /*extended*/1);
3580 KASSERT(ccb->ccb_h.status, ("zero ccb sts at %d\n", __LINE__));
3583 case XPT_PATH_INQ: /* Path routing inquiry */
3585 struct ccb_pathinq *cpi = &ccb->cpi;
3587 cpi->version_num = 1;
3588 cpi->target_sprt = 0;
3589 cpi->hba_eng_cnt = 0;
3590 cpi->max_target = mpt->port_facts[0].MaxDevices - 1;
3592 * FC cards report MAX_DEVICES of 512, but
3593 * the MSG_SCSI_IO_REQUEST target id field
3594 * is only 8 bits. Until we fix the driver
3595 * to support 'channels' for bus overflow,
3598 if (cpi->max_target > 255) {
3599 cpi->max_target = 255;
3603 * VMware ESX reports > 16 devices and then dies when we probe.
3605 if (mpt->is_spi && cpi->max_target > 15) {
3606 cpi->max_target = 15;
3609 cpi->initiator_id = mpt->mpt_ini_id;
3610 cpi->bus_id = cam_sim_bus(sim);
3613 * The base speed is the speed of the underlying connection.
3615 #ifdef CAM_NEW_TRAN_CODE
3616 cpi->protocol = PROTO_SCSI;
3618 cpi->hba_misc = PIM_NOBUSRESET;
3619 cpi->base_transfer_speed = 100000;
3620 cpi->hba_inquiry = PI_TAG_ABLE;
3621 cpi->transport = XPORT_FC;
3622 cpi->transport_version = 0;
3623 cpi->protocol_version = SCSI_REV_SPC;
3624 } else if (mpt->is_sas) {
3625 cpi->hba_misc = PIM_NOBUSRESET;
3626 cpi->base_transfer_speed = 300000;
3627 cpi->hba_inquiry = PI_TAG_ABLE;
3628 cpi->transport = XPORT_SAS;
3629 cpi->transport_version = 0;
3630 cpi->protocol_version = SCSI_REV_SPC2;
3632 cpi->hba_misc = PIM_SEQSCAN;
3633 cpi->base_transfer_speed = 3300;
3634 cpi->hba_inquiry = PI_SDTR_ABLE|PI_TAG_ABLE|PI_WIDE_16;
3635 cpi->transport = XPORT_SPI;
3636 cpi->transport_version = 2;
3637 cpi->protocol_version = SCSI_REV_2;
3641 cpi->hba_misc = PIM_NOBUSRESET;
3642 cpi->base_transfer_speed = 100000;
3643 cpi->hba_inquiry = PI_TAG_ABLE;
3644 } else if (mpt->is_sas) {
3645 cpi->hba_misc = PIM_NOBUSRESET;
3646 cpi->base_transfer_speed = 300000;
3647 cpi->hba_inquiry = PI_TAG_ABLE;
3649 cpi->hba_misc = PIM_SEQSCAN;
3650 cpi->base_transfer_speed = 3300;
3651 cpi->hba_inquiry = PI_SDTR_ABLE|PI_TAG_ABLE|PI_WIDE_16;
3656 * We give our fake RAID passhtru bus a width that is MaxVolumes
3657 * wide and restrict it to one lun.
3659 if (raid_passthru) {
3660 cpi->max_target = mpt->ioc_page2->MaxPhysDisks - 1;
3661 cpi->initiator_id = cpi->max_target + 1;
3665 if ((mpt->role & MPT_ROLE_INITIATOR) == 0) {
3666 cpi->hba_misc |= PIM_NOINITIATOR;
3668 if (mpt->is_fc && (mpt->role & MPT_ROLE_TARGET)) {
3670 PIT_PROCESSOR | PIT_DISCONNECT | PIT_TERM_IO;
3672 cpi->target_sprt = 0;
3674 strncpy(cpi->sim_vid, "FreeBSD", SIM_IDLEN);
3675 strncpy(cpi->hba_vid, "LSI", HBA_IDLEN);
3676 strncpy(cpi->dev_name, cam_sim_name(sim), DEV_IDLEN);
3677 cpi->unit_number = cam_sim_unit(sim);
3678 cpi->ccb_h.status = CAM_REQ_CMP;
3681 case XPT_EN_LUN: /* Enable LUN as a target */
3685 CAMLOCK_2_MPTLOCK(mpt);
3686 if (ccb->cel.enable)
3687 result = mpt_enable_lun(mpt,
3688 ccb->ccb_h.target_id, ccb->ccb_h.target_lun);
3690 result = mpt_disable_lun(mpt,
3691 ccb->ccb_h.target_id, ccb->ccb_h.target_lun);
3692 MPTLOCK_2_CAMLOCK(mpt);
3694 mpt_set_ccb_status(ccb, CAM_REQ_CMP);
3696 mpt_set_ccb_status(ccb, CAM_REQ_CMP_ERR);
3700 case XPT_NOTIFY_ACK: /* recycle notify ack */
3701 case XPT_IMMED_NOTIFY: /* Add Immediate Notify Resource */
3702 case XPT_ACCEPT_TARGET_IO: /* Add Accept Target IO Resource */
3704 tgt_resource_t *trtp;
3705 lun_id_t lun = ccb->ccb_h.target_lun;
3706 ccb->ccb_h.sim_priv.entries[0].field = 0;
3707 ccb->ccb_h.sim_priv.entries[1].ptr = mpt;
3708 ccb->ccb_h.flags = 0;
3710 if (lun == CAM_LUN_WILDCARD) {
3711 if (ccb->ccb_h.target_id != CAM_TARGET_WILDCARD) {
3712 mpt_set_ccb_status(ccb, CAM_REQ_INVALID);
3715 trtp = &mpt->trt_wildcard;
3716 } else if (lun >= MPT_MAX_LUNS) {
3717 mpt_set_ccb_status(ccb, CAM_REQ_INVALID);
3720 trtp = &mpt->trt[lun];
3722 CAMLOCK_2_MPTLOCK(mpt);
3723 if (ccb->ccb_h.func_code == XPT_ACCEPT_TARGET_IO) {
3724 mpt_lprt(mpt, MPT_PRT_DEBUG1,
3725 "Put FREE ATIO %p lun %d\n", ccb, lun);
3726 STAILQ_INSERT_TAIL(&trtp->atios, &ccb->ccb_h,
3728 } else if (ccb->ccb_h.func_code == XPT_IMMED_NOTIFY) {
3729 mpt_lprt(mpt, MPT_PRT_DEBUG1,
3730 "Put FREE INOT lun %d\n", lun);
3731 STAILQ_INSERT_TAIL(&trtp->inots, &ccb->ccb_h,
3734 mpt_lprt(mpt, MPT_PRT_ALWAYS, "Got Notify ACK\n");
3736 mpt_set_ccb_status(ccb, CAM_REQ_INPROG);
3737 MPTLOCK_2_CAMLOCK(mpt);
3740 case XPT_CONT_TARGET_IO:
3741 CAMLOCK_2_MPTLOCK(mpt);
3742 mpt_target_start_io(mpt, ccb);
3743 MPTLOCK_2_CAMLOCK(mpt);
3747 ccb->ccb_h.status = CAM_REQ_INVALID;
3754 mpt_get_spi_settings(struct mpt_softc *mpt, struct ccb_trans_settings *cts)
3756 #ifdef CAM_NEW_TRAN_CODE
3757 struct ccb_trans_settings_scsi *scsi = &cts->proto_specific.scsi;
3758 struct ccb_trans_settings_spi *spi = &cts->xport_specific.spi;
3761 uint32_t dval, pval, oval;
3764 if (IS_CURRENT_SETTINGS(cts) == 0) {
3765 tgt = cts->ccb_h.target_id;
3766 } else if (xpt_path_sim(cts->ccb_h.path) == mpt->phydisk_sim) {
3767 if (mpt_map_physdisk(mpt, (union ccb *)cts, &tgt)) {
3771 tgt = cts->ccb_h.target_id;
3775 * We aren't looking at Port Page 2 BIOS settings here-
3776 * sometimes these have been known to be bogus XXX.
3778 * For user settings, we pick the max from port page 0
3780 * For current settings we read the current settings out from
3781 * device page 0 for that target.
3783 if (IS_CURRENT_SETTINGS(cts)) {
3784 CONFIG_PAGE_SCSI_DEVICE_0 tmp;
3787 CAMLOCK_2_MPTLOCK(mpt);
3788 tmp = mpt->mpt_dev_page0[tgt];
3789 rv = mpt_read_cur_cfg_page(mpt, tgt, &tmp.Header,
3790 sizeof(tmp), FALSE, 5000);
3792 MPTLOCK_2_CAMLOCK(mpt);
3793 mpt_prt(mpt, "can't get tgt %d config page 0\n", tgt);
3796 mpt2host_config_page_scsi_device_0(&tmp);
3798 MPTLOCK_2_CAMLOCK(mpt);
3799 mpt_lprt(mpt, MPT_PRT_DEBUG,
3800 "mpt_get_spi_settings[%d]: current NP %x Info %x\n", tgt,
3801 tmp.NegotiatedParameters, tmp.Information);
3802 dval |= (tmp.NegotiatedParameters & MPI_SCSIDEVPAGE0_NP_WIDE) ?
3803 DP_WIDE : DP_NARROW;
3804 dval |= (mpt->mpt_disc_enable & (1 << tgt)) ?
