2 * iSCSI Initiator over TCP/IP Data-Path
4 * Copyright (C) 2004 Dmitry Yusupov
5 * Copyright (C) 2004 Alex Aizman
6 * Copyright (C) 2005 Mike Christie
7 * maintained by open-iscsi@googlegroups.com
9 * This program is free software; you can redistribute it and/or modify
10 * it under the terms of the GNU General Public License as published
11 * by the Free Software Foundation; either version 2 of the License, or
12 * (at your option) any later version.
14 * This program is distributed in the hope that it will be useful, but
15 * WITHOUT ANY WARRANTY; without even the implied warranty of
16 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
17 * General Public License for more details.
19 * See the file COPYING included with this distribution for more details.
28 #include <linux/types.h>
29 #include <linux/list.h>
30 #include <linux/inet.h>
31 #include <linux/blkdev.h>
32 #include <linux/crypto.h>
33 #include <linux/delay.h>
34 #include <linux/kfifo.h>
35 #include <linux/scatterlist.h>
36 #include <linux/mutex.h>
38 #include <scsi/scsi_cmnd.h>
39 #include <scsi/scsi_device.h>
40 #include <scsi/scsi_eh.h>
41 #include <scsi/scsi_request.h>
42 #include <scsi/scsi_tcq.h>
43 #include <scsi/scsi_host.h>
44 #include <scsi/scsi.h>
45 #include <scsi/scsi_transport_iscsi.h>
47 #include "iscsi_tcp.h"
49 MODULE_AUTHOR("Dmitry Yusupov <dmitry_yus@yahoo.com>, "
50 "Alex Aizman <itn780@yahoo.com>");
51 MODULE_DESCRIPTION("iSCSI/TCP data-path");
52 MODULE_LICENSE("GPL");
53 MODULE_VERSION("0:4.445");
54 /* #define DEBUG_TCP */
55 /* #define DEBUG_SCSI */
59 #define debug_tcp(fmt...) printk(KERN_DEBUG "tcp: " fmt)
61 #define debug_tcp(fmt...)
65 #define debug_scsi(fmt...) printk(KERN_DEBUG "scsi: " fmt)
67 #define debug_scsi(fmt...)
77 #define INVALID_SN_DELTA 0xffff
79 static unsigned int iscsi_max_lun = 512;
80 module_param_named(max_lun, iscsi_max_lun, uint, S_IRUGO);
83 static kmem_cache_t *taskcache;
86 iscsi_buf_init_virt(struct iscsi_buf *ibuf, char *vbuf, int size)
88 sg_init_one(&ibuf->sg, (u8 *)vbuf, size);
93 iscsi_buf_init_iov(struct iscsi_buf *ibuf, char *vbuf, int size)
95 ibuf->sg.page = (void*)vbuf;
96 ibuf->sg.offset = (unsigned int)-1;
97 ibuf->sg.length = size;
102 iscsi_buf_iov_base(struct iscsi_buf *ibuf)
104 return (char*)ibuf->sg.page + ibuf->sent;
108 iscsi_buf_init_sg(struct iscsi_buf *ibuf, struct scatterlist *sg)
111 * Fastpath: sg element fits into single page
113 if (sg->length + sg->offset <= PAGE_SIZE && page_count(sg->page) >= 2) {
114 ibuf->sg.page = sg->page;
115 ibuf->sg.offset = sg->offset;
116 ibuf->sg.length = sg->length;
118 iscsi_buf_init_iov(ibuf, page_address(sg->page), sg->length);
123 iscsi_buf_left(struct iscsi_buf *ibuf)
127 rc = ibuf->sg.length - ibuf->sent;
133 iscsi_hdr_digest(struct iscsi_conn *conn, struct iscsi_buf *buf,
136 crypto_digest_digest(conn->tx_tfm, &buf->sg, 1, crc);
137 buf->sg.length += sizeof(uint32_t);
141 iscsi_conn_failure(struct iscsi_conn *conn, enum iscsi_err err)
143 struct iscsi_session *session = conn->session;
146 spin_lock_irqsave(&session->lock, flags);
147 if (session->conn_cnt == 1 || session->leadconn == conn)
148 session->state = ISCSI_STATE_FAILED;
149 spin_unlock_irqrestore(&session->lock, flags);
150 set_bit(SUSPEND_BIT, &conn->suspend_tx);
151 set_bit(SUSPEND_BIT, &conn->suspend_rx);
152 iscsi_conn_error(iscsi_handle(conn), err);
156 iscsi_check_assign_cmdsn(struct iscsi_session *session, struct iscsi_nopin *hdr)
158 uint32_t max_cmdsn = be32_to_cpu(hdr->max_cmdsn);
159 uint32_t exp_cmdsn = be32_to_cpu(hdr->exp_cmdsn);
161 if (max_cmdsn < exp_cmdsn -1 &&
162 max_cmdsn > exp_cmdsn - INVALID_SN_DELTA)
163 return ISCSI_ERR_MAX_CMDSN;
164 if (max_cmdsn > session->max_cmdsn ||
165 max_cmdsn < session->max_cmdsn - INVALID_SN_DELTA)
166 session->max_cmdsn = max_cmdsn;
167 if (exp_cmdsn > session->exp_cmdsn ||
168 exp_cmdsn < session->exp_cmdsn - INVALID_SN_DELTA)
169 session->exp_cmdsn = exp_cmdsn;
175 iscsi_hdr_extract(struct iscsi_conn *conn)
177 struct sk_buff *skb = conn->in.skb;
179 if (conn->in.copy >= conn->hdr_size &&
180 conn->in_progress == IN_PROGRESS_WAIT_HEADER) {
182 * Zero-copy PDU Header: using connection context
183 * to store header pointer.
185 if (skb_shinfo(skb)->frag_list == NULL &&
186 !skb_shinfo(skb)->nr_frags)
187 conn->in.hdr = (struct iscsi_hdr *)
188 ((char*)skb->data + conn->in.offset);
190 /* ignoring return code since we checked
192 skb_copy_bits(skb, conn->in.offset,
193 &conn->hdr, conn->hdr_size);
194 conn->in.hdr = &conn->hdr;
196 conn->in.offset += conn->hdr_size;
197 conn->in.copy -= conn->hdr_size;
203 * PDU header scattered across SKB's,
204 * copying it... This'll happen quite rarely.
207 if (conn->in_progress == IN_PROGRESS_WAIT_HEADER)
208 conn->in.hdr_offset = 0;
210 hdr_remains = conn->hdr_size - conn->in.hdr_offset;
211 BUG_ON(hdr_remains <= 0);
213 copylen = min(conn->in.copy, hdr_remains);
214 skb_copy_bits(skb, conn->in.offset,
215 (char*)&conn->hdr + conn->in.hdr_offset, copylen);
217 debug_tcp("PDU gather offset %d bytes %d in.offset %d "
218 "in.copy %d\n", conn->in.hdr_offset, copylen,
219 conn->in.offset, conn->in.copy);
221 conn->in.offset += copylen;
222 conn->in.copy -= copylen;
223 if (copylen < hdr_remains) {
224 conn->in_progress = IN_PROGRESS_HEADER_GATHER;
225 conn->in.hdr_offset += copylen;
228 conn->in.hdr = &conn->hdr;
229 conn->discontiguous_hdr_cnt++;
230 conn->in_progress = IN_PROGRESS_WAIT_HEADER;
237 iscsi_ctask_cleanup(struct iscsi_conn *conn, struct iscsi_cmd_task *ctask)
239 struct scsi_cmnd *sc = ctask->sc;
240 struct iscsi_session *session = conn->session;
242 spin_lock(&session->lock);
244 spin_unlock(&session->lock);
247 if (sc->sc_data_direction == DMA_TO_DEVICE) {
248 struct iscsi_data_task *dtask, *n;
249 /* WRITE: cleanup Data-Out's if any */
250 spin_lock(&conn->lock);
251 list_for_each_entry_safe(dtask, n, &ctask->dataqueue, item) {
252 list_del(&dtask->item);
253 mempool_free(dtask, ctask->datapool);
255 spin_unlock(&conn->lock);
257 ctask->xmstate = XMSTATE_IDLE;
260 __kfifo_put(session->cmdpool.queue, (void*)&ctask, sizeof(void*));
261 spin_unlock(&session->lock);
265 * iscsi_cmd_rsp - SCSI Command Response processing
266 * @conn: iscsi connection
267 * @ctask: scsi command task
270 iscsi_cmd_rsp(struct iscsi_conn *conn, struct iscsi_cmd_task *ctask)
273 struct iscsi_cmd_rsp *rhdr = (struct iscsi_cmd_rsp *)conn->in.hdr;
274 struct iscsi_session *session = conn->session;
275 struct scsi_cmnd *sc = ctask->sc;
277 rc = iscsi_check_assign_cmdsn(session, (struct iscsi_nopin*)rhdr);
279 sc->result = (DID_ERROR << 16);
283 conn->exp_statsn = be32_to_cpu(rhdr->statsn) + 1;
285 sc->result = (DID_OK << 16) | rhdr->cmd_status;
287 if (rhdr->response != ISCSI_STATUS_CMD_COMPLETED) {
288 sc->result = (DID_ERROR << 16);
292 if (rhdr->cmd_status == SAM_STAT_CHECK_CONDITION && conn->senselen) {
293 int sensecopy = min(conn->senselen, SCSI_SENSE_BUFFERSIZE);
295 memcpy(sc->sense_buffer, conn->data + 2, sensecopy);
296 debug_scsi("copied %d bytes of sense\n", sensecopy);
299 if (sc->sc_data_direction == DMA_TO_DEVICE)
302 if (rhdr->flags & ISCSI_FLAG_CMD_UNDERFLOW) {
303 int res_count = be32_to_cpu(rhdr->residual_count);
305 if (res_count > 0 && res_count <= sc->request_bufflen)
306 sc->resid = res_count;
308 sc->result = (DID_BAD_TARGET << 16) | rhdr->cmd_status;
309 } else if (rhdr->flags & ISCSI_FLAG_CMD_BIDI_UNDERFLOW)
310 sc->result = (DID_BAD_TARGET << 16) | rhdr->cmd_status;
311 else if (rhdr->flags & ISCSI_FLAG_CMD_OVERFLOW)
312 sc->resid = be32_to_cpu(rhdr->residual_count);
315 debug_scsi("done [sc %lx res %d itt 0x%x]\n",
316 (long)sc, sc->result, ctask->itt);
317 conn->scsirsp_pdus_cnt++;
318 iscsi_ctask_cleanup(conn, ctask);
324 * iscsi_data_rsp - SCSI Data-In Response processing
325 * @conn: iscsi connection
326 * @ctask: scsi command task
329 iscsi_data_rsp(struct iscsi_conn *conn, struct iscsi_cmd_task *ctask)
332 struct iscsi_data_rsp *rhdr = (struct iscsi_data_rsp *)conn->in.hdr;
333 struct iscsi_session *session = conn->session;
334 int datasn = be32_to_cpu(rhdr->datasn);
336 rc = iscsi_check_assign_cmdsn(session, (struct iscsi_nopin*)rhdr);
340 * setup Data-In byte counter (gets decremented..)
