Work aroudn swiotlb issue where a read-only host buffer is

author kaf24@firebug.cl.cam.ac.uk <kaf24@firebug.cl.cam.ac.uk>

Fri, 16 Dec 2005 23:43:00 +0000 (00:43 +0100)

committer kaf24@firebug.cl.cam.ac.uk <kaf24@firebug.cl.cam.ac.uk>

Fri, 16 Dec 2005 23:43:00 +0000 (00:43 +0100)
author kaf24@firebug.cl.cam.ac.uk <kaf24@firebug.cl.cam.ac.uk>
Fri, 16 Dec 2005 23:43:00 +0000 (00:43 +0100)
committer kaf24@firebug.cl.cam.ac.uk <kaf24@firebug.cl.cam.ac.uk>
Fri, 16 Dec 2005 23:43:00 +0000 (00:43 +0100)
diff --git a/linux-2.6-xen-sparse/arch/xen/i386/kernel/swiotlb.c b/linux-2.6-xen-sparse/arch/xen/i386/kernel/swiotlb.c

index dd7204ad61c1b5e4ac433eb46b293fb5ea43290f..bf9c215a3166f9abd97751619ffc9cf09c68a6a1 100644 (file)
--- a/linux-2.6-xen-sparse/arch/xen/i386/kernel/swiotlb.c
+++ b/linux-2.6-xen-sparse/arch/xen/i386/kernel/swiotlb.c
@@ -24,6 +24,7 @@
  #include <asm/io.h>
  #include <asm/pci.h>
  #include <asm/dma.h>
+#include <asm/uaccess.h>
  #include <asm-xen/xen-public/memory.h>
  
  #define OFFSET(val,align) ((unsigned long)((val) & ( (align) - 1)))
@@ -201,6 +202,12 @@ swiotlb_init(void)
                 printk(KERN_INFO "Software IO TLB disabled\n");
  }
  
+/*
+ * We use __copy_to_user to transfer to the host buffer because the buffer
+ * may be mapped read-only (e.g, in blkback driver) but lower-level
+ * drivers map the buffer for DMA_BIDIRECTIONAL access. This causes an
+ * unnecessary copy from the aperture to the host buffer, and a page fault.
+ */
  static void
  __sync_single(struct phys_addr buffer, char *dma_addr, size_t size, int dir)
  {
@@ -214,9 +221,11 @@ __sync_single(struct phys_addr buffer, char *dma_addr, size_t size, int dir)
                         kmp  = kmap_atomic(buffer.page, KM_SWIOTLB);
                         dev  = dma_addr + size - len;
                         host = kmp + buffer.offset;
-                       memcpy((dir == DMA_FROM_DEVICE) ? host : dev,
-                              (dir == DMA_FROM_DEVICE) ? dev : host,
-                              bytes);
+                       if (dir == DMA_FROM_DEVICE) {
+                               if (__copy_to_user(host, dev, bytes))
+                                       return; /* inaccessible */
+                       } else
+                               memcpy(dev, host, bytes);
                         kunmap_atomic(kmp, KM_SWIOTLB);
                         len -= bytes;
                         buffer.page++;
@@ -225,9 +234,10 @@ __sync_single(struct phys_addr buffer, char *dma_addr, size_t size, int dir)
         } else {
                 char *host = (char *)phys_to_virt(
                         page_to_pseudophys(buffer.page)) + buffer.offset;
-               if (dir == DMA_FROM_DEVICE)
-                       memcpy(host, dma_addr, size);
-               else if (dir == DMA_TO_DEVICE)
+               if (dir == DMA_FROM_DEVICE) {
+                       if (__copy_to_user(host, dma_addr, size))
+                               return; /* inaccessible */
+               } else if (dir == DMA_TO_DEVICE)
                         memcpy(dma_addr, host, size);
         }
  }
author	kaf24@firebug.cl.cam.ac.uk <kaf24@firebug.cl.cam.ac.uk>
	Fri, 16 Dec 2005 23:43:00 +0000 (00:43 +0100)
committer	kaf24@firebug.cl.cam.ac.uk <kaf24@firebug.cl.cam.ac.uk>
	Fri, 16 Dec 2005 23:43:00 +0000 (00:43 +0100)