3805 DP_DISC_ENABLE : DP_DISC_DISABL;
3806 dval |= (mpt->mpt_tag_enable & (1 << tgt)) ?
3807 DP_TQING_ENABLE : DP_TQING_DISABL;
3808 oval = tmp.NegotiatedParameters;
3809 oval &= MPI_SCSIDEVPAGE0_NP_NEG_SYNC_OFFSET_MASK;
3810 oval >>= MPI_SCSIDEVPAGE0_NP_SHIFT_SYNC_OFFSET;
3811 pval = tmp.NegotiatedParameters;
3812 pval &= MPI_SCSIDEVPAGE0_NP_NEG_SYNC_PERIOD_MASK;
3813 pval >>= MPI_SCSIDEVPAGE0_NP_SHIFT_SYNC_PERIOD;
3814 mpt->mpt_dev_page0[tgt] = tmp;
3816 dval = DP_WIDE|DP_DISC_ENABLE|DP_TQING_ENABLE|DP_SYNC;
3817 oval = mpt->mpt_port_page0.Capabilities;
3818 oval = MPI_SCSIPORTPAGE0_CAP_GET_MAX_SYNC_OFFSET(oval);
3819 pval = mpt->mpt_port_page0.Capabilities;
3820 pval = MPI_SCSIPORTPAGE0_CAP_GET_MIN_SYNC_PERIOD(pval);
3823 #ifndef CAM_NEW_TRAN_CODE
3824 cts->flags &= ~(CCB_TRANS_DISC_ENB|CCB_TRANS_TAG_ENB);
3826 cts->sync_period = pval;
3827 cts->sync_offset = oval;
3828 cts->valid |= CCB_TRANS_SYNC_RATE_VALID;
3829 cts->valid |= CCB_TRANS_SYNC_OFFSET_VALID;
3830 cts->valid |= CCB_TRANS_BUS_WIDTH_VALID;
3831 if (dval & DP_WIDE) {
3832 cts->bus_width = MSG_EXT_WDTR_BUS_16_BIT;
3834 cts->bus_width = MSG_EXT_WDTR_BUS_8_BIT;
3836 if (cts->ccb_h.target_lun != CAM_LUN_WILDCARD) {
3837 cts->valid |= CCB_TRANS_DISC_VALID | CCB_TRANS_TQ_VALID;
3838 if (dval & DP_DISC_ENABLE) {
3839 cts->flags |= CCB_TRANS_DISC_ENB;
3841 if (dval & DP_TQING_ENABLE) {
3842 cts->flags |= CCB_TRANS_TAG_ENB;
3850 spi->sync_offset = oval;
3851 spi->sync_period = pval;
3852 spi->valid |= CTS_SPI_VALID_SYNC_OFFSET;
3853 spi->valid |= CTS_SPI_VALID_SYNC_RATE;
3854 spi->valid |= CTS_SPI_VALID_BUS_WIDTH;
3855 if (dval & DP_WIDE) {
3856 spi->bus_width = MSG_EXT_WDTR_BUS_16_BIT;
3858 spi->bus_width = MSG_EXT_WDTR_BUS_8_BIT;
3860 if (cts->ccb_h.target_lun != CAM_LUN_WILDCARD) {
3861 scsi->valid = CTS_SCSI_VALID_TQ;
3862 if (dval & DP_TQING_ENABLE) {
3863 scsi->flags |= CTS_SCSI_FLAGS_TAG_ENB;
3865 spi->valid |= CTS_SPI_VALID_DISC;
3866 if (dval & DP_DISC_ENABLE) {
3867 spi->flags |= CTS_SPI_FLAGS_DISC_ENB;
3871 mpt_lprt(mpt, MPT_PRT_NEGOTIATION,
3872 "mpt_get_spi_settings[%d]: %s flags 0x%x per 0x%x off=%d\n", tgt,
3873 IS_CURRENT_SETTINGS(cts)? "ACTIVE" : "NVRAM ", dval, pval, oval);
3878 mpt_setwidth(struct mpt_softc *mpt, int tgt, int onoff)
3880 PTR_CONFIG_PAGE_SCSI_DEVICE_1 ptr;
3882 ptr = &mpt->mpt_dev_page1[tgt];
3884 ptr->RequestedParameters |= MPI_SCSIDEVPAGE1_RP_WIDE;
3886 ptr->RequestedParameters &= ~MPI_SCSIDEVPAGE1_RP_WIDE;
3891 mpt_setsync(struct mpt_softc *mpt, int tgt, int period, int offset)
3893 PTR_CONFIG_PAGE_SCSI_DEVICE_1 ptr;
3895 ptr = &mpt->mpt_dev_page1[tgt];
3896 ptr->RequestedParameters &= ~MPI_SCSIDEVPAGE1_RP_MIN_SYNC_PERIOD_MASK;
3897 ptr->RequestedParameters &= ~MPI_SCSIDEVPAGE1_RP_MAX_SYNC_OFFSET_MASK;
3898 ptr->RequestedParameters &= ~MPI_SCSIDEVPAGE1_RP_DT;
3899 ptr->RequestedParameters &= ~MPI_SCSIDEVPAGE1_RP_QAS;
3900 ptr->RequestedParameters &= ~MPI_SCSIDEVPAGE1_RP_IU;
3904 ptr->RequestedParameters |=
3905 period << MPI_SCSIDEVPAGE1_RP_SHIFT_MIN_SYNC_PERIOD;
3906 ptr->RequestedParameters |=
3907 offset << MPI_SCSIDEVPAGE1_RP_SHIFT_MAX_SYNC_OFFSET;
3909 ptr->RequestedParameters |= MPI_SCSIDEVPAGE1_RP_DT;
3912 ptr->RequestedParameters |= MPI_SCSIDEVPAGE1_RP_QAS;
3913 ptr->RequestedParameters |= MPI_SCSIDEVPAGE1_RP_IU;
3918 mpt_update_spi_config(struct mpt_softc *mpt, int tgt)
3920 CONFIG_PAGE_SCSI_DEVICE_1 tmp;
3923 mpt_lprt(mpt, MPT_PRT_NEGOTIATION,
3924 "mpt_update_spi_config[%d].page1: Requested Params 0x%08x\n",
3925 tgt, mpt->mpt_dev_page1[tgt].RequestedParameters);
3926 tmp = mpt->mpt_dev_page1[tgt];
3927 host2mpt_config_page_scsi_device_1(&tmp);
3928 rv = mpt_write_cur_cfg_page(mpt, tgt,
3929 &tmp.Header, sizeof(tmp), FALSE, 5000);
3931 mpt_prt(mpt, "mpt_update_spi_config: write cur page failed\n");
3938 mpt_calc_geometry(struct ccb_calc_geometry *ccg, int extended)
3940 #if __FreeBSD_version >= 500000
3941 cam_calc_geometry(ccg, extended);
3944 uint32_t secs_per_cylinder;
3946 if (ccg->block_size == 0) {
3947 ccg->ccb_h.status = CAM_REQ_INVALID;
3950 size_mb = ccg->volume_size / ((1024L * 1024L) / ccg->block_size);
3951 if (size_mb > 1024 && extended) {
3953 ccg->secs_per_track = 63;
3956 ccg->secs_per_track = 32;
3958 secs_per_cylinder = ccg->heads * ccg->secs_per_track;
3959 ccg->cylinders = ccg->volume_size / secs_per_cylinder;
3960 ccg->ccb_h.status = CAM_REQ_CMP;
3964 /****************************** Timeout Recovery ******************************/
3966 mpt_spawn_recovery_thread(struct mpt_softc *mpt)
3970 error = mpt_kthread_create(mpt_recovery_thread, mpt,
3971 &mpt->recovery_thread, /*flags*/0,
3972 /*altstack*/0, "mpt_recovery%d", mpt->unit);
3977 mpt_terminate_recovery_thread(struct mpt_softc *mpt)
3979 if (mpt->recovery_thread == NULL) {
3982 mpt->shutdwn_recovery = 1;
3985 * Sleep on a slightly different location
3986 * for this interlock just for added safety.
3988 mpt_sleep(mpt, &mpt->recovery_thread, PUSER, "thtrm", 0);
3992 mpt_recovery_thread(void *arg)
3994 struct mpt_softc *mpt;
3996 mpt = (struct mpt_softc *)arg;
3999 if (TAILQ_EMPTY(&mpt->request_timeout_list) != 0) {
4000 if (mpt->shutdwn_recovery == 0) {
4001 mpt_sleep(mpt, mpt, PUSER, "idle", 0);
4004 if (mpt->shutdwn_recovery != 0) {
4007 mpt_recover_commands(mpt);
4009 mpt->recovery_thread = NULL;
4010 wakeup(&mpt->recovery_thread);
4012 mpt_kthread_exit(0);
4016 mpt_scsi_send_tmf(struct mpt_softc *mpt, u_int type, u_int flags,
4017 u_int channel, u_int target, u_int lun, u_int abort_ctx, int sleep_ok)
4019 MSG_SCSI_TASK_MGMT *tmf_req;
4023 * Wait for any current TMF request to complete.
4024 * We're only allowed to issue one TMF at a time.