342 ctask->data_count = conn->in.datalen;
344 if (conn->in.datalen == 0)
347 if (ctask->datasn != datasn)
348 return ISCSI_ERR_DATASN;
352 ctask->data_offset = be32_to_cpu(rhdr->offset);
353 if (ctask->data_offset + conn->in.datalen > ctask->total_length)
354 return ISCSI_ERR_DATA_OFFSET;
356 if (rhdr->flags & ISCSI_FLAG_DATA_STATUS) {
357 struct scsi_cmnd *sc = ctask->sc;
359 conn->exp_statsn = be32_to_cpu(rhdr->statsn) + 1;
360 if (rhdr->flags & ISCSI_FLAG_DATA_UNDERFLOW) {
361 int res_count = be32_to_cpu(rhdr->residual_count);
364 res_count <= sc->request_bufflen) {
365 sc->resid = res_count;
366 sc->result = (DID_OK << 16) | rhdr->cmd_status;
368 sc->result = (DID_BAD_TARGET << 16) |
370 } else if (rhdr->flags & ISCSI_FLAG_DATA_OVERFLOW) {
371 sc->resid = be32_to_cpu(rhdr->residual_count);
372 sc->result = (DID_OK << 16) | rhdr->cmd_status;
374 sc->result = (DID_OK << 16) | rhdr->cmd_status;
377 conn->datain_pdus_cnt++;
382 * iscsi_solicit_data_init - initialize first Data-Out
383 * @conn: iscsi connection
384 * @ctask: scsi command task
388 * Initialize first Data-Out within this R2T sequence and finds
389 * proper data_offset within this SCSI command.
391 * This function is called with connection lock taken.
394 iscsi_solicit_data_init(struct iscsi_conn *conn, struct iscsi_cmd_task *ctask,
395 struct iscsi_r2t_info *r2t)
397 struct iscsi_data *hdr;
398 struct iscsi_data_task *dtask;
399 struct scsi_cmnd *sc = ctask->sc;
401 dtask = mempool_alloc(ctask->datapool, GFP_ATOMIC);
404 memset(hdr, 0, sizeof(struct iscsi_data));
406 hdr->datasn = cpu_to_be32(r2t->solicit_datasn);
407 r2t->solicit_datasn++;
408 hdr->opcode = ISCSI_OP_SCSI_DATA_OUT;
409 memcpy(hdr->lun, ctask->hdr.lun, sizeof(hdr->lun));
410 hdr->itt = ctask->hdr.itt;
411 hdr->exp_statsn = r2t->exp_statsn;
412 hdr->offset = cpu_to_be32(r2t->data_offset);
413 if (r2t->data_length > conn->max_xmit_dlength) {
414 hton24(hdr->dlength, conn->max_xmit_dlength);
415 r2t->data_count = conn->max_xmit_dlength;
418 hton24(hdr->dlength, r2t->data_length);
419 r2t->data_count = r2t->data_length;
420 hdr->flags = ISCSI_FLAG_CMD_FINAL;
422 conn->dataout_pdus_cnt++;
426 iscsi_buf_init_virt(&r2t->headbuf, (char*)hdr,
427 sizeof(struct iscsi_hdr));
433 struct scatterlist *sg = sc->request_buffer;
436 for (i = 0; i < sc->use_sg; i++, sg += 1) {
437 /* FIXME: prefetch ? */
438 if (sg_count + sg->length > r2t->data_offset) {
443 /* offset within this page */
444 page_offset = r2t->data_offset - sg_count;
446 /* fill in this buffer */
447 iscsi_buf_init_sg(&r2t->sendbuf, sg);
448 r2t->sendbuf.sg.offset += page_offset;
449 r2t->sendbuf.sg.length -= page_offset;
451 /* xmit logic will continue with next one */
455 sg_count += sg->length;
457 BUG_ON(r2t->sg == NULL);
459 iscsi_buf_init_iov(&ctask->sendbuf,
460 (char*)sc->request_buffer + r2t->data_offset,
463 list_add(&dtask->item, &ctask->dataqueue);
467 * iscsi_r2t_rsp - iSCSI R2T Response processing
468 * @conn: iscsi connection
469 * @ctask: scsi command task
472 iscsi_r2t_rsp(struct iscsi_conn *conn, struct iscsi_cmd_task *ctask)
474 struct iscsi_r2t_info *r2t;
475 struct iscsi_session *session = conn->session;
476 struct iscsi_r2t_rsp *rhdr = (struct iscsi_r2t_rsp *)conn->in.hdr;
477 int r2tsn = be32_to_cpu(rhdr->r2tsn);
481 return ISCSI_ERR_AHSLEN;
483 if (conn->in.datalen)
484 return ISCSI_ERR_DATALEN;
486 if (ctask->exp_r2tsn && ctask->exp_r2tsn != r2tsn)
487 return ISCSI_ERR_R2TSN;
489 rc = iscsi_check_assign_cmdsn(session, (struct iscsi_nopin*)rhdr);
493 /* FIXME: use R2TSN to detect missing R2T */
495 /* fill-in new R2T associated with the task */
496 spin_lock(&session->lock);
497 if (!ctask->sc || ctask->mtask ||
498 session->state != ISCSI_STATE_LOGGED_IN) {
499 printk(KERN_INFO "iscsi_tcp: dropping R2T itt %d in "
500 "recovery...\n", ctask->itt);
501 spin_unlock(&session->lock);
504 rc = __kfifo_get(ctask->r2tpool.queue, (void*)&r2t, sizeof(void*));
507 r2t->exp_statsn = rhdr->statsn;
508 r2t->data_length = be32_to_cpu(rhdr->data_length);
509 if (r2t->data_length == 0 ||
510 r2t->data_length > session->max_burst) {
511 spin_unlock(&session->lock);
512 return ISCSI_ERR_DATALEN;
515 r2t->data_offset = be32_to_cpu(rhdr->data_offset);
516 if (r2t->data_offset + r2t->data_length > ctask->total_length) {
517 spin_unlock(&session->lock);
518 return ISCSI_ERR_DATALEN;
521 r2t->ttt = rhdr->ttt; /* no flip */
522 r2t->solicit_datasn = 0;
524 iscsi_solicit_data_init(conn, ctask, r2t);
526 ctask->exp_r2tsn = r2tsn + 1;
527 ctask->xmstate |= XMSTATE_SOL_HDR;
528 __kfifo_put(ctask->r2tqueue, (void*)&r2t, sizeof(void*));
529 __kfifo_put(conn->writequeue, (void*)&ctask, sizeof(void*));
531 schedule_work(&conn->xmitwork);
532 conn->r2t_pdus_cnt++;
533 spin_unlock(&session->lock);
539 iscsi_hdr_recv(struct iscsi_conn *conn)
542 struct iscsi_hdr *hdr;
543 struct iscsi_cmd_task *ctask;
544 struct iscsi_session *session = conn->session;
545 uint32_t cdgst, rdgst = 0;
549 /* verify PDU length */
550 conn->in.datalen = ntoh24(hdr->dlength);
551 if (conn->in.datalen > conn->max_recv_dlength) {
552 printk(KERN_ERR "iscsi_tcp: datalen %d > %d\n",
553 conn->in.datalen, conn->max_recv_dlength);
554 return ISCSI_ERR_DATALEN;
556 conn->data_copied = 0;
559 conn->in.ahslen = hdr->hlength * 4;
560 conn->in.offset += conn->in.ahslen;
561 conn->in.copy -= conn->in.ahslen;
562 if (conn->in.copy < 0) {
563 printk(KERN_ERR "iscsi_tcp: can't handle AHS with length "
564 "%d bytes\n", conn->in.ahslen);
565 return ISCSI_ERR_AHSLEN;
568 /* calculate read padding */
569 conn->in.padding = conn->in.datalen & (ISCSI_PAD_LEN-1);
570 if (conn->in.padding) {
571 conn->in.padding = ISCSI_PAD_LEN - conn->in.padding;
572 debug_scsi("read padding %d bytes\n", conn->in.padding);
575 if (conn->hdrdgst_en) {
576 struct scatterlist sg;
578 sg_init_one(&sg, (u8 *)hdr,
579 sizeof(struct iscsi_hdr) + conn->in.ahslen);
580 crypto_digest_digest(conn->rx_tfm, &sg, 1, (u8 *)&cdgst);
581 rdgst = *(uint32_t*)((char*)hdr + sizeof(struct iscsi_hdr) +
583 if (cdgst != rdgst) {
584 printk(KERN_ERR "iscsi_tcp: itt %x: hdrdgst error "
585 "recv 0x%x calc 0x%x\n", conn->in.itt, rdgst,
587 return ISCSI_ERR_HDR_DGST;
591 /* save opcode for later */
592 conn->in.opcode = hdr->opcode & ISCSI_OPCODE_MASK;
594 /* verify itt (itt encoding: age+cid+itt) */
595 if (hdr->itt != cpu_to_be32(ISCSI_RESERVED_TAG)) {
596 if ((hdr->itt & AGE_MASK) !=
597 (session->age << AGE_SHIFT)) {
598 printk(KERN_ERR "iscsi_tcp: received itt %x expected "
599 "session age (%x)\n", hdr->itt,
600 session->age & AGE_MASK);
601 return ISCSI_ERR_BAD_ITT;
604 if ((hdr->itt & CID_MASK) != (conn->id << CID_SHIFT)) {
605 printk(KERN_ERR "iscsi_tcp: received itt %x, expected "
606 "CID (%x)\n", hdr->itt, conn->id);
607 return ISCSI_ERR_BAD_ITT;
609 conn->in.itt = hdr->itt & ITT_MASK;
611 conn->in.itt = hdr->itt;
613 debug_tcp("opcode 0x%x offset %d copy %d ahslen %d datalen %d\n",
614 hdr->opcode, conn->in.offset, conn->in.copy,
615 conn->in.ahslen, conn->in.datalen);
617 if (conn->in.itt < session->cmds_max) {
618 ctask = (struct iscsi_cmd_task *)session->cmds[conn->in.itt];
621 printk(KERN_INFO "iscsi_tcp: dropping ctask with "
622 "itt 0x%x\n", ctask->itt);
623 conn->in.datalen = 0; /* force drop */
627 if (ctask->sc->SCp.phase != session->age) {
628 printk(KERN_ERR "iscsi_tcp: ctask's session age %d, "
629 "expected %d\n", ctask->sc->SCp.phase,
631 return ISCSI_ERR_SESSION_FAILED;
634 conn->in.ctask = ctask;
636 debug_scsi("rsp [op 0x%x cid %d sc %lx itt 0x%x len %d]\n",
637 hdr->opcode, conn->id, (long)ctask->sc,
638 ctask->itt, conn->in.datalen);
640 switch(conn->in.opcode) {
641 case ISCSI_OP_SCSI_CMD_RSP:
642 BUG_ON((void*)ctask != ctask->sc->SCp.ptr);
643 if (!conn->in.datalen)
644 rc = iscsi_cmd_rsp(conn, ctask);
647 * got sense or response data; copying PDU
648 * Header to the connection's header
651 memcpy(&conn->hdr, hdr,
652 sizeof(struct iscsi_hdr));
654 case ISCSI_OP_SCSI_DATA_IN:
655 BUG_ON((void*)ctask != ctask->sc->SCp.ptr);
656 /* save flags for non-exceptional status */
657 conn->in.flags = hdr->flags;
658 /* save cmd_status for sense data */
659 conn->in.cmd_status =
660 ((struct iscsi_data_rsp*)hdr)->cmd_status;
661 rc = iscsi_data_rsp(conn, ctask);
664 BUG_ON((void*)ctask != ctask->sc->SCp.ptr);
665 if (ctask->sc->sc_data_direction == DMA_TO_DEVICE)
666 rc = iscsi_r2t_rsp(conn, ctask);
668 rc = ISCSI_ERR_PROTO;
671 rc = ISCSI_ERR_BAD_OPCODE;
674 } else if (conn->in.itt >= ISCSI_MGMT_ITT_OFFSET &&
675 conn->in.itt < ISCSI_MGMT_ITT_OFFSET +
676 session->mgmtpool_max) {
677 struct iscsi_mgmt_task *mtask = (struct iscsi_mgmt_task *)
678 session->mgmt_cmds[conn->in.itt -
679 ISCSI_MGMT_ITT_OFFSET];
681 debug_scsi("immrsp [op 0x%x cid %d itt 0x%x len %d]\n",
682 conn->in.opcode, conn->id, mtask->itt,
685 switch(conn->in.opcode) {
686 case ISCSI_OP_LOGIN_RSP:
687 case ISCSI_OP_TEXT_RSP:
688 case ISCSI_OP_LOGOUT_RSP:
689 rc = iscsi_check_assign_cmdsn(session,
690 (struct iscsi_nopin*)hdr);
694 if (!conn->in.datalen) {
695 rc = iscsi_recv_pdu(iscsi_handle(conn), hdr,
697 if (conn->login_mtask != mtask) {
698 spin_lock(&session->lock);
699 __kfifo_put(session->mgmtpool.queue,
700 (void*)&mtask, sizeof(void*));
701 spin_unlock(&session->lock);
705 case ISCSI_OP_SCSI_TMFUNC_RSP:
706 rc = iscsi_check_assign_cmdsn(session,
707 (struct iscsi_nopin*)hdr);
711 if (conn->in.datalen || conn->in.ahslen) {
712 rc = ISCSI_ERR_PROTO;
715 conn->tmfrsp_pdus_cnt++;
716 spin_lock(&session->lock);
717 if (conn->tmabort_state == TMABORT_INITIAL) {
718 __kfifo_put(session->mgmtpool.queue,
719 (void*)&mtask, sizeof(void*));
720 conn->tmabort_state =
721 ((struct iscsi_tm_rsp *)hdr)->
722 response == ISCSI_TMF_RSP_COMPLETE ?
723 TMABORT_SUCCESS:TMABORT_FAILED;
724 /* unblock eh_abort() */
725 wake_up(&conn->ehwait);
727 spin_unlock(&session->lock);
729 case ISCSI_OP_NOOP_IN:
730 if (hdr->ttt != ISCSI_RESERVED_TAG) {
731 rc = ISCSI_ERR_PROTO;
734 rc = iscsi_check_assign_cmdsn(session,
735 (struct iscsi_nopin*)hdr);
738 conn->exp_statsn = be32_to_cpu(hdr->statsn) + 1;
740 if (!conn->in.datalen) {
741 struct iscsi_mgmt_task *mtask;
743 rc = iscsi_recv_pdu(iscsi_handle(conn), hdr,
745 mtask = (struct iscsi_mgmt_task *)
746 session->mgmt_cmds[conn->in.itt -
747 ISCSI_MGMT_ITT_OFFSET];
748 if (conn->login_mtask != mtask) {
749 spin_lock(&session->lock);
750 __kfifo_put(session->mgmtpool.queue,
751 (void*)&mtask, sizeof(void*));
752 spin_unlock(&session->lock);
757 rc = ISCSI_ERR_BAD_OPCODE;
760 } else if (conn->in.itt == ISCSI_RESERVED_TAG) {
761 switch(conn->in.opcode) {
762 case ISCSI_OP_NOOP_IN:
763 if (!conn->in.datalen) {
764 rc = iscsi_check_assign_cmdsn(session,
765 (struct iscsi_nopin*)hdr);
766 if (!rc && hdr->ttt != ISCSI_RESERVED_TAG)
767 rc = iscsi_recv_pdu(iscsi_handle(conn),
770 rc = ISCSI_ERR_PROTO;
772 case ISCSI_OP_REJECT:
773 /* we need sth like iscsi_reject_rsp()*/
774 case ISCSI_OP_ASYNC_EVENT:
775 /* we need sth like iscsi_async_event_rsp() */
776 rc = ISCSI_ERR_BAD_OPCODE;
779 rc = ISCSI_ERR_BAD_OPCODE;
783 rc = ISCSI_ERR_BAD_ITT;
789 * iscsi_ctask_copy - copy skb bits to the destanation cmd task
790 * @conn: iscsi connection
791 * @ctask: scsi command task
792 * @buf: buffer to copy to
793 * @buf_size: size of buffer
794 * @offset: offset within the buffer
797 * The function calls skb_copy_bits() and updates per-connection and
798 * per-cmd byte counters.
800 * Read counters (in bytes):
802 * conn->in.offset offset within in progress SKB
803 * conn->in.copy left to copy from in progress SKB
805 * conn->in.copied copied already from in progress SKB
806 * conn->data_copied copied already from in progress buffer
807 * ctask->sent total bytes sent up to the MidLayer
808 * ctask->data_count left to copy from in progress Data-In
809 * buf_left left to copy from in progress buffer
812 iscsi_ctask_copy(struct iscsi_conn *conn, struct iscsi_cmd_task *ctask,
813 void *buf, int buf_size, int offset)
815 int buf_left = buf_size - (conn->data_copied + offset);
816 int size = min(conn->in.copy, buf_left);
819 size = min(size, ctask->data_count);
821 debug_tcp("ctask_copy %d bytes at offset %d copied %d\n",
822 size, conn->in.offset, conn->in.copied);
825 BUG_ON(ctask->sent + size > ctask->total_length);
827 rc = skb_copy_bits(conn->in.skb, conn->in.offset,
828 (char*)buf + (offset + conn->data_copied), size);
829 /* must fit into skb->len */
832 conn->in.offset += size;
833 conn->in.copy -= size;
834 conn->in.copied += size;
835 conn->data_copied += size;
837 ctask->data_count -= size;
839 BUG_ON(conn->in.copy < 0);
840 BUG_ON(ctask->data_count < 0);
842 if (buf_size != (conn->data_copied + offset)) {
843 if (!ctask->data_count) {
844 BUG_ON(buf_size - conn->data_copied < 0);
845 /* done with this PDU */
846 return buf_size - conn->data_copied;
851 /* done with this buffer or with both - PDU and buffer */
852 conn->data_copied = 0;
857 * iscsi_tcp_copy - copy skb bits to the destanation buffer
858 * @conn: iscsi connection
859 * @buf: buffer to copy to
860 * @buf_size: number of bytes to copy
863 * The function calls skb_copy_bits() and updates per-connection
867 iscsi_tcp_copy(struct iscsi_conn *conn, void *buf, int buf_size)
869 int buf_left = buf_size - conn->data_copied;
870 int size = min(conn->in.copy, buf_left);
873 debug_tcp("tcp_copy %d bytes at offset %d copied %d\n",
874 size, conn->in.offset, conn->data_copied);
877 rc = skb_copy_bits(conn->in.skb, conn->in.offset,
878 (char*)buf + conn->data_copied, size);
881 conn->in.offset += size;
882 conn->in.copy -= size;
883 conn->in.copied += size;
884 conn->data_copied += size;
886 if (buf_size != conn->data_copied)
893 partial_sg_digest_update(struct iscsi_conn *conn, struct scatterlist *sg,
894 int offset, int length)
896 struct scatterlist temp;
898 memcpy(&temp, sg, sizeof(struct scatterlist));
899 temp.offset = offset;
900 temp.length = length;
901 crypto_digest_update(conn->data_rx_tfm, &temp, 1);
905 iscsi_recv_digest_update(struct iscsi_conn *conn, char* buf, int len)
907 struct scatterlist tmp;
909 sg_init_one(&tmp, buf, len);
910 crypto_digest_update(conn->data_rx_tfm, &tmp, 1);
913 static int iscsi_scsi_data_in(struct iscsi_conn *conn)
915 struct iscsi_cmd_task *ctask = conn->in.ctask;
916 struct scsi_cmnd *sc = ctask->sc;
917 struct scatterlist *sg;
918 int i, offset, rc = 0;
920 BUG_ON((void*)ctask != sc->SCp.ptr);
923 * copying Data-In into the Scsi_Cmnd
926 i = ctask->data_count;
927 rc = iscsi_ctask_copy(conn, ctask, sc->request_buffer,
928 sc->request_bufflen, ctask->data_offset);
931 if (conn->datadgst_en)
932 iscsi_recv_digest_update(conn, sc->request_buffer, i);
937 offset = ctask->data_offset;
938 sg = sc->request_buffer;
940 if (ctask->data_offset)
941 for (i = 0; i < ctask->sg_count; i++)
942 offset -= sg[i].length;
943 /* we've passed through partial sg*/
947 for (i = ctask->sg_count; i < sc->use_sg; i++) {
950 dest = kmap_atomic(sg[i].page, KM_SOFTIRQ0);
951 rc = iscsi_ctask_copy(conn, ctask, dest + sg[i].offset,
952 sg[i].length, offset);
953 kunmap_atomic(dest, KM_SOFTIRQ0);
955 /* continue with the next SKB/PDU */
958 if (conn->datadgst_en) {
960 crypto_digest_update(conn->data_rx_tfm,
963 partial_sg_digest_update(conn, &sg[i],
964 sg[i].offset + offset,
965 sg[i].length - offset);
971 if (!ctask->data_count) {
972 if (rc && conn->datadgst_en)
974 * data-in is complete, but buffer not...