4026 error = mpt_wait_req(mpt, mpt->tmf_req, REQ_STATE_FREE, REQ_STATE_FREE,
4027 sleep_ok, MPT_TMF_MAX_TIMEOUT);
4029 mpt_reset(mpt, TRUE);
4033 mpt_assign_serno(mpt, mpt->tmf_req);
4034 mpt->tmf_req->state = REQ_STATE_ALLOCATED|REQ_STATE_QUEUED;
4036 tmf_req = (MSG_SCSI_TASK_MGMT *)mpt->tmf_req->req_vbuf;
4037 memset(tmf_req, 0, sizeof(*tmf_req));
4038 tmf_req->TargetID = target;
4039 tmf_req->Bus = channel;
4040 tmf_req->ChainOffset = 0;
4041 tmf_req->Function = MPI_FUNCTION_SCSI_TASK_MGMT;
4042 tmf_req->Reserved = 0;
4043 tmf_req->TaskType = type;
4044 tmf_req->Reserved1 = 0;
4045 tmf_req->MsgFlags = flags;
4046 tmf_req->MsgContext =
4047 htole32(mpt->tmf_req->index | scsi_tmf_handler_id);
4048 memset(&tmf_req->LUN, 0,
4049 sizeof(tmf_req->LUN) + sizeof(tmf_req->Reserved2));
4051 tmf_req->LUN[0] = 0x40 | ((lun >> 8) & 0x3f);
4052 tmf_req->LUN[1] = lun & 0xff;
4054 tmf_req->LUN[1] = lun;
4056 tmf_req->TaskMsgContext = abort_ctx;
4058 mpt_lprt(mpt, MPT_PRT_DEBUG,
4059 "Issuing TMF %p:%u with MsgContext of 0x%x\n", mpt->tmf_req,
4060 mpt->tmf_req->serno, tmf_req->MsgContext);
4061 if (mpt->verbose > MPT_PRT_DEBUG) {
4062 mpt_print_request(tmf_req);
4065 KASSERT(mpt_req_on_pending_list(mpt, mpt->tmf_req) == 0,
4066 ("mpt_scsi_send_tmf: tmf_req already on pending list"));
4067 TAILQ_INSERT_HEAD(&mpt->request_pending_list, mpt->tmf_req, links);
4068 error = mpt_send_handshake_cmd(mpt, sizeof(*tmf_req), tmf_req);
4069 if (error != MPT_OK) {
4070 TAILQ_REMOVE(&mpt->request_pending_list, mpt->tmf_req, links);
4071 mpt->tmf_req->state = REQ_STATE_FREE;
4072 mpt_reset(mpt, TRUE);
4078 * When a command times out, it is placed on the requeust_timeout_list
4079 * and we wake our recovery thread. The MPT-Fusion architecture supports
4080 * only a single TMF operation at a time, so we serially abort/bdr, etc,
4081 * the timedout transactions. The next TMF is issued either by the
4082 * completion handler of the current TMF waking our recovery thread,
4083 * or the TMF timeout handler causing a hard reset sequence.
4086 mpt_recover_commands(struct mpt_softc *mpt)
4092 if (TAILQ_EMPTY(&mpt->request_timeout_list) != 0) {
4094 * No work to do- leave.
4096 mpt_prt(mpt, "mpt_recover_commands: no requests.\n");
4101 * Flush any commands whose completion coincides with their timeout.
4105 if (TAILQ_EMPTY(&mpt->request_timeout_list) != 0) {
4107 * The timedout commands have already
4108 * completed. This typically means
4109 * that either the timeout value was on
4110 * the hairy edge of what the device
4111 * requires or - more likely - interrupts
4112 * are not happening.
4114 mpt_prt(mpt, "Timedout requests already complete. "
4115 "Interrupts may not be functioning.\n");
4116 mpt_enable_ints(mpt);
4121 * We have no visibility into the current state of the
4122 * controller, so attempt to abort the commands in the
4123 * order they timed-out. For initiator commands, we
4124 * depend on the reply handler pulling requests off
4127 while ((req = TAILQ_FIRST(&mpt->request_timeout_list)) != NULL) {
4130 MSG_REQUEST_HEADER *hdrp = req->req_vbuf;
4132 mpt_prt(mpt, "attempting to abort req %p:%u function %x\n",
4133 req, req->serno, hdrp->Function);
4136 mpt_prt(mpt, "null ccb in timed out request. "
4137 "Resetting Controller.\n");
4138 mpt_reset(mpt, TRUE);
4141 mpt_set_ccb_status(ccb, CAM_CMD_TIMEOUT);
4144 * Check to see if this is not an initiator command and
4145 * deal with it differently if it is.
4147 switch (hdrp->Function) {
4148 case MPI_FUNCTION_SCSI_IO_REQUEST:
4149 case MPI_FUNCTION_RAID_SCSI_IO_PASSTHROUGH:
4153 * XXX: FIX ME: need to abort target assists...
4155 mpt_prt(mpt, "just putting it back on the pend q\n");
4156 TAILQ_REMOVE(&mpt->request_timeout_list, req, links);
4157 TAILQ_INSERT_HEAD(&mpt->request_pending_list, req,
4162 error = mpt_scsi_send_tmf(mpt,
4163 MPI_SCSITASKMGMT_TASKTYPE_ABORT_TASK,
4164 0, 0, ccb->ccb_h.target_id, ccb->ccb_h.target_lun,
4165 htole32(req->index | scsi_io_handler_id), TRUE);
4169 * mpt_scsi_send_tmf hard resets on failure, so no
4170 * need to do so here. Our queue should be emptied
4171 * by the hard reset.
4176 error = mpt_wait_req(mpt, mpt->tmf_req, REQ_STATE_DONE,
4177 REQ_STATE_DONE, TRUE, 500);
4179 status = le16toh(mpt->tmf_req->IOCStatus);
4180 response = mpt->tmf_req->ResponseCode;
4181 mpt->tmf_req->state = REQ_STATE_FREE;
4185 * If we've errored out,, reset the controller.
4187 mpt_prt(mpt, "mpt_recover_commands: abort timed-out. "
4188 "Resetting controller\n");
4189 mpt_reset(mpt, TRUE);
4193 if ((status & MPI_IOCSTATUS_MASK) != MPI_IOCSTATUS_SUCCESS) {
4194 mpt_prt(mpt, "mpt_recover_commands: IOC Status 0x%x. "
4195 "Resetting controller.\n", status);
4196 mpt_reset(mpt, TRUE);
4200 if (response != MPI_SCSITASKMGMT_RSP_TM_SUCCEEDED &&
4201 response != MPI_SCSITASKMGMT_RSP_TM_COMPLETE) {
4202 mpt_prt(mpt, "mpt_recover_commands: TMF Response 0x%x. "
4203 "Resetting controller.\n", response);
4204 mpt_reset(mpt, TRUE);
4207 mpt_prt(mpt, "abort of req %p:%u completed\n", req, req->serno);
4211 /************************ Target Mode Support ****************************/
4213 mpt_fc_post_els(struct mpt_softc *mpt, request_t *req, int ioindex)
4215 MSG_LINK_SERVICE_BUFFER_POST_REQUEST *fc;
4216 PTR_SGE_TRANSACTION32 tep;
4217 PTR_SGE_SIMPLE32 se;
4221 paddr = req->req_pbuf;
4222 paddr += MPT_RQSL(mpt);
4225 memset(fc, 0, MPT_REQUEST_AREA);
4226 fc->BufferCount = 1;
4227 fc->Function = MPI_FUNCTION_FC_LINK_SRVC_BUF_POST;
4228 fc->MsgContext = htole32(req->index | fc_els_handler_id);
4231 * Okay, set up ELS buffer pointers. ELS buffer pointers
4232 * consist of a TE SGL element (with details length of zero)
4233 * followe by a SIMPLE SGL element which holds the address
4237 tep = (PTR_SGE_TRANSACTION32) &fc->SGL;
4239 tep->ContextSize = 4;
4241 tep->TransactionContext[0] = htole32(ioindex);
4243 se = (PTR_SGE_SIMPLE32) &tep->TransactionDetails[0];
4245 MPI_SGE_FLAGS_HOST_TO_IOC |
4246 MPI_SGE_FLAGS_SIMPLE_ELEMENT |
4247 MPI_SGE_FLAGS_LAST_ELEMENT |
4248 MPI_SGE_FLAGS_END_OF_LIST |
4249 MPI_SGE_FLAGS_END_OF_BUFFER;