976 partial_sg_digest_update(conn, &sg[i],
977 sg[i].offset, sg[i].length-rc);
985 BUG_ON(ctask->data_count);
988 /* check for non-exceptional status */
989 if (conn->in.flags & ISCSI_FLAG_DATA_STATUS) {
990 debug_scsi("done [sc %lx res %d itt 0x%x]\n",
991 (long)sc, sc->result, ctask->itt);
992 conn->scsirsp_pdus_cnt++;
993 iscsi_ctask_cleanup(conn, ctask);
1001 iscsi_data_recv(struct iscsi_conn *conn)
1003 struct iscsi_session *session = conn->session;
1006 switch(conn->in.opcode) {
1007 case ISCSI_OP_SCSI_DATA_IN:
1008 rc = iscsi_scsi_data_in(conn);
1010 case ISCSI_OP_SCSI_CMD_RSP: {
1013 * copying the entire Data Segment.
1015 if (iscsi_tcp_copy(conn, conn->data, conn->in.datalen)) {
1023 conn->in.hdr = &conn->hdr;
1024 conn->senselen = (conn->data[0] << 8) | conn->data[1];
1025 rc = iscsi_cmd_rsp(conn, conn->in.ctask);
1026 if (!rc && conn->datadgst_en)
1027 iscsi_recv_digest_update(conn, conn->data,
1031 case ISCSI_OP_TEXT_RSP:
1032 case ISCSI_OP_LOGIN_RSP:
1033 case ISCSI_OP_NOOP_IN: {
1034 struct iscsi_mgmt_task *mtask = NULL;
1036 if (conn->in.itt != ISCSI_RESERVED_TAG)
1037 mtask = (struct iscsi_mgmt_task *)
1038 session->mgmt_cmds[conn->in.itt -
1039 ISCSI_MGMT_ITT_OFFSET];
1042 * Collect data segment to the connection's data
1045 if (iscsi_tcp_copy(conn, conn->data, conn->in.datalen)) {
1050 rc = iscsi_recv_pdu(iscsi_handle(conn), conn->in.hdr,
1051 conn->data, conn->in.datalen);
1053 if (!rc && conn->datadgst_en &&
1054 conn->in.opcode != ISCSI_OP_LOGIN_RSP)
1055 iscsi_recv_digest_update(conn, conn->data,
1058 if (mtask && conn->login_mtask != mtask) {
1059 spin_lock(&session->lock);
1060 __kfifo_put(session->mgmtpool.queue, (void*)&mtask,
1062 spin_unlock(&session->lock);
1066 case ISCSI_OP_ASYNC_EVENT:
1067 case ISCSI_OP_REJECT:
1076 * iscsi_tcp_data_recv - TCP receive in sendfile fashion
1077 * @rd_desc: read descriptor
1078 * @skb: socket buffer
1079 * @offset: offset in skb
1080 * @len: skb->len - offset
1083 iscsi_tcp_data_recv(read_descriptor_t *rd_desc, struct sk_buff *skb,
1084 unsigned int offset, size_t len)
1087 struct iscsi_conn *conn = rd_desc->arg.data;
1089 char pad[ISCSI_PAD_LEN];
1090 struct scatterlist sg;
1093 * Save current SKB and its offset in the corresponding
1094 * connection context.
1096 conn->in.copy = skb->len - offset;
1097 conn->in.offset = offset;
1099 conn->in.len = conn->in.copy;
1100 BUG_ON(conn->in.copy <= 0);
1101 debug_tcp("in %d bytes\n", conn->in.copy);
1104 conn->in.copied = 0;
1107 if (unlikely(conn->suspend_rx)) {
1108 debug_tcp("conn %d Rx suspended!\n", conn->id);
1112 if (conn->in_progress == IN_PROGRESS_WAIT_HEADER ||
1113 conn->in_progress == IN_PROGRESS_HEADER_GATHER) {
1114 rc = iscsi_hdr_extract(conn);
1119 iscsi_conn_failure(conn, rc);
1125 * Verify and process incoming PDU header.
1127 rc = iscsi_hdr_recv(conn);
1128 if (!rc && conn->in.datalen) {
1129 if (conn->datadgst_en) {
1130 BUG_ON(!conn->data_rx_tfm);
1131 crypto_digest_init(conn->data_rx_tfm);
1133 conn->in_progress = IN_PROGRESS_DATA_RECV;
1135 iscsi_conn_failure(conn, rc);
1140 if (conn->in_progress == IN_PROGRESS_DDIGEST_RECV) {
1141 uint32_t recv_digest;
1142 debug_tcp("extra data_recv offset %d copy %d\n",
1143 conn->in.offset, conn->in.copy);
1144 skb_copy_bits(conn->in.skb, conn->in.offset,
1146 conn->in.offset += 4;
1148 if (recv_digest != conn->in.datadgst) {
1149 debug_tcp("iscsi_tcp: data digest error!"
1150 "0x%x != 0x%x\n", recv_digest,
1152 iscsi_conn_failure(conn, ISCSI_ERR_DATA_DGST);
1155 debug_tcp("iscsi_tcp: data digest match!"
1156 "0x%x == 0x%x\n", recv_digest,
1158 conn->in_progress = IN_PROGRESS_WAIT_HEADER;
1162 if (conn->in_progress == IN_PROGRESS_DATA_RECV && conn->in.copy) {
1164 debug_tcp("data_recv offset %d copy %d\n",
1165 conn->in.offset, conn->in.copy);
1167 rc = iscsi_data_recv(conn);
1169 if (rc == -EAGAIN) {
1170 rd_desc->count = conn->in.datalen -
1171 conn->in.ctask->data_count;
1174 iscsi_conn_failure(conn, rc);
1177 conn->in.copy -= conn->in.padding;
1178 conn->in.offset += conn->in.padding;
1179 if (conn->datadgst_en) {
1180 if (conn->in.padding) {
1181 debug_tcp("padding -> %d\n", conn->in.padding);
1182 memset(pad, 0, conn->in.padding);
1183 sg_init_one(&sg, pad, conn->in.padding);
1184 crypto_digest_update(conn->data_rx_tfm, &sg, 1);
1186 crypto_digest_final(conn->data_rx_tfm,
1187 (u8 *) & conn->in.datadgst);
1188 debug_tcp("rx digest 0x%x\n", conn->in.datadgst);
1189 conn->in_progress = IN_PROGRESS_DDIGEST_RECV;
1191 conn->in_progress = IN_PROGRESS_WAIT_HEADER;
1194 debug_tcp("f, processed %d from out of %d padding %d\n",
1195 conn->in.offset - offset, (int)len, conn->in.padding);
1196 BUG_ON(conn->in.offset - offset > len);
1198 if (conn->in.offset - offset != len) {
1199 debug_tcp("continue to process %d bytes\n",
1200 (int)len - (conn->in.offset - offset));
1205 processed = conn->in.offset - offset;
1206 BUG_ON(processed == 0);
1210 processed = conn->in.offset - offset;
1211 debug_tcp("c, processed %d from out of %d rd_desc_cnt %d\n",
1212 processed, (int)len, (int)rd_desc->count);
1213 BUG_ON(processed == 0);
1214 BUG_ON(processed > len);
1216 conn->rxdata_octets += processed;
1221 iscsi_tcp_data_ready(struct sock *sk, int flag)
1223 struct iscsi_conn *conn = sk->sk_user_data;
1224 read_descriptor_t rd_desc;
1226 read_lock(&sk->sk_callback_lock);
1228 /* use rd_desc to pass 'conn' to iscsi_tcp_data_recv */
1229 rd_desc.arg.data = conn;
1231 tcp_read_sock(sk, &rd_desc, iscsi_tcp_data_recv);
1233 read_unlock(&sk->sk_callback_lock);
1237 iscsi_tcp_state_change(struct sock *sk)
1239 struct iscsi_conn *conn;
1240 struct iscsi_session *session;
1241 void (*old_state_change)(struct sock *);
1243 read_lock(&sk->sk_callback_lock);
1245 conn = (struct iscsi_conn*)sk->sk_user_data;
1246 session = conn->session;
1248 if ((sk->sk_state == TCP_CLOSE_WAIT ||
1249 sk->sk_state == TCP_CLOSE) &&
1250 !atomic_read(&sk->sk_rmem_alloc)) {
1251 debug_tcp("iscsi_tcp_state_change: TCP_CLOSE|TCP_CLOSE_WAIT\n");
1252 iscsi_conn_failure(conn, ISCSI_ERR_CONN_FAILED);
1255 old_state_change = conn->old_state_change;
1257 read_unlock(&sk->sk_callback_lock);
1259 old_state_change(sk);
1263 * iscsi_write_space - Called when more output buffer space is available
1264 * @sk: socket space is available for
1267 iscsi_write_space(struct sock *sk)
1269 struct iscsi_conn *conn = (struct iscsi_conn*)sk->sk_user_data;
1270 conn->old_write_space(sk);
1271 debug_tcp("iscsi_write_space: cid %d\n", conn->id);
1272 clear_bit(SUSPEND_BIT, &conn->suspend_tx);
1273 schedule_work(&conn->xmitwork);
1277 iscsi_conn_set_callbacks(struct iscsi_conn *conn)
1279 struct sock *sk = conn->sock->sk;
1281 /* assign new callbacks */
1282 write_lock_bh(&sk->sk_callback_lock);
1283 sk->sk_user_data = conn;
1284 conn->old_data_ready = sk->sk_data_ready;
1285 conn->old_state_change = sk->sk_state_change;
1286 conn->old_write_space = sk->sk_write_space;
1287 sk->sk_data_ready = iscsi_tcp_data_ready;
1288 sk->sk_state_change = iscsi_tcp_state_change;
1289 sk->sk_write_space = iscsi_write_space;
1290 write_unlock_bh(&sk->sk_callback_lock);
1294 iscsi_conn_restore_callbacks(struct iscsi_conn *conn)
1296 struct sock *sk = conn->sock->sk;
1298 /* restore socket callbacks, see also: iscsi_conn_set_callbacks() */
1299 write_lock_bh(&sk->sk_callback_lock);
1300 sk->sk_user_data = NULL;
1301 sk->sk_data_ready = conn->old_data_ready;
1302 sk->sk_state_change = conn->old_state_change;
1303 sk->sk_write_space = conn->old_write_space;
1304 sk->sk_no_check = 0;
1305 write_unlock_bh(&sk->sk_callback_lock);
1309 * iscsi_send - generic send routine
1310 * @sk: kernel's socket
1311 * @buf: buffer to write from
1312 * @size: actual size to write
1313 * @flags: socket's flags
1316 * depending on buffer will use tcp_sendpage() or tcp_sendmsg().
1317 * buf->sg.offset == -1 tells us that buffer is non S/G and forces
1318 * to use tcp_sendmsg().
1321 iscsi_send(struct socket *sk, struct iscsi_buf *buf, int size, int flags)
1325 if ((int)buf->sg.offset >= 0) {
1326 int offset = buf->sg.offset + buf->sent;
1329 res = sk->ops->sendpage(sk, buf->sg.page, offset, size, flags);
1333 buf->iov.iov_base = iscsi_buf_iov_base(buf);
1334 buf->iov.iov_len = size;
1336 memset(&msg, 0, sizeof(struct msghdr));
1339 res = kernel_sendmsg(sk, &msg, &buf->iov, 1, size);
1346 * iscsi_sendhdr - send PDU Header via tcp_sendpage()
1347 * @conn: iscsi connection
1348 * @buf: buffer to write from
1349 * @datalen: lenght of data to be sent after the header
1355 iscsi_sendhdr(struct iscsi_conn *conn, struct iscsi_buf *buf, int datalen)
1357 struct socket *sk = conn->sock;
1358 int flags = 0; /* MSG_DONTWAIT; */
1361 size = buf->sg.length - buf->sent;
1362 BUG_ON(buf->sent + size > buf->sg.length);
1363 if (buf->sent + size != buf->sg.length || datalen)
1366 res = iscsi_send(sk, buf, size, flags);
1367 debug_tcp("sendhdr %d bytes, sent %d res %d\n", size, buf->sent, res);
1369 conn->txdata_octets += res;
1374 } else if (res == -EAGAIN) {
1375 conn->sendpage_failures_cnt++;
1376 set_bit(SUSPEND_BIT, &conn->suspend_tx);
1377 } else if (res == -EPIPE)
1378 iscsi_conn_failure(conn, ISCSI_ERR_CONN_FAILED);
1384 * iscsi_sendpage - send one page of iSCSI Data-Out.
1385 * @conn: iscsi connection
1386 * @buf: buffer to write from
1387 * @count: remaining data
1388 * @sent: number of bytes sent
1394 iscsi_sendpage(struct iscsi_conn *conn, struct iscsi_buf *buf,
1395 int *count, int *sent)
1397 struct socket *sk = conn->sock;
1398 int flags = 0; /* MSG_DONTWAIT; */
1401 size = buf->sg.length - buf->sent;
1402 BUG_ON(buf->sent + size > buf->sg.length);
1405 if (buf->sent + size != buf->sg.length || *count != size)
1408 res = iscsi_send(sk, buf, size, flags);
1409 debug_tcp("sendpage: %d bytes, sent %d left %d sent %d res %d\n",
1410 size, buf->sent, *count, *sent, res);
1412 conn->txdata_octets += res;
1419 } else if (res == -EAGAIN) {
1420 conn->sendpage_failures_cnt++;
1421 set_bit(SUSPEND_BIT, &conn->suspend_tx);
1422 } else if (res == -EPIPE)
1423 iscsi_conn_failure(conn, ISCSI_ERR_CONN_FAILED);
1429 iscsi_data_digest_init(struct iscsi_conn *conn, struct iscsi_cmd_task *ctask)
1431 BUG_ON(!conn->data_tx_tfm);
1432 crypto_digest_init(conn->data_tx_tfm);
1433 ctask->digest_count = 4;
1437 iscsi_buf_data_digest_update(struct iscsi_conn *conn, struct iscsi_buf *buf)
1439 struct scatterlist sg;
1441 if (buf->sg.offset != -1)
1442 crypto_digest_update(conn->data_tx_tfm, &buf->sg, 1);
1444 sg_init_one(&sg, (char *)buf->sg.page, buf->sg.length);
1445 crypto_digest_update(conn->data_tx_tfm, &sg, 1);
1450 iscsi_digest_final_send(struct iscsi_conn *conn, struct iscsi_cmd_task *ctask,
1451 struct iscsi_buf *buf, uint32_t *digest, int final)
1457 crypto_digest_final(conn->data_tx_tfm, (u8*)digest);
1459 iscsi_buf_init_virt(buf, (char*)digest, 4);
1460 rc = iscsi_sendpage(conn, buf, &ctask->digest_count, &sent);
1462 ctask->datadigest = *digest;
1463 ctask->xmstate |= XMSTATE_DATA_DIGEST;
1465 ctask->digest_count = 4;
1470 * iscsi_solicit_data_cont - initialize next Data-Out
1471 * @conn: iscsi connection
1472 * @ctask: scsi command task
1474 * @left: bytes left to transfer
1477 * Initialize next Data-Out within this R2T sequence and continue
1478 * to process next Scatter-Gather element(if any) of this SCSI command.
1480 * Called under connection lock.
1483 iscsi_solicit_data_cont(struct iscsi_conn *conn, struct iscsi_cmd_task *ctask,
1484 struct iscsi_r2t_info *r2t, int left)
1486 struct iscsi_data *hdr;
1487 struct iscsi_data_task *dtask;
1488 struct scsi_cmnd *sc = ctask->sc;
1491 dtask = mempool_alloc(ctask->datapool, GFP_ATOMIC);
1494 memset(hdr, 0, sizeof(struct iscsi_data));
1495 hdr->ttt = r2t->ttt;
1496 hdr->datasn = cpu_to_be32(r2t->solicit_datasn);
1497 r2t->solicit_datasn++;
1498 hdr->opcode = ISCSI_OP_SCSI_DATA_OUT;
1499 memcpy(hdr->lun, ctask->hdr.lun, sizeof(hdr->lun));
1500 hdr->itt = ctask->hdr.itt;
1501 hdr->exp_statsn = r2t->exp_statsn;
1502 new_offset = r2t->data_offset + r2t->sent;
1503 hdr->offset = cpu_to_be32(new_offset);
1504 if (left > conn->max_xmit_dlength) {
1505 hton24(hdr->dlength, conn->max_xmit_dlength);
1506 r2t->data_count = conn->max_xmit_dlength;
1508 hton24(hdr->dlength, left);
1509 r2t->data_count = left;
1510 hdr->flags = ISCSI_FLAG_CMD_FINAL;
1512 conn->dataout_pdus_cnt++;
1514 iscsi_buf_init_virt(&r2t->headbuf, (char*)hdr,
1515 sizeof(struct iscsi_hdr));
1519 if (sc->use_sg && !iscsi_buf_left(&r2t->sendbuf)) {
1520 BUG_ON(ctask->bad_sg == r2t->sg);
1521 iscsi_buf_init_sg(&r2t->sendbuf, r2t->sg);
1524 iscsi_buf_init_iov(&ctask->sendbuf,
1525 (char*)sc->request_buffer + new_offset,
1528 list_add(&dtask->item, &ctask->dataqueue);
1532 iscsi_unsolicit_data_init(struct iscsi_conn *conn, struct iscsi_cmd_task *ctask)
1534 struct iscsi_data *hdr;
1535 struct iscsi_data_task *dtask;
1537 dtask = mempool_alloc(ctask->datapool, GFP_ATOMIC);
1540 memset(hdr, 0, sizeof(struct iscsi_data));
1541 hdr->ttt = cpu_to_be32(ISCSI_RESERVED_TAG);
1542 hdr->datasn = cpu_to_be32(ctask->unsol_datasn);
1543 ctask->unsol_datasn++;
1544 hdr->opcode = ISCSI_OP_SCSI_DATA_OUT;
1545 memcpy(hdr->lun, ctask->hdr.lun, sizeof(hdr->lun));
1546 hdr->itt = ctask->hdr.itt;
1547 hdr->exp_statsn = cpu_to_be32(conn->exp_statsn);
1548 hdr->offset = cpu_to_be32(ctask->total_length -
1549 ctask->r2t_data_count -
1550 ctask->unsol_count);
1551 if (ctask->unsol_count > conn->max_xmit_dlength) {
1552 hton24(hdr->dlength, conn->max_xmit_dlength);
1553 ctask->data_count = conn->max_xmit_dlength;
1556 hton24(hdr->dlength, ctask->unsol_count);
1557 ctask->data_count = ctask->unsol_count;
1558 hdr->flags = ISCSI_FLAG_CMD_FINAL;
1561 iscsi_buf_init_virt(&ctask->headbuf, (char*)hdr,
1562 sizeof(struct iscsi_hdr));
1564 list_add(&dtask->item, &ctask->dataqueue);
1566 ctask->dtask = dtask;
1570 * iscsi_cmd_init - Initialize iSCSI SCSI_READ or SCSI_WRITE commands
1571 * @conn: iscsi connection
1572 * @ctask: scsi command task
1576 iscsi_cmd_init(struct iscsi_conn *conn, struct iscsi_cmd_task *ctask,
1577 struct scsi_cmnd *sc)
1579 struct iscsi_session *session = conn->session;
1581 BUG_ON(__kfifo_len(ctask->r2tqueue));
1585 ctask->hdr.opcode = ISCSI_OP_SCSI_CMD;
1586 ctask->hdr.flags = ISCSI_ATTR_SIMPLE;
1587 int_to_scsilun(sc->device->lun, (struct scsi_lun *)ctask->hdr.lun);
1588 ctask->hdr.itt = ctask->itt | (conn->id << CID_SHIFT) |
1589 (session->age << AGE_SHIFT);
1590 ctask->hdr.data_length = cpu_to_be32(sc->request_bufflen);
1591 ctask->hdr.cmdsn = cpu_to_be32(session->cmdsn); session->cmdsn++;
1592 ctask->hdr.exp_statsn = cpu_to_be32(conn->exp_statsn);
1593 memcpy(ctask->hdr.cdb, sc->cmnd, sc->cmd_len);
1594 memset(&ctask->hdr.cdb[sc->cmd_len], 0, MAX_COMMAND_SIZE - sc->cmd_len);
1596 ctask->mtask = NULL;
1598 ctask->sg_count = 0;
1600 ctask->total_length = sc->request_bufflen;
1602 if (sc->sc_data_direction == DMA_TO_DEVICE) {
1603 ctask->exp_r2tsn = 0;
1604 ctask->hdr.flags |= ISCSI_FLAG_CMD_WRITE;
1605 BUG_ON(ctask->total_length == 0);
1607 struct scatterlist *sg = sc->request_buffer;