4250 fl <<= MPI_SGE_FLAGS_SHIFT;
4251 fl |= (MPT_NRFM(mpt) - MPT_RQSL(mpt));
4252 se->FlagsLength = htole32(fl);
4253 se->Address = htole32((uint32_t) paddr);
4254 mpt_lprt(mpt, MPT_PRT_DEBUG,
4255 "add ELS index %d ioindex %d for %p:%u\n",
4256 req->index, ioindex, req, req->serno);
4257 KASSERT(((req->state & REQ_STATE_LOCKED) != 0),
4258 ("mpt_fc_post_els: request not locked"));
4259 mpt_send_cmd(mpt, req);
4263 mpt_post_target_command(struct mpt_softc *mpt, request_t *req, int ioindex)
4265 PTR_MSG_TARGET_CMD_BUFFER_POST_REQUEST fc;
4266 PTR_CMD_BUFFER_DESCRIPTOR cb;
4269 paddr = req->req_pbuf;
4270 paddr += MPT_RQSL(mpt);
4271 memset(req->req_vbuf, 0, MPT_REQUEST_AREA);
4272 MPT_TGT_STATE(mpt, req)->state = TGT_STATE_LOADING;
4275 fc->BufferCount = 1;
4276 fc->Function = MPI_FUNCTION_TARGET_CMD_BUFFER_POST;
4277 fc->MsgContext = htole32(req->index | mpt->scsi_tgt_handler_id);
4279 cb = &fc->Buffer[0];
4280 cb->IoIndex = htole16(ioindex);
4281 cb->u.PhysicalAddress32 = htole32((U32) paddr);
4283 mpt_check_doorbell(mpt);
4284 mpt_send_cmd(mpt, req);
4288 mpt_add_els_buffers(struct mpt_softc *mpt)
4292 if (mpt->is_fc == 0) {
4296 if (mpt->els_cmds_allocated) {
4300 mpt->els_cmd_ptrs = malloc(MPT_MAX_ELS * sizeof (request_t *),
4301 M_DEVBUF, M_NOWAIT | M_ZERO);
4303 if (mpt->els_cmd_ptrs == NULL) {
4308 * Feed the chip some ELS buffer resources
4310 for (i = 0; i < MPT_MAX_ELS; i++) {
4311 request_t *req = mpt_get_request(mpt, FALSE);
4315 req->state |= REQ_STATE_LOCKED;
4316 mpt->els_cmd_ptrs[i] = req;
4317 mpt_fc_post_els(mpt, req, i);
4321 mpt_prt(mpt, "unable to add ELS buffer resources\n");
4322 free(mpt->els_cmd_ptrs, M_DEVBUF);
4323 mpt->els_cmd_ptrs = NULL;
4326 if (i != MPT_MAX_ELS) {
4327 mpt_lprt(mpt, MPT_PRT_INFO,
4328 "only added %d of %d ELS buffers\n", i, MPT_MAX_ELS);
4330 mpt->els_cmds_allocated = i;
4335 mpt_add_target_commands(struct mpt_softc *mpt)
4339 if (mpt->tgt_cmd_ptrs) {
4343 max = MPT_MAX_REQUESTS(mpt) >> 1;
4344 if (max > mpt->mpt_max_tgtcmds) {
4345 max = mpt->mpt_max_tgtcmds;
4348 malloc(max * sizeof (request_t *), M_DEVBUF, M_NOWAIT | M_ZERO);
4349 if (mpt->tgt_cmd_ptrs == NULL) {
4351 "mpt_add_target_commands: could not allocate cmd ptrs\n");
4355 for (i = 0; i < max; i++) {
4358 req = mpt_get_request(mpt, FALSE);
4362 req->state |= REQ_STATE_LOCKED;
4363 mpt->tgt_cmd_ptrs[i] = req;
4364 mpt_post_target_command(mpt, req, i);
4369 mpt_lprt(mpt, MPT_PRT_ERROR, "could not add any target bufs\n");
4370 free(mpt->tgt_cmd_ptrs, M_DEVBUF);
4371 mpt->tgt_cmd_ptrs = NULL;
4375 mpt->tgt_cmds_allocated = i;
4378 mpt_lprt(mpt, MPT_PRT_INFO,
4379 "added %d of %d target bufs\n", i, max);
4385 mpt_enable_lun(struct mpt_softc *mpt, target_id_t tgt, lun_id_t lun)
4387 if (tgt == CAM_TARGET_WILDCARD && lun == CAM_LUN_WILDCARD) {
4389 } else if (lun >= MPT_MAX_LUNS) {
4391 } else if (tgt != CAM_TARGET_WILDCARD && tgt != 0) {
4394 if (mpt->tenabled == 0) {
4396 (void) mpt_fc_reset_link(mpt, 0);
4400 if (lun == CAM_LUN_WILDCARD) {
4401 mpt->trt_wildcard.enabled = 1;
4403 mpt->trt[lun].enabled = 1;
4409 mpt_disable_lun(struct mpt_softc *mpt, target_id_t tgt, lun_id_t lun)
4412 if (tgt == CAM_TARGET_WILDCARD && lun == CAM_LUN_WILDCARD) {
4414 } else if (lun >= MPT_MAX_LUNS) {
4416 } else if (tgt != CAM_TARGET_WILDCARD && tgt != 0) {
4419 if (lun == CAM_LUN_WILDCARD) {
4420 mpt->trt_wildcard.enabled = 0;
4422 mpt->trt[lun].enabled = 0;
4424 for (i = 0; i < MPT_MAX_LUNS; i++) {
4425 if (mpt->trt[lun].enabled) {
4429 if (i == MPT_MAX_LUNS && mpt->twildcard == 0) {
4431 (void) mpt_fc_reset_link(mpt, 0);
4439 * Called with MPT lock held
4442 mpt_target_start_io(struct mpt_softc *mpt, union ccb *ccb)
4444 struct ccb_scsiio *csio = &ccb->csio;
4445 request_t *cmd_req = MPT_TAG_2_REQ(mpt, csio->tag_id);
4446 mpt_tgt_state_t *tgt = MPT_TGT_STATE(mpt, cmd_req);
4448 switch (tgt->state) {
4449 case TGT_STATE_IN_CAM:
4451 case TGT_STATE_MOVING_DATA:
4452 mpt_set_ccb_status(ccb, CAM_REQUEUE_REQ);
4453 xpt_freeze_simq(mpt->sim, 1);
4454 ccb->ccb_h.status &= ~CAM_SIM_QUEUED;
4455 tgt->ccb->ccb_h.status |= CAM_RELEASE_SIMQ;
4456 MPTLOCK_2_CAMLOCK(mpt);
4458 CAMLOCK_2_MPTLOCK(mpt);
4461 mpt_prt(mpt, "ccb %p flags 0x%x tag 0x%08x had bad request "
4462 "starting I/O\n", ccb, csio->ccb_h.flags, csio->tag_id);
4463 mpt_tgt_dump_req_state(mpt, cmd_req);
4464 mpt_set_ccb_status(ccb, CAM_REQ_CMP_ERR);
4465 MPTLOCK_2_CAMLOCK(mpt);
4467 CAMLOCK_2_MPTLOCK(mpt);
4471 if (csio->dxfer_len) {
4472 bus_dmamap_callback_t *cb;
4473 PTR_MSG_TARGET_ASSIST_REQUEST ta;
4476 KASSERT((ccb->ccb_h.flags & CAM_DIR_MASK) != CAM_DIR_NONE,
4477 ("dxfer_len %u but direction is NONE\n", csio->dxfer_len));
4479 if ((req = mpt_get_request(mpt, FALSE)) == NULL) {
4480 if (mpt->outofbeer == 0) {
4482 xpt_freeze_simq(mpt->sim, 1);
4483 mpt_lprt(mpt, MPT_PRT_DEBUG, "FREEZEQ\n");
4485 ccb->ccb_h.status &= ~CAM_SIM_QUEUED;
4486 mpt_set_ccb_status(ccb, CAM_REQUEUE_REQ);
4487 MPTLOCK_2_CAMLOCK(mpt);
4489 CAMLOCK_2_MPTLOCK(mpt);
4492 ccb->ccb_h.status = CAM_SIM_QUEUED | CAM_REQ_INPROG;
4493 if (sizeof (bus_addr_t) > 4) {
4494 cb = mpt_execute_req_a64;
4496 cb = mpt_execute_req;
4500 ccb->ccb_h.ccb_req_ptr = req;
4503 * Record the currently active ccb and the
4504 * request for it in our target state area.
4509 memset(req->req_vbuf, 0, MPT_RQSL(mpt));
4513 PTR_MPI_TARGET_SSP_CMD_BUFFER ssp =
4515 ta->QueueTag = ssp->InitiatorTag;
4516 } else if (mpt->is_spi) {
4517 PTR_MPI_TARGET_SCSI_SPI_CMD_BUFFER sp =
4519 ta->QueueTag = sp->Tag;
4521 ta->Function = MPI_FUNCTION_TARGET_ASSIST;
4522 ta->MsgContext = htole32(req->index | mpt->scsi_tgt_handler_id);
4523 ta->ReplyWord = htole32(tgt->reply_desc);
4524 if (csio->ccb_h.target_lun > 256) {
4526 0x40 | ((csio->ccb_h.target_lun >> 8) & 0x3f);
4527 ta->LUN[1] = csio->ccb_h.target_lun & 0xff;
4529 ta->LUN[1] = csio->ccb_h.target_lun;
4532 ta->RelativeOffset = tgt->bytes_xfered;
4533 ta->DataLength = ccb->csio.dxfer_len;
4534 if (ta->DataLength > tgt->resid) {
4535 ta->DataLength = tgt->resid;
4539 * XXX Should be done after data transfer completes?