1609 iscsi_buf_init_sg(&ctask->sendbuf,
1610 &sg[ctask->sg_count++]);
1612 ctask->bad_sg = sg + sc->use_sg;
1614 iscsi_buf_init_iov(&ctask->sendbuf, sc->request_buffer,
1615 sc->request_bufflen);
1621 * imm_count bytes to be sent right after
1624 * unsol_count bytes(as Data-Out) to be sent
1625 * without R2T ack right after
1628 * r2t_data_count bytes to be sent via R2T ack's
1630 * pad_count bytes to be sent as zero-padding
1632 ctask->imm_count = 0;
1633 ctask->unsol_count = 0;
1634 ctask->unsol_datasn = 0;
1635 ctask->xmstate = XMSTATE_W_HDR;
1636 /* calculate write padding */
1637 ctask->pad_count = ctask->total_length & (ISCSI_PAD_LEN-1);
1638 if (ctask->pad_count) {
1639 ctask->pad_count = ISCSI_PAD_LEN - ctask->pad_count;
1640 debug_scsi("write padding %d bytes\n",
1642 ctask->xmstate |= XMSTATE_W_PAD;
1644 if (session->imm_data_en) {
1645 if (ctask->total_length >= session->first_burst)
1646 ctask->imm_count = min(session->first_burst,
1647 conn->max_xmit_dlength);
1649 ctask->imm_count = min(ctask->total_length,
1650 conn->max_xmit_dlength);
1651 hton24(ctask->hdr.dlength, ctask->imm_count);
1652 ctask->xmstate |= XMSTATE_IMM_DATA;
1654 zero_data(ctask->hdr.dlength);
1656 if (!session->initial_r2t_en)
1657 ctask->unsol_count = min(session->first_burst,
1658 ctask->total_length) - ctask->imm_count;
1659 if (!ctask->unsol_count)
1660 /* No unsolicit Data-Out's */
1661 ctask->hdr.flags |= ISCSI_FLAG_CMD_FINAL;
1663 ctask->xmstate |= XMSTATE_UNS_HDR | XMSTATE_UNS_INIT;
1665 ctask->r2t_data_count = ctask->total_length -
1669 debug_scsi("cmd [itt %x total %d imm %d imm_data %d "
1671 ctask->itt, ctask->total_length, ctask->imm_count,
1672 ctask->unsol_count, ctask->r2t_data_count);
1674 ctask->hdr.flags |= ISCSI_FLAG_CMD_FINAL;
1675 if (sc->sc_data_direction == DMA_FROM_DEVICE)
1676 ctask->hdr.flags |= ISCSI_FLAG_CMD_READ;
1678 ctask->xmstate = XMSTATE_R_HDR;
1679 zero_data(ctask->hdr.dlength);
1682 iscsi_buf_init_virt(&ctask->headbuf, (char*)&ctask->hdr,
1683 sizeof(struct iscsi_hdr));
1684 conn->scsicmd_pdus_cnt++;
1688 * iscsi_mtask_xmit - xmit management(immediate) task
1689 * @conn: iscsi connection
1690 * @mtask: task management task
1693 * The function can return -EAGAIN in which case caller must
1694 * call it again later, or recover. '0' return code means successful
1697 * Management xmit state machine consists of two states:
1698 * IN_PROGRESS_IMM_HEAD - PDU Header xmit in progress
1699 * IN_PROGRESS_IMM_DATA - PDU Data xmit in progress
1702 iscsi_mtask_xmit(struct iscsi_conn *conn, struct iscsi_mgmt_task *mtask)
1705 debug_scsi("mtask deq [cid %d state %x itt 0x%x]\n",
1706 conn->id, mtask->xmstate, mtask->itt);
1708 if (mtask->xmstate & XMSTATE_IMM_HDR) {
1709 mtask->xmstate &= ~XMSTATE_IMM_HDR;
1710 if (mtask->data_count)
1711 mtask->xmstate |= XMSTATE_IMM_DATA;
1712 if (conn->c_stage != ISCSI_CONN_INITIAL_STAGE &&
1713 conn->stop_stage != STOP_CONN_RECOVER &&
1715 iscsi_hdr_digest(conn, &mtask->headbuf,
1716 (u8*)mtask->hdrext);
1717 if (iscsi_sendhdr(conn, &mtask->headbuf, mtask->data_count)) {
1718 mtask->xmstate |= XMSTATE_IMM_HDR;
1719 if (mtask->data_count)
1720 mtask->xmstate &= ~XMSTATE_IMM_DATA;
1725 if (mtask->xmstate & XMSTATE_IMM_DATA) {
1726 BUG_ON(!mtask->data_count);
1727 mtask->xmstate &= ~XMSTATE_IMM_DATA;
1728 /* FIXME: implement.
1729 * Virtual buffer could be spreaded across multiple pages...
1732 if (iscsi_sendpage(conn, &mtask->sendbuf,
1733 &mtask->data_count, &mtask->sent)) {
1734 mtask->xmstate |= XMSTATE_IMM_DATA;
1737 } while (mtask->data_count);
1740 BUG_ON(mtask->xmstate != XMSTATE_IDLE);
1745 handle_xmstate_r_hdr(struct iscsi_conn *conn, struct iscsi_cmd_task *ctask)
1747 ctask->xmstate &= ~XMSTATE_R_HDR;
1748 if (conn->hdrdgst_en)
1749 iscsi_hdr_digest(conn, &ctask->headbuf, (u8*)ctask->hdrext);
1750 if (!iscsi_sendhdr(conn, &ctask->headbuf, 0)) {
1751 BUG_ON(ctask->xmstate != XMSTATE_IDLE);
1752 return 0; /* wait for Data-In */
1754 ctask->xmstate |= XMSTATE_R_HDR;
1759 handle_xmstate_w_hdr(struct iscsi_conn *conn, struct iscsi_cmd_task *ctask)
1761 ctask->xmstate &= ~XMSTATE_W_HDR;
1762 if (conn->hdrdgst_en)
1763 iscsi_hdr_digest(conn, &ctask->headbuf, (u8*)ctask->hdrext);
1764 if (iscsi_sendhdr(conn, &ctask->headbuf, ctask->imm_count)) {
1765 ctask->xmstate |= XMSTATE_W_HDR;
1772 handle_xmstate_data_digest(struct iscsi_conn *conn,
1773 struct iscsi_cmd_task *ctask)
1775 ctask->xmstate &= ~XMSTATE_DATA_DIGEST;
1776 debug_tcp("resent data digest 0x%x\n", ctask->datadigest);
1777 if (iscsi_digest_final_send(conn, ctask, &ctask->immbuf,
1778 &ctask->datadigest, 0)) {
1779 ctask->xmstate |= XMSTATE_DATA_DIGEST;
1780 debug_tcp("resent data digest 0x%x fail!\n",
1788 handle_xmstate_imm_data(struct iscsi_conn *conn, struct iscsi_cmd_task *ctask)
1790 BUG_ON(!ctask->imm_count);
1791 ctask->xmstate &= ~XMSTATE_IMM_DATA;
1793 if (conn->datadgst_en) {
1794 iscsi_data_digest_init(conn, ctask);
1795 ctask->immdigest = 0;
1799 if (iscsi_sendpage(conn, &ctask->sendbuf, &ctask->imm_count,
1801 ctask->xmstate |= XMSTATE_IMM_DATA;
1802 if (conn->datadgst_en) {
1803 crypto_digest_final(conn->data_tx_tfm,
1804 (u8*)&ctask->immdigest);
1805 debug_tcp("tx imm sendpage fail 0x%x\n",
1810 if (conn->datadgst_en)
1811 iscsi_buf_data_digest_update(conn, &ctask->sendbuf);
1813 if (!ctask->imm_count)
1815 iscsi_buf_init_sg(&ctask->sendbuf,
1816 &ctask->sg[ctask->sg_count++]);
1819 if (conn->datadgst_en && !(ctask->xmstate & XMSTATE_W_PAD)) {
1820 if (iscsi_digest_final_send(conn, ctask, &ctask->immbuf,
1821 &ctask->immdigest, 1)) {
1822 debug_tcp("sending imm digest 0x%x fail!\n",
1826 debug_tcp("sending imm digest 0x%x\n", ctask->immdigest);
1833 handle_xmstate_uns_hdr(struct iscsi_conn *conn, struct iscsi_cmd_task *ctask)
1835 struct iscsi_data_task *dtask;
1837 ctask->xmstate |= XMSTATE_UNS_DATA;
1838 if (ctask->xmstate & XMSTATE_UNS_INIT) {
1839 iscsi_unsolicit_data_init(conn, ctask);
1840 BUG_ON(!ctask->dtask);
1841 dtask = ctask->dtask;
1842 if (conn->hdrdgst_en)
1843 iscsi_hdr_digest(conn, &ctask->headbuf,
1844 (u8*)dtask->hdrext);
1845 ctask->xmstate &= ~XMSTATE_UNS_INIT;
1847 if (iscsi_sendhdr(conn, &ctask->headbuf, ctask->data_count)) {
1848 ctask->xmstate &= ~XMSTATE_UNS_DATA;
1849 ctask->xmstate |= XMSTATE_UNS_HDR;
1853 debug_scsi("uns dout [itt 0x%x dlen %d sent %d]\n",
1854 ctask->itt, ctask->unsol_count, ctask->sent);
1859 handle_xmstate_uns_data(struct iscsi_conn *conn, struct iscsi_cmd_task *ctask)
1861 struct iscsi_data_task *dtask = ctask->dtask;
1863 BUG_ON(!ctask->data_count);
1864 ctask->xmstate &= ~XMSTATE_UNS_DATA;
1866 if (conn->datadgst_en) {
1867 iscsi_data_digest_init(conn, ctask);
1872 int start = ctask->sent;
1874 if (iscsi_sendpage(conn, &ctask->sendbuf, &ctask->data_count,
1876 ctask->unsol_count -= ctask->sent - start;
1877 ctask->xmstate |= XMSTATE_UNS_DATA;
1878 /* will continue with this ctask later.. */
1879 if (conn->datadgst_en) {
1880 crypto_digest_final(conn->data_tx_tfm,
1881 (u8 *)&dtask->digest);
1882 debug_tcp("tx uns data fail 0x%x\n",
1888 BUG_ON(ctask->sent > ctask->total_length);
1889 ctask->unsol_count -= ctask->sent - start;
1892 * XXX:we may run here with un-initial sendbuf.
1895 if (conn->datadgst_en && ctask->sent - start > 0)
1896 iscsi_buf_data_digest_update(conn, &ctask->sendbuf);
1898 if (!ctask->data_count)
1900 iscsi_buf_init_sg(&ctask->sendbuf,
1901 &ctask->sg[ctask->sg_count++]);
1903 BUG_ON(ctask->unsol_count < 0);
1906 * Done with the Data-Out. Next, check if we need
1907 * to send another unsolicited Data-Out.
1909 if (ctask->unsol_count) {
1910 if (conn->datadgst_en) {
1911 if (iscsi_digest_final_send(conn, ctask,
1913 &dtask->digest, 1)) {
1914 debug_tcp("send uns digest 0x%x fail\n",
1918 debug_tcp("sending uns digest 0x%x, more uns\n",
1921 ctask->xmstate |= XMSTATE_UNS_INIT;
1925 if (conn->datadgst_en && !(ctask->xmstate & XMSTATE_W_PAD)) {
1926 if (iscsi_digest_final_send(conn, ctask,
1928 &dtask->digest, 1)) {
1929 debug_tcp("send last uns digest 0x%x fail\n",
1933 debug_tcp("sending uns digest 0x%x\n",dtask->digest);
1940 handle_xmstate_sol_data(struct iscsi_conn *conn, struct iscsi_cmd_task *ctask)
1942 struct iscsi_session *session = conn->session;
1943 struct iscsi_r2t_info *r2t = ctask->r2t;
1944 struct iscsi_data_task *dtask = r2t->dtask;
1947 ctask->xmstate &= ~XMSTATE_SOL_DATA;
1948 ctask->dtask = dtask;
1950 if (conn->datadgst_en) {
1951 iscsi_data_digest_init(conn, ctask);
1956 * send Data-Out whitnin this R2T sequence.
1958 if (!r2t->data_count)
1961 if (iscsi_sendpage(conn, &r2t->sendbuf, &r2t->data_count, &r2t->sent)) {
1962 ctask->xmstate |= XMSTATE_SOL_DATA;
1963 /* will continue with this ctask later.. */
1964 if (conn->datadgst_en) {
1965 crypto_digest_final(conn->data_tx_tfm,
1966 (u8 *)&dtask->digest);
1967 debug_tcp("r2t data send fail 0x%x\n", dtask->digest);
1972 BUG_ON(r2t->data_count < 0);
1973 if (conn->datadgst_en)
1974 iscsi_buf_data_digest_update(conn, &r2t->sendbuf);
1976 if (r2t->data_count) {
1977 BUG_ON(ctask->sc->use_sg == 0);
1978 if (!iscsi_buf_left(&r2t->sendbuf)) {
1979 BUG_ON(ctask->bad_sg == r2t->sg);
1980 iscsi_buf_init_sg(&r2t->sendbuf, r2t->sg);
1988 * Done with this Data-Out. Next, check if we have
1989 * to send another Data-Out for this R2T.
1991 BUG_ON(r2t->data_length - r2t->sent < 0);
1992 left = r2t->data_length - r2t->sent;
1994 if (conn->datadgst_en) {
1995 if (iscsi_digest_final_send(conn, ctask,
1997 &dtask->digest, 1)) {
1998 debug_tcp("send r2t data digest 0x%x"
1999 "fail\n", dtask->digest);
2002 debug_tcp("r2t data send digest 0x%x\n",
2005 iscsi_solicit_data_cont(conn, ctask, r2t, left);
2006 ctask->xmstate |= XMSTATE_SOL_DATA;
2007 ctask->xmstate &= ~XMSTATE_SOL_HDR;
2012 * Done with this R2T. Check if there are more
2013 * outstanding R2Ts ready to be processed.
2015 BUG_ON(ctask->r2t_data_count - r2t->data_length < 0);
2016 if (conn->datadgst_en) {
2017 if (iscsi_digest_final_send(conn, ctask, &dtask->digestbuf,
2018 &dtask->digest, 1)) {
2019 debug_tcp("send last r2t data digest 0x%x"
2020 "fail\n", dtask->digest);
2023 debug_tcp("r2t done dout digest 0x%x\n", dtask->digest);
2026 ctask->r2t_data_count -= r2t->data_length;
2028 spin_lock_bh(&session->lock);
2029 __kfifo_put(ctask->r2tpool.queue, (void*)&r2t, sizeof(void*));
2030 spin_unlock_bh(&session->lock);
2031 if (__kfifo_get(ctask->r2tqueue, (void*)&r2t, sizeof(void*))) {
2033 ctask->xmstate |= XMSTATE_SOL_DATA;
2034 ctask->xmstate &= ~XMSTATE_SOL_HDR;
2042 handle_xmstate_w_pad(struct iscsi_conn *conn, struct iscsi_cmd_task *ctask)
2044 struct iscsi_data_task *dtask = ctask->dtask;
2047 ctask->xmstate &= ~XMSTATE_W_PAD;
2048 iscsi_buf_init_virt(&ctask->sendbuf, (char*)&ctask->pad,
2050 if (iscsi_sendpage(conn, &ctask->sendbuf, &ctask->pad_count, &sent)) {
2051 ctask->xmstate |= XMSTATE_W_PAD;
2055 if (conn->datadgst_en) {
2056 iscsi_buf_data_digest_update(conn, &ctask->sendbuf);
2059 if (iscsi_digest_final_send(conn, ctask, &ctask->immbuf,
2060 &ctask->immdigest, 1)) {
2061 debug_tcp("send padding digest 0x%x"
2062 "fail!\n", ctask->immdigest);
2065 debug_tcp("done with padding, digest 0x%x\n",
2068 if (iscsi_digest_final_send(conn, ctask,
2070 &dtask->digest, 1)) {
2071 debug_tcp("send padding digest 0x%x"
2072 "fail\n", dtask->digest);
2075 debug_tcp("done with padding, digest 0x%x\n",
2084 iscsi_ctask_xmit(struct iscsi_conn *conn, struct iscsi_cmd_task *ctask)
2088 debug_scsi("ctask deq [cid %d xmstate %x itt 0x%x]\n",
2089 conn->id, ctask->xmstate, ctask->itt);
2092 * serialize with TMF AbortTask
2097 if (ctask->xmstate & XMSTATE_R_HDR) {
2098 rc = handle_xmstate_r_hdr(conn, ctask);
2102 if (ctask->xmstate & XMSTATE_W_HDR) {
2103 rc = handle_xmstate_w_hdr(conn, ctask);
2108 /* XXX: for data digest xmit recover */
2109 if (ctask->xmstate & XMSTATE_DATA_DIGEST) {
2110 rc = handle_xmstate_data_digest(conn, ctask);
2115 if (ctask->xmstate & XMSTATE_IMM_DATA) {
2116 rc = handle_xmstate_imm_data(conn, ctask);
2121 if (ctask->xmstate & XMSTATE_UNS_HDR) {
2122 BUG_ON(!ctask->unsol_count);
2123 ctask->xmstate &= ~XMSTATE_UNS_HDR;
2124 unsolicit_head_again:
2125 rc = handle_xmstate_uns_hdr(conn, ctask);
2130 if (ctask->xmstate & XMSTATE_UNS_DATA) {
2131 rc = handle_xmstate_uns_data(conn, ctask);
2133 goto unsolicit_head_again;
2139 if (ctask->xmstate & XMSTATE_SOL_HDR) {
2140 struct iscsi_r2t_info *r2t;
2142 ctask->xmstate &= ~XMSTATE_SOL_HDR;
2143 ctask->xmstate |= XMSTATE_SOL_DATA;
2145 __kfifo_get(ctask->r2tqueue, (void*)&ctask->r2t,
2149 if (conn->hdrdgst_en)
2150 iscsi_hdr_digest(conn, &r2t->headbuf,
2151 (u8*)r2t->dtask->hdrext);
2152 if (iscsi_sendhdr(conn, &r2t->headbuf, r2t->data_count)) {
2153 ctask->xmstate &= ~XMSTATE_SOL_DATA;
2154 ctask->xmstate |= XMSTATE_SOL_HDR;
2158 debug_scsi("sol dout [dsn %d itt 0x%x dlen %d sent %d]\n",
2159 r2t->solicit_datasn - 1, ctask->itt, r2t->data_count,
2163 if (ctask->xmstate & XMSTATE_SOL_DATA) {
2164 rc = handle_xmstate_sol_data(conn, ctask);
2166 goto solicit_head_again;
2173 * Last thing to check is whether we need to send write
2174 * padding. Note that we check for xmstate equality, not just the bit.