4541 tgt->resid -= csio->dxfer_len;
4542 tgt->bytes_xfered += csio->dxfer_len;
4544 if ((ccb->ccb_h.flags & CAM_DIR_MASK) == CAM_DIR_IN) {
4545 ta->TargetAssistFlags |=
4546 TARGET_ASSIST_FLAGS_DATA_DIRECTION;
4549 #ifdef WE_TRUST_AUTO_GOOD_STATUS
4550 if ((ccb->ccb_h.flags & CAM_SEND_STATUS) &&
4551 csio->scsi_status == SCSI_STATUS_OK && tgt->resid == 0) {
4552 ta->TargetAssistFlags |=
4553 TARGET_ASSIST_FLAGS_AUTO_STATUS;
4556 tgt->state = TGT_STATE_SETTING_UP_FOR_DATA;
4558 mpt_lprt(mpt, MPT_PRT_DEBUG,
4559 "DATA_CCB %p tag %x %u bytes %u resid flg %x req %p:%u "
4560 "nxtstate=%d\n", csio, csio->tag_id, csio->dxfer_len,
4561 tgt->resid, ccb->ccb_h.flags, req, req->serno, tgt->state);
4563 MPTLOCK_2_CAMLOCK(mpt);
4564 if ((ccb->ccb_h.flags & CAM_SCATTER_VALID) == 0) {
4565 if ((ccb->ccb_h.flags & CAM_DATA_PHYS) == 0) {
4567 int s = splsoftvm();
4568 error = bus_dmamap_load(mpt->buffer_dmat,
4569 req->dmap, csio->data_ptr, csio->dxfer_len,
4572 if (error == EINPROGRESS) {
4573 xpt_freeze_simq(mpt->sim, 1);
4574 ccb->ccb_h.status |= CAM_RELEASE_SIMQ;
4578 * We have been given a pointer to single
4581 struct bus_dma_segment seg;
4582 seg.ds_addr = (bus_addr_t)
4583 (vm_offset_t)csio->data_ptr;
4584 seg.ds_len = csio->dxfer_len;
4585 (*cb)(req, &seg, 1, 0);
4589 * We have been given a list of addresses.
4590 * This case could be easily supported but they are not
4591 * currently generated by the CAM subsystem so there
4592 * is no point in wasting the time right now.
4594 struct bus_dma_segment *sgs;
4595 if ((ccb->ccb_h.flags & CAM_SG_LIST_PHYS) == 0) {
4596 (*cb)(req, NULL, 0, EFAULT);
4598 /* Just use the segments provided */
4599 sgs = (struct bus_dma_segment *)csio->data_ptr;
4600 (*cb)(req, sgs, csio->sglist_cnt, 0);
4603 CAMLOCK_2_MPTLOCK(mpt);
4605 uint8_t *sp = NULL, sense[MPT_SENSE_SIZE];
4608 * XXX: I don't know why this seems to happen, but
4609 * XXX: completing the CCB seems to make things happy.
4610 * XXX: This seems to happen if the initiator requests
4611 * XXX: enough data that we have to do multiple CTIOs.
4613 if ((ccb->ccb_h.flags & CAM_SEND_STATUS) == 0) {
4614 mpt_lprt(mpt, MPT_PRT_DEBUG,
4615 "Meaningless STATUS CCB (%p): flags %x status %x "
4616 "resid %d bytes_xfered %u\n", ccb, ccb->ccb_h.flags,
4617 ccb->ccb_h.status, tgt->resid, tgt->bytes_xfered);
4618 mpt_set_ccb_status(ccb, CAM_REQ_CMP);
4619 ccb->ccb_h.status &= ~CAM_SIM_QUEUED;
4620 MPTLOCK_2_CAMLOCK(mpt);
4622 CAMLOCK_2_MPTLOCK(mpt);
4625 if (ccb->ccb_h.flags & CAM_SEND_SENSE) {
4627 memcpy(sp, &csio->sense_data,
4628 min(csio->sense_len, MPT_SENSE_SIZE));
4630 mpt_scsi_tgt_status(mpt, ccb, cmd_req, csio->scsi_status, sp);
4635 mpt_scsi_tgt_local(struct mpt_softc *mpt, request_t *cmd_req,
4636 uint32_t lun, int send, uint8_t *data, size_t length)
4638 mpt_tgt_state_t *tgt;
4639 PTR_MSG_TARGET_ASSIST_REQUEST ta;
4647 * We enter with resid set to the data load for the command.
4649 tgt = MPT_TGT_STATE(mpt, cmd_req);
4650 if (length == 0 || tgt->resid == 0) {
4652 mpt_scsi_tgt_status(mpt, NULL, cmd_req, 0, NULL);
4656 if ((req = mpt_get_request(mpt, FALSE)) == NULL) {
4657 mpt_prt(mpt, "out of resources- dropping local response\n");
4663 memset(req->req_vbuf, 0, MPT_RQSL(mpt));
4667 PTR_MPI_TARGET_SSP_CMD_BUFFER ssp = cmd_req->req_vbuf;
4668 ta->QueueTag = ssp->InitiatorTag;
4669 } else if (mpt->is_spi) {
4670 PTR_MPI_TARGET_SCSI_SPI_CMD_BUFFER sp = cmd_req->req_vbuf;
4671 ta->QueueTag = sp->Tag;
4673 ta->Function = MPI_FUNCTION_TARGET_ASSIST;
4674 ta->MsgContext = htole32(req->index | mpt->scsi_tgt_handler_id);
4675 ta->ReplyWord = htole32(tgt->reply_desc);
4677 ta->LUN[0] = 0x40 | ((lun >> 8) & 0x3f);
4678 ta->LUN[1] = lun & 0xff;
4682 ta->RelativeOffset = 0;
4683 ta->DataLength = length;
4685 dptr = req->req_vbuf;
4686 dptr += MPT_RQSL(mpt);
4687 pptr = req->req_pbuf;
4688 pptr += MPT_RQSL(mpt);
4689 memcpy(dptr, data, min(length, MPT_RQSL(mpt)));
4691 se = (SGE_SIMPLE32 *) &ta->SGL[0];
4692 memset(se, 0,sizeof (*se));
4694 flags = MPI_SGE_FLAGS_SIMPLE_ELEMENT;
4696 ta->TargetAssistFlags |= TARGET_ASSIST_FLAGS_DATA_DIRECTION;
4697 flags |= MPI_SGE_FLAGS_HOST_TO_IOC;
4700 MPI_pSGE_SET_LENGTH(se, length);
4701 flags |= MPI_SGE_FLAGS_LAST_ELEMENT;
4702 flags |= MPI_SGE_FLAGS_END_OF_LIST | MPI_SGE_FLAGS_END_OF_BUFFER;
4703 MPI_pSGE_SET_FLAGS(se, flags);
4707 tgt->resid -= length;
4708 tgt->bytes_xfered = length;
4709 #ifdef WE_TRUST_AUTO_GOOD_STATUS
4710 tgt->state = TGT_STATE_MOVING_DATA_AND_STATUS;
4712 tgt->state = TGT_STATE_MOVING_DATA;
4714 mpt_send_cmd(mpt, req);
4718 * Abort queued up CCBs
4721 mpt_abort_target_ccb(struct mpt_softc *mpt, union ccb *ccb)
4723 struct mpt_hdr_stailq *lp;
4724 struct ccb_hdr *srch;
4726 union ccb *accb = ccb->cab.abort_ccb;
4727 tgt_resource_t *trtp;
4729 mpt_lprt(mpt, MPT_PRT_DEBUG, "aborting ccb %p\n", accb);
4731 if (ccb->ccb_h.target_lun == CAM_LUN_WILDCARD) {
4732 trtp = &mpt->trt_wildcard;
4734 trtp = &mpt->trt[ccb->ccb_h.target_lun];
4737 if (accb->ccb_h.func_code == XPT_ACCEPT_TARGET_IO) {
4739 } else if (accb->ccb_h.func_code == XPT_IMMED_NOTIFY) {
4742 return (CAM_REQ_INVALID);
4745 STAILQ_FOREACH(srch, lp, sim_links.stqe) {
4746 if (srch == &accb->ccb_h) {
4748 STAILQ_REMOVE(lp, srch, ccb_hdr, sim_links.stqe);
4753 accb->ccb_h.status = CAM_REQ_ABORTED;
4755 return (CAM_REQ_CMP);
4757 mpt_prt(mpt, "mpt_abort_tgt_ccb: CCB %p not found\n", ccb);
4758 return (CAM_PATH_INVALID);
4762 * Ask the MPT to abort the current target command
4765 mpt_abort_target_cmd(struct mpt_softc *mpt, request_t *cmd_req)
4769 PTR_MSG_TARGET_MODE_ABORT abtp;
4771 req = mpt_get_request(mpt, FALSE);
4775 abtp = req->req_vbuf;
4776 memset(abtp, 0, sizeof (*abtp));
4778 abtp->MsgContext = htole32(req->index | mpt->scsi_tgt_handler_id);
4779 abtp->AbortType = TARGET_MODE_ABORT_TYPE_EXACT_IO;
4780 abtp->Function = MPI_FUNCTION_TARGET_MODE_ABORT;
4781 abtp->ReplyWord = htole32(MPT_TGT_STATE(mpt, cmd_req)->reply_desc);
4783 if (mpt->is_fc || mpt->is_sas) {
4784 mpt_send_cmd(mpt, req);
4786 error = mpt_send_handshake_cmd(mpt, sizeof(*req), req);
4792 * WE_TRUST_AUTO_GOOD_STATUS- I've found that setting
4793 * TARGET_STATUS_SEND_FLAGS_AUTO_GOOD_STATUS leads the
4794 * FC929 to set bogus FC_RSP fields (nonzero residuals
4795 * but w/o RESID fields set). This causes QLogic initiators
4796 * to think maybe that a frame was lost.
4798 * WE_CAN_USE_AUTO_REPOST- we can't use AUTO_REPOST because
4799 * we use allocated requests to do TARGET_ASSIST and we
4800 * need to know when to release them.
4804 mpt_scsi_tgt_status(struct mpt_softc *mpt, union ccb *ccb, request_t *cmd_req,
4805 uint8_t status, uint8_t const *sense_data)
4808 mpt_tgt_state_t *tgt;
4809 PTR_MSG_TARGET_STATUS_SEND_REQUEST tp;
4815 cmd_vbuf = cmd_req->req_vbuf;
4816 cmd_vbuf += MPT_RQSL(mpt);
4817 tgt = MPT_TGT_STATE(mpt, cmd_req);
4819 if ((req = mpt_get_request(mpt, FALSE)) == NULL) {
4820 if (mpt->outofbeer == 0) {
4822 xpt_freeze_simq(mpt->sim, 1);
4823 mpt_lprt(mpt, MPT_PRT_DEBUG, "FREEZEQ\n");
4826 ccb->ccb_h.status &= ~CAM_SIM_QUEUED;
4827 mpt_set_ccb_status(ccb, CAM_REQUEUE_REQ);
4828 MPTLOCK_2_CAMLOCK(mpt);
4830 CAMLOCK_2_MPTLOCK(mpt);
4833 "could not allocate status request- dropping\n");
4839 ccb->ccb_h.ccb_mpt_ptr = mpt;
4840 ccb->ccb_h.ccb_req_ptr = req;
4844 * Record the currently active ccb, if any, and the
4845 * request for it in our target state area.
4849 tgt->state = TGT_STATE_SENDING_STATUS;
4852 paddr = req->req_pbuf;
4853 paddr += MPT_RQSL(mpt);
4855 memset(tp, 0, sizeof (*tp));
4856 tp->Function = MPI_FUNCTION_TARGET_STATUS_SEND;
4858 PTR_MPI_TARGET_FCP_CMD_BUFFER fc =
4859 (PTR_MPI_TARGET_FCP_CMD_BUFFER) cmd_vbuf;
4863 sts_vbuf = req->req_vbuf;
4864 sts_vbuf += MPT_RQSL(mpt);
4865 rsp = (uint32_t *) sts_vbuf;
4866 memcpy(tp->LUN, fc->FcpLun, sizeof (tp->LUN));
4869 * The MPI_TARGET_FCP_RSP_BUFFER define is unfortunate.
4870 * It has to be big-endian in memory and is organized
4871 * in 32 bit words, which are much easier to deal with
4872 * as words which are swizzled as needed.
4874 * All we're filling here is the FC_RSP payload.
4875 * We may just have the chip synthesize it if
4876 * we have no residual and an OK status.
4879 memset(rsp, 0, sizeof (MPI_TARGET_FCP_RSP_BUFFER));
4883 rsp[2] |= 0x800; /* XXXX NEED MNEMONIC!!!! */
4884 rsp[3] = htobe32(tgt->resid);
4885 #ifdef WE_TRUST_AUTO_GOOD_STATUS
4886 resplen = sizeof (MPI_TARGET_FCP_RSP_BUFFER);
4889 if (status == SCSI_STATUS_CHECK_COND) {
4892 rsp[2] |= 0x200; /* XXXX NEED MNEMONIC!!!! */
4893 rsp[4] = htobe32(MPT_SENSE_SIZE);
4895 memcpy(&rsp[8], sense_data, MPT_SENSE_SIZE);
4897 mpt_prt(mpt, "mpt_scsi_tgt_status: CHECK CONDI"
4898 "TION but no sense data?\n");
4899 memset(&rsp, 0, MPT_SENSE_SIZE);
4901 for (i = 8; i < (8 + (MPT_SENSE_SIZE >> 2)); i++) {
4902 rsp[i] = htobe32(rsp[i]);
4904 #ifdef WE_TRUST_AUTO_GOOD_STATUS
4905 resplen = sizeof (MPI_TARGET_FCP_RSP_BUFFER);
4908 #ifndef WE_TRUST_AUTO_GOOD_STATUS
4909 resplen = sizeof (MPI_TARGET_FCP_RSP_BUFFER);
4911 rsp[2] = htobe32(rsp[2]);
4912 } else if (mpt->is_sas) {
4913 PTR_MPI_TARGET_SSP_CMD_BUFFER ssp =
4914 (PTR_MPI_TARGET_SSP_CMD_BUFFER) cmd_vbuf;
4915 memcpy(tp->LUN, ssp->LogicalUnitNumber, sizeof (tp->LUN));
4917 PTR_MPI_TARGET_SCSI_SPI_CMD_BUFFER sp =
4918 (PTR_MPI_TARGET_SCSI_SPI_CMD_BUFFER) cmd_vbuf;
4919 tp->StatusCode = status;
4920 tp->QueueTag = htole16(sp->Tag);
4921 memcpy(tp->LUN, sp->LogicalUnitNumber, sizeof (tp->LUN));
4924 tp->ReplyWord = htole32(tgt->reply_desc);
4925 tp->MsgContext = htole32(req->index | mpt->scsi_tgt_handler_id);
4927 #ifdef WE_CAN_USE_AUTO_REPOST
4928 tp->MsgFlags = TARGET_STATUS_SEND_FLAGS_REPOST_CMD_BUFFER;
4930 if (status == SCSI_STATUS_OK && resplen == 0) {
4931 tp->MsgFlags |= TARGET_STATUS_SEND_FLAGS_AUTO_GOOD_STATUS;
4933 tp->StatusDataSGE.u.Address32 = htole32((uint32_t) paddr);
4935 MPI_SGE_FLAGS_HOST_TO_IOC |
4936 MPI_SGE_FLAGS_SIMPLE_ELEMENT |
4937 MPI_SGE_FLAGS_LAST_ELEMENT |
4938 MPI_SGE_FLAGS_END_OF_LIST |
4939 MPI_SGE_FLAGS_END_OF_BUFFER;
4940 fl <<= MPI_SGE_FLAGS_SHIFT;
4942 tp->StatusDataSGE.FlagsLength = htole32(fl);
4945 mpt_lprt(mpt, MPT_PRT_DEBUG,
4946 "STATUS_CCB %p (wit%s sense) tag %x req %p:%u resid %u\n",
4947 ccb, sense_data?"h" : "hout", ccb? ccb->csio.tag_id : -1, req,
4948 req->serno, tgt->resid);
4950 ccb->ccb_h.status = CAM_SIM_QUEUED | CAM_REQ_INPROG;
4951 mpt_req_timeout(req, 60 * hz, mpt_timeout, ccb);
4953 mpt_send_cmd(mpt, req);
4957 mpt_scsi_tgt_tsk_mgmt(struct mpt_softc *mpt, request_t *req, mpt_task_mgmt_t fc,
4958 tgt_resource_t *trtp, int init_id)
4960 struct ccb_immed_notify *inot;
4961 mpt_tgt_state_t *tgt;
4963 tgt = MPT_TGT_STATE(mpt, req);
4964 inot = (struct ccb_immed_notify *) STAILQ_FIRST(&trtp->inots);
4966 mpt_lprt(mpt, MPT_PRT_WARN, "no INOTSs- sending back BSY\n");
4967 mpt_scsi_tgt_status(mpt, NULL, req, SCSI_STATUS_BUSY, NULL);
4970 STAILQ_REMOVE_HEAD(&trtp->inots, sim_links.stqe);
4971 mpt_lprt(mpt, MPT_PRT_DEBUG1,
4972 "Get FREE INOT %p lun %d\n", inot, inot->ccb_h.target_lun);
4974 memset(&inot->sense_data, 0, sizeof (inot->sense_data));
4975 inot->sense_len = 0;
4976 memset(inot->message_args, 0, sizeof (inot->message_args));
4977 inot->initiator_id = init_id; /* XXX */
4980 * This is a somewhat grotesque attempt to map from task management
4981 * to old style SCSI messages. God help us all.
4984 case MPT_ABORT_TASK_SET:
4985 inot->message_args[0] = MSG_ABORT_TAG;
4987 case MPT_CLEAR_TASK_SET:
4988 inot->message_args[0] = MSG_CLEAR_TASK_SET;
4990 case MPT_TARGET_RESET:
4991 inot->message_args[0] = MSG_TARGET_RESET;
4994 inot->message_args[0] = MSG_CLEAR_ACA;
4996 case MPT_TERMINATE_TASK:
4997 inot->message_args[0] = MSG_ABORT_TAG;
5000 inot->message_args[0] = MSG_NOOP;
5003 tgt->ccb = (union ccb *) inot;
5004 inot->ccb_h.status = CAM_MESSAGE_RECV|CAM_DEV_QFRZN;
5005 MPTLOCK_2_CAMLOCK(mpt);
5006 xpt_done((union ccb *)inot);
5007 CAMLOCK_2_MPTLOCK(mpt);
5011 mpt_scsi_tgt_atio(struct mpt_softc *mpt, request_t *req, uint32_t reply_desc)
5013 static uint8_t null_iqd[SHORT_INQUIRY_LENGTH] = {
5014 0x7f, 0x00, 0x02, 0x02, 0x20, 0x00, 0x00, 0x32,
5015 'F', 'R', 'E', 'E', 'B', 'S', 'D', ' ',
5016 'L', 'S', 'I', '-', 'L', 'O', 'G', 'I',
5017 'C', ' ', 'N', 'U', 'L', 'D', 'E', 'V',
5020 struct ccb_accept_tio *atiop;
5023 mpt_tgt_state_t *tgt;
5024 tgt_resource_t *trtp = NULL;
5029 mpt_task_mgmt_t fct = MPT_NIL_TMT_VALUE;
5033 * First, DMA sync the received command-
5034 * which is in the *request* * phys area.
5036 * XXX: We could optimize this for a range
5038 bus_dmamap_sync(mpt->request_dmat, mpt->request_dmap,
5039 BUS_DMASYNC_POSTREAD);
5042 * Stash info for the current command where we can get at it later.
5044 vbuf = req->req_vbuf;
5045 vbuf += MPT_RQSL(mpt);
5048 * Get our state pointer set up.
5050 tgt = MPT_TGT_STATE(mpt, req);
5051 if (tgt->state != TGT_STATE_LOADED) {
5052 mpt_tgt_dump_req_state(mpt, req);
5053 panic("bad target state in mpt_scsi_tgt_atio");
5055 memset(tgt, 0, sizeof (mpt_tgt_state_t));
5056 tgt->state = TGT_STATE_IN_CAM;
5057 tgt->reply_desc = reply_desc;
5058 ioindex = GET_IO_INDEX(reply_desc);
5059 if (mpt->verbose >= MPT_PRT_DEBUG) {
5060 mpt_dump_data(mpt, "mpt_scsi_tgt_atio response", vbuf,
5061 max(sizeof (MPI_TARGET_FCP_CMD_BUFFER),
5062 max(sizeof (MPI_TARGET_SSP_CMD_BUFFER),
5063 sizeof (MPI_TARGET_SCSI_SPI_CMD_BUFFER))));
5066 PTR_MPI_TARGET_FCP_CMD_BUFFER fc;
5067 fc = (PTR_MPI_TARGET_FCP_CMD_BUFFER) vbuf;
5068 if (fc->FcpCntl[2]) {
5070 * Task Management Request
5072 switch (fc->FcpCntl[2]) {
5074 fct = MPT_ABORT_TASK_SET;
5077 fct = MPT_CLEAR_TASK_SET;
5080 fct = MPT_TARGET_RESET;
5083 fct = MPT_CLEAR_ACA;
5086 fct = MPT_TERMINATE_TASK;
5089 mpt_prt(mpt, "CORRUPTED TASK MGMT BITS: 0x%x\n",
5091 mpt_scsi_tgt_status(mpt, 0, req,
5096 switch (fc->FcpCntl[1]) {
5098 tag_action = MSG_SIMPLE_Q_TAG;
5101 tag_action = MSG_HEAD_OF_Q_TAG;
5104 tag_action = MSG_ORDERED_Q_TAG;
5108 * Bah. Ignore Untagged Queing and ACA
5110 tag_action = MSG_SIMPLE_Q_TAG;
5114 tgt->resid = be32toh(fc->FcpDl);
5116 lunptr = fc->FcpLun;
5117 itag = be16toh(fc->OptionalOxid);
5118 } else if (mpt->is_sas) {
5119 PTR_MPI_TARGET_SSP_CMD_BUFFER ssp;
5120 ssp = (PTR_MPI_TARGET_SSP_CMD_BUFFER) vbuf;
5122 lunptr = ssp->LogicalUnitNumber;
5123 itag = ssp->InitiatorTag;
5125 PTR_MPI_TARGET_SCSI_SPI_CMD_BUFFER sp;
5126 sp = (PTR_MPI_TARGET_SCSI_SPI_CMD_BUFFER) vbuf;
5128 lunptr = sp->LogicalUnitNumber;
5133 * Generate a simple lun
5135 switch (lunptr[0] & 0xc0) {
5137 lun = ((lunptr[0] & 0x3f) << 8) | lunptr[1];
5143 mpt_lprt(mpt, MPT_PRT_ERROR, "cannot handle this type lun\n");
5149 * Deal with non-enabled or bad luns here.
5151 if (lun >= MPT_MAX_LUNS || mpt->tenabled == 0 ||
5152 mpt->trt[lun].enabled == 0) {
5153 if (mpt->twildcard) {
5154 trtp = &mpt->trt_wildcard;
5155 } else if (fct == MPT_NIL_TMT_VALUE) {
5157 * In this case, we haven't got an upstream listener
5158 * for either a specific lun or wildcard luns. We
5159 * have to make some sensible response. For regular
5160 * inquiry, just return some NOT HERE inquiry data.
5161 * For VPD inquiry, report illegal field in cdb.
5162 * For REQUEST SENSE, just return NO SENSE data.
5163 * REPORT LUNS gets illegal command.
5164 * All other commands get 'no such device'.
5166 uint8_t *sp, cond, buf[MPT_SENSE_SIZE];
5169 memset(buf, 0, MPT_SENSE_SIZE);
5170 cond = SCSI_STATUS_CHECK_COND;
5175 tgt->tag_id = MPT_MAKE_TAGID(mpt, req, ioindex);
5185 len = min(tgt->resid, cdbp[4]);
5186 len = min(len, sizeof (null_iqd));
5187 mpt_lprt(mpt, MPT_PRT_DEBUG,
5188 "local inquiry %ld bytes\n", (long) len);
5189 mpt_scsi_tgt_local(mpt, req, lun, 1,
5196 len = min(tgt->resid, cdbp[4]);
5197 len = min(len, sizeof (buf));
5198 mpt_lprt(mpt, MPT_PRT_DEBUG,
5199 "local reqsense %ld bytes\n", (long) len);
5200 mpt_scsi_tgt_local(mpt, req, lun, 1,
5205 mpt_lprt(mpt, MPT_PRT_DEBUG, "REPORT LUNS\n");
5209 mpt_lprt(mpt, MPT_PRT_DEBUG,
5210 "CMD 0x%x to unmanaged lun %u\n",
5215 mpt_scsi_tgt_status(mpt, NULL, req, cond, sp);
5218 /* otherwise, leave trtp NULL */
5220 trtp = &mpt->trt[lun];
5224 * Deal with any task management
5226 if (fct != MPT_NIL_TMT_VALUE) {
5228 mpt_prt(mpt, "task mgmt function %x but no listener\n",
5230 mpt_scsi_tgt_status(mpt, 0, req,
5233 mpt_scsi_tgt_tsk_mgmt(mpt, req, fct, trtp,
5234 GET_INITIATOR_INDEX(reply_desc));
5240 atiop = (struct ccb_accept_tio *) STAILQ_FIRST(&trtp->atios);
5241 if (atiop == NULL) {
5242 mpt_lprt(mpt, MPT_PRT_WARN,
5243 "no ATIOs for lun %u- sending back %s\n", lun,
5244 mpt->tenabled? "QUEUE FULL" : "BUSY");
5245 mpt_scsi_tgt_status(mpt, NULL, req,
5246 mpt->tenabled? SCSI_STATUS_QUEUE_FULL : SCSI_STATUS_BUSY,
5250 STAILQ_REMOVE_HEAD(&trtp->atios, sim_links.stqe);
5251 mpt_lprt(mpt, MPT_PRT_DEBUG1,
5252 "Get FREE ATIO %p lun %d\n", atiop, atiop->ccb_h.target_lun);
5253 atiop->ccb_h.ccb_mpt_ptr = mpt;
5254 atiop->ccb_h.status = CAM_CDB_RECVD;
5255 atiop->ccb_h.target_lun = lun;
5256 atiop->sense_len = 0;
5257 atiop->init_id = GET_INITIATOR_INDEX(reply_desc);
5258 atiop->cdb_len = mpt_cdblen(cdbp[0], 16);
5259 memcpy(atiop->cdb_io.cdb_bytes, cdbp, atiop->cdb_len);
5262 * The tag we construct here allows us to find the
5263 * original request that the command came in with.
5265 * This way we don't have to depend on anything but the
5266 * tag to find things when CCBs show back up from CAM.
5268 atiop->tag_id = MPT_MAKE_TAGID(mpt, req, ioindex);
5269 tgt->tag_id = atiop->tag_id;
5271 atiop->tag_action = tag_action;
5272 atiop->ccb_h.flags = CAM_TAG_ACTION_VALID;
5274 if (mpt->verbose >= MPT_PRT_DEBUG) {
5276 mpt_prt(mpt, "START_CCB %p for lun %u CDB=<", atiop,
5277 atiop->ccb_h.target_lun);
5278 for (i = 0; i < atiop->cdb_len; i++) {
5279 mpt_prtc(mpt, "%02x%c", cdbp[i] & 0xff,
5280 (i == (atiop->cdb_len - 1))? '>' : ' ');
5282 mpt_prtc(mpt, " itag %x tag %x rdesc %x dl=%u\n",
5283 itag, atiop->tag_id, tgt->reply_desc, tgt->resid);
5286 MPTLOCK_2_CAMLOCK(mpt);
5287 xpt_done((union ccb *)atiop);
5288 CAMLOCK_2_MPTLOCK(mpt);
5292 mpt_tgt_dump_tgt_state(struct mpt_softc *mpt, request_t *req)
5294 mpt_tgt_state_t *tgt = MPT_TGT_STATE(mpt, req);
5296 mpt_prt(mpt, "req %p:%u tgt:rdesc 0x%x resid %u xfrd %u ccb %p treq %p "
5297 "nx %d tag 0x%08x state=%d\n", req, req->serno, tgt->reply_desc,
5298 tgt->resid, tgt->bytes_xfered, tgt->ccb, tgt->req, tgt->nxfers,
5299 tgt->tag_id, tgt->state);
5303 mpt_tgt_dump_req_state(struct mpt_softc *mpt, request_t *req)
5305 mpt_prt(mpt, "req %p:%u index %u (%x) state %x\n", req, req->serno,
5306 req->index, req->index, req->state);
5307 mpt_tgt_dump_tgt_state(mpt, req);
5311 mpt_scsi_tgt_reply_handler(struct mpt_softc *mpt, request_t *req,
5312 uint32_t reply_desc, MSG_DEFAULT_REPLY *reply_frame)
5318 if (reply_frame == NULL) {
5320 * Figure out what the state of the command is.
5322 mpt_tgt_state_t *tgt = MPT_TGT_STATE(mpt, req);
5325 mpt_req_spcl(mpt, req, "turbo scsi_tgt_reply", __LINE__);
5327 mpt_req_not_spcl(mpt, tgt->req,
5328 "turbo scsi_tgt_reply associated req", __LINE__);
5331 switch(tgt->state) {
5332 case TGT_STATE_LOADED:
5334 * This is a new command starting.
5336 mpt_scsi_tgt_atio(mpt, req, reply_desc);
5338 case TGT_STATE_MOVING_DATA:
5340 uint8_t *sp = NULL, sense[MPT_SENSE_SIZE];
5343 if (tgt->req == NULL) {
5344 panic("mpt: turbo target reply with null "
5345 "associated request moving data");
5349 if (tgt->is_local == 0) {
5350 panic("mpt: turbo target reply with "
5351 "null associated ccb moving data");
5354 mpt_lprt(mpt, MPT_PRT_DEBUG,
5355 "TARGET_ASSIST local done\n");
5356 TAILQ_REMOVE(&mpt->request_pending_list,
5358 mpt_free_request(mpt, tgt->req);
5360 mpt_scsi_tgt_status(mpt, NULL, req,
5366 mpt_req_untimeout(req, mpt_timeout, ccb);
5367 mpt_lprt(mpt, MPT_PRT_DEBUG,
5368 "TARGET_ASSIST %p (req %p:%u) done tag 0x%x\n",
5369 ccb, tgt->req, tgt->req->serno, ccb->csio.tag_id);
5371 * Free the Target Assist Request
5373 KASSERT(tgt->req->ccb == ccb,
5374 ("tgt->req %p:%u tgt->req->ccb %p", tgt->req,
5375 tgt->req->serno, tgt->req->ccb));
5376 TAILQ_REMOVE(&mpt->request_pending_list,
5378 mpt_free_request(mpt, tgt->req);
5382 * Do we need to send status now? That is, are
5383 * we done with all our data transfers?
5385 if ((ccb->ccb_h.flags & CAM_SEND_STATUS) == 0) {
5386 mpt_set_ccb_status(ccb, CAM_REQ_CMP);
5387 ccb->ccb_h.status &= ~CAM_SIM_QUEUED;
5388 KASSERT(ccb->ccb_h.status,
5389 ("zero ccb sts at %d\n", __LINE__));
5390 tgt->state = TGT_STATE_IN_CAM;
5391 if (mpt->outofbeer) {
5392 ccb->ccb_h.status |= CAM_RELEASE_SIMQ;
5394 mpt_lprt(mpt, MPT_PRT_DEBUG, "THAWQ\n");
5396 MPTLOCK_2_CAMLOCK(mpt);
5398 CAMLOCK_2_MPTLOCK(mpt);
5402 * Otherwise, send status (and sense)
5404 if (ccb->ccb_h.flags & CAM_SEND_SENSE) {
5406 memcpy(sp, &ccb->csio.sense_data,
5407 min(ccb->csio.sense_len, MPT_SENSE_SIZE));
5409 mpt_scsi_tgt_status(mpt, ccb, req,
5410 ccb->csio.scsi_status, sp);
5413 case TGT_STATE_SENDING_STATUS:
5414 case TGT_STATE_MOVING_DATA_AND_STATUS:
5419 if (tgt->req == NULL) {
5420 panic("mpt: turbo target reply with null "
5421 "associated request sending status");
5428 TGT_STATE_MOVING_DATA_AND_STATUS) {
5431 mpt_req_untimeout(req, mpt_timeout, ccb);
5432 if (ccb->ccb_h.flags & CAM_SEND_SENSE) {
5433 ccb->ccb_h.status |= CAM_SENT_SENSE;
5435 mpt_lprt(mpt, MPT_PRT_DEBUG,
5436 "TARGET_STATUS tag %x sts %x flgs %x req "
5437 "%p\n", ccb->csio.tag_id, ccb->ccb_h.status,
5438 ccb->ccb_h.flags, tgt->req);
5440 * Free the Target Send Status Request
5442 KASSERT(tgt->req->ccb == ccb,
5443 ("tgt->req %p:%u tgt->req->ccb %p",
5444 tgt->req, tgt->req->serno, tgt->req->ccb));
5446 * Notify CAM that we're done
5448 mpt_set_ccb_status(ccb, CAM_REQ_CMP);
5449 ccb->ccb_h.status &= ~CAM_SIM_QUEUED;
5450 KASSERT(ccb->ccb_h.status,
5451 ("ZERO ccb sts at %d\n", __LINE__));
5454 mpt_lprt(mpt, MPT_PRT_DEBUG,
5455 "TARGET_STATUS non-CAM for req %p:%u\n",
5456 tgt->req, tgt->req->serno);
5458 TAILQ_REMOVE(&mpt->request_pending_list,
5460 mpt_free_request(mpt, tgt->req);
5464 * And re-post the Command Buffer.
5465 * This will reset the state.
5467 ioindex = GET_IO_INDEX(reply_desc);
5468 TAILQ_REMOVE(&mpt->request_pending_list, req, links);
5470 mpt_post_target_command(mpt, req, ioindex);
5473 * And post a done for anyone who cares
5476 if (mpt->outofbeer) {
5477 ccb->ccb_h.status |= CAM_RELEASE_SIMQ;
5479 mpt_lprt(mpt, MPT_PRT_DEBUG, "THAWQ\n");
5481 MPTLOCK_2_CAMLOCK(mpt);
5483 CAMLOCK_2_MPTLOCK(mpt);
5487 case TGT_STATE_NIL: /* XXX This Never Happens XXX */
5488 tgt->state = TGT_STATE_LOADED;
5491 mpt_prt(mpt, "Unknown Target State 0x%x in Context "
5492 "Reply Function\n", tgt->state);
5497 status = le16toh(reply_frame->IOCStatus);
5498 if (status != MPI_IOCSTATUS_SUCCESS) {
5499 dbg = MPT_PRT_ERROR;
5501 dbg = MPT_PRT_DEBUG1;
5505 "SCSI_TGT REPLY: req=%p:%u reply=%p func=%x IOCstatus 0x%x\n",
5506 req, req->serno, reply_frame, reply_frame->Function, status);
5508 switch (reply_frame->Function) {
5509 case MPI_FUNCTION_TARGET_CMD_BUFFER_POST:
5511 mpt_tgt_state_t *tgt;
5513 mpt_req_spcl(mpt, req, "tgt reply BUFFER POST", __LINE__);
5515 if (status != MPI_IOCSTATUS_SUCCESS) {
5521 tgt = MPT_TGT_STATE(mpt, req);
5522 KASSERT(tgt->state == TGT_STATE_LOADING,
5523 ("bad state 0x%x on reply to buffer post\n", tgt->state));
5524 mpt_assign_serno(mpt, req);
5525 tgt->state = TGT_STATE_LOADED;
5528 case MPI_FUNCTION_TARGET_ASSIST:
5530 mpt_req_not_spcl(mpt, req, "tgt reply TARGET ASSIST", __LINE__);
5532 mpt_prt(mpt, "target assist completion\n");
5533 TAILQ_REMOVE(&mpt->request_pending_list, req, links);
5534 mpt_free_request(mpt, req);
5536 case MPI_FUNCTION_TARGET_STATUS_SEND:
5538 mpt_req_not_spcl(mpt, req, "tgt reply STATUS SEND", __LINE__);
5540 mpt_prt(mpt, "status send completion\n");
5541 TAILQ_REMOVE(&mpt->request_pending_list, req, links);
5542 mpt_free_request(mpt, req);
5544 case MPI_FUNCTION_TARGET_MODE_ABORT:
5546 PTR_MSG_TARGET_MODE_ABORT_REPLY abtrp =
5547 (PTR_MSG_TARGET_MODE_ABORT_REPLY) reply_frame;
5548 PTR_MSG_TARGET_MODE_ABORT abtp =
5549 (PTR_MSG_TARGET_MODE_ABORT) req->req_vbuf;
5550 uint32_t cc = GET_IO_INDEX(le32toh(abtp->ReplyWord));
5552 mpt_req_not_spcl(mpt, req, "tgt reply TMODE ABORT", __LINE__);
5554 mpt_prt(mpt, "ABORT RX_ID 0x%x Complete; status 0x%x cnt %u\n",
5555 cc, le16toh(abtrp->IOCStatus), le32toh(abtrp->AbortCount));
5556 TAILQ_REMOVE(&mpt->request_pending_list, req, links);
5557 mpt_free_request(mpt, req);
5561 mpt_prt(mpt, "Unknown Target Address Reply Function code: "
5562 "0x%x\n", reply_frame->Function);
projects / FreeBSD / releng / 7.2.git / blob