2176 if (ctask->xmstate == XMSTATE_W_PAD)
2177 rc = handle_xmstate_w_pad(conn, ctask);
2183 * iscsi_data_xmit - xmit any command into the scheduled connection
2184 * @conn: iscsi connection
2187 * The function can return -EAGAIN in which case the caller must
2188 * re-schedule it again later or recover. '0' return code means
2192 iscsi_data_xmit(struct iscsi_conn *conn)
2194 if (unlikely(conn->suspend_tx)) {
2195 debug_tcp("conn %d Tx suspended!\n", conn->id);
2200 * Transmit in the following order:
2202 * 1) un-finished xmit (ctask or mtask)
2203 * 2) immediate control PDUs
2206 * 5) non-immediate control PDUs
2208 * No need to lock around __kfifo_get as long as
2209 * there's one producer and one consumer.
2212 BUG_ON(conn->ctask && conn->mtask);
2215 if (iscsi_ctask_xmit(conn, conn->ctask))
2217 /* done with this in-progress ctask */
2221 if (iscsi_mtask_xmit(conn, conn->mtask))
2223 /* done with this in-progress mtask */
2227 /* process immediate first */
2228 if (unlikely(__kfifo_len(conn->immqueue))) {
2229 struct iscsi_session *session = conn->session;
2230 while (__kfifo_get(conn->immqueue, (void*)&conn->mtask,
2232 if (iscsi_mtask_xmit(conn, conn->mtask))
2235 if (conn->mtask->hdr.itt ==
2236 cpu_to_be32(ISCSI_RESERVED_TAG)) {
2237 spin_lock_bh(&session->lock);
2238 __kfifo_put(session->mgmtpool.queue,
2239 (void*)&conn->mtask, sizeof(void*));
2240 spin_unlock_bh(&session->lock);
2243 /* done with this mtask */
2247 /* process write queue */
2248 while (__kfifo_get(conn->writequeue, (void*)&conn->ctask,
2250 if (iscsi_ctask_xmit(conn, conn->ctask))
2254 /* process command queue */
2255 while (__kfifo_get(conn->xmitqueue, (void*)&conn->ctask,
2257 if (iscsi_ctask_xmit(conn, conn->ctask))
2260 /* done with this ctask */
2263 /* process the rest control plane PDUs, if any */
2264 if (unlikely(__kfifo_len(conn->mgmtqueue))) {
2265 struct iscsi_session *session = conn->session;
2267 while (__kfifo_get(conn->mgmtqueue, (void*)&conn->mtask,
2269 if (iscsi_mtask_xmit(conn, conn->mtask))
2272 if (conn->mtask->hdr.itt ==
2273 cpu_to_be32(ISCSI_RESERVED_TAG)) {
2274 spin_lock_bh(&session->lock);
2275 __kfifo_put(session->mgmtpool.queue,
2276 (void*)&conn->mtask,
2278 spin_unlock_bh(&session->lock);
2281 /* done with this mtask */
2288 if (unlikely(conn->suspend_tx))
2295 iscsi_xmitworker(void *data)
2297 struct iscsi_conn *conn = data;
2300 * serialize Xmit worker on a per-connection basis.
2302 mutex_lock(&conn->xmitmutex);
2303 if (iscsi_data_xmit(conn))
2304 schedule_work(&conn->xmitwork);
2305 mutex_unlock(&conn->xmitmutex);
2308 #define FAILURE_BAD_HOST 1
2309 #define FAILURE_SESSION_FAILED 2
2310 #define FAILURE_SESSION_FREED 3
2311 #define FAILURE_WINDOW_CLOSED 4
2312 #define FAILURE_SESSION_TERMINATE 5
2315 iscsi_queuecommand(struct scsi_cmnd *sc, void (*done)(struct scsi_cmnd *))
2317 struct Scsi_Host *host;
2319 struct iscsi_session *session;
2320 struct iscsi_conn *conn = NULL;
2321 struct iscsi_cmd_task *ctask = NULL;
2323 sc->scsi_done = done;
2326 host = sc->device->host;
2327 session = iscsi_hostdata(host->hostdata);
2328 BUG_ON(host != session->host);
2330 spin_lock(&session->lock);
2332 if (session->state != ISCSI_STATE_LOGGED_IN) {
2333 if (session->state == ISCSI_STATE_FAILED) {
2334 reason = FAILURE_SESSION_FAILED;
2336 } else if (session->state == ISCSI_STATE_TERMINATE) {
2337 reason = FAILURE_SESSION_TERMINATE;
2340 reason = FAILURE_SESSION_FREED;
2345 * Check for iSCSI window and take care of CmdSN wrap-around
2347 if ((int)(session->max_cmdsn - session->cmdsn) < 0) {
2348 reason = FAILURE_WINDOW_CLOSED;
2352 conn = session->leadconn;
2354 __kfifo_get(session->cmdpool.queue, (void*)&ctask, sizeof(void*));
2357 sc->SCp.phase = session->age;
2358 sc->SCp.ptr = (char*)ctask;
2359 iscsi_cmd_init(conn, ctask, sc);
2361 __kfifo_put(conn->xmitqueue, (void*)&ctask, sizeof(void*));
2363 "ctask enq [%s cid %d sc %lx itt 0x%x len %d cmdsn %d win %d]\n",
2364 sc->sc_data_direction == DMA_TO_DEVICE ? "write" : "read",
2365 conn->id, (long)sc, ctask->itt, sc->request_bufflen,
2366 session->cmdsn, session->max_cmdsn - session->exp_cmdsn + 1);
2367 spin_unlock(&session->lock);
2369 if (!in_interrupt() && mutex_trylock(&conn->xmitmutex)) {
2370 spin_unlock_irq(host->host_lock);
2371 if (iscsi_data_xmit(conn))
2372 schedule_work(&conn->xmitwork);
2373 mutex_unlock(&conn->xmitmutex);
2374 spin_lock_irq(host->host_lock);
2376 schedule_work(&conn->xmitwork);
2381 spin_unlock(&session->lock);
2382 debug_scsi("cmd 0x%x rejected (%d)\n", sc->cmnd[0], reason);
2383 return SCSI_MLQUEUE_HOST_BUSY;
2386 spin_unlock(&session->lock);
2387 printk(KERN_ERR "iscsi_tcp: cmd 0x%x is not queued (%d)\n",
2388 sc->cmnd[0], reason);
2389 sc->sense_buffer[0] = 0x70;
2390 sc->sense_buffer[2] = NOT_READY;
2391 sc->sense_buffer[7] = 0x6;
2392 sc->sense_buffer[12] = 0x08;
2393 sc->sense_buffer[13] = 0x00;
2394 sc->result = (DID_NO_CONNECT << 16);
2395 sc->resid = sc->request_bufflen;
2401 iscsi_change_queue_depth(struct scsi_device *sdev, int depth)
2403 if (depth > ISCSI_MAX_CMD_PER_LUN)
2404 depth = ISCSI_MAX_CMD_PER_LUN;
2405 scsi_adjust_queue_depth(sdev, scsi_get_tag_type(sdev), depth);
2406 return sdev->queue_depth;
2410 iscsi_pool_init(struct iscsi_queue *q, int max, void ***items, int item_size)
2414 *items = kmalloc(max * sizeof(void*), GFP_KERNEL);
2419 q->pool = kmalloc(max * sizeof(void*), GFP_KERNEL);
2420 if (q->pool == NULL) {
2425 q->queue = kfifo_init((void*)q->pool, max * sizeof(void*),
2427 if (q->queue == ERR_PTR(-ENOMEM)) {
2433 for (i = 0; i < max; i++) {
2434 q->pool[i] = kmalloc(item_size, GFP_KERNEL);
2435 if (q->pool[i] == NULL) {
2438 for (j = 0; j < i; j++)
2441 kfifo_free(q->queue);
2446 memset(q->pool[i], 0, item_size);
2447 (*items)[i] = q->pool[i];
2448 __kfifo_put(q->queue, (void*)&q->pool[i], sizeof(void*));
2454 iscsi_pool_free(struct iscsi_queue *q, void **items)
2458 for (i = 0; i < q->max; i++)
2464 static iscsi_connh_t
2465 iscsi_conn_create(iscsi_sessionh_t sessionh, uint32_t conn_idx)
2467 struct iscsi_session *session = iscsi_ptr(sessionh);
2468 struct iscsi_conn *conn = NULL;
2470 conn = kmalloc(sizeof(struct iscsi_conn), GFP_KERNEL);
2472 goto conn_alloc_fail;
2473 memset(conn, 0, sizeof(struct iscsi_conn));
2475 conn->c_stage = ISCSI_CONN_INITIAL_STAGE;
2476 conn->in_progress = IN_PROGRESS_WAIT_HEADER;
2477 conn->id = conn_idx;
2478 conn->exp_statsn = 0;
2479 conn->tmabort_state = TMABORT_INITIAL;
2481 /* initial operational parameters */
2482 conn->hdr_size = sizeof(struct iscsi_hdr);
2483 conn->data_size = DEFAULT_MAX_RECV_DATA_SEGMENT_LENGTH;
2484 conn->max_recv_dlength = DEFAULT_MAX_RECV_DATA_SEGMENT_LENGTH;
2486 spin_lock_init(&conn->lock);
2488 /* initialize general xmit PDU commands queue */
2489 conn->xmitqueue = kfifo_alloc(session->cmds_max * sizeof(void*),
2491 if (conn->xmitqueue == ERR_PTR(-ENOMEM))
2492 goto xmitqueue_alloc_fail;
2494 /* initialize write response PDU commands queue */
2495 conn->writequeue = kfifo_alloc(session->cmds_max * sizeof(void*),
2497 if (conn->writequeue == ERR_PTR(-ENOMEM))
2498 goto writequeue_alloc_fail;
2500 /* initialize general immediate & non-immediate PDU commands queue */
2501 conn->immqueue = kfifo_alloc(session->mgmtpool_max * sizeof(void*),
2503 if (conn->immqueue == ERR_PTR(-ENOMEM))
2504 goto immqueue_alloc_fail;
2506 conn->mgmtqueue = kfifo_alloc(session->mgmtpool_max * sizeof(void*),
2508 if (conn->mgmtqueue == ERR_PTR(-ENOMEM))
2509 goto mgmtqueue_alloc_fail;
2511 INIT_WORK(&conn->xmitwork, iscsi_xmitworker, conn);
2513 /* allocate login_mtask used for the login/text sequences */
2514 spin_lock_bh(&session->lock);
2515 if (!__kfifo_get(session->mgmtpool.queue,
2516 (void*)&conn->login_mtask,
2518 spin_unlock_bh(&session->lock);
2519 goto login_mtask_alloc_fail;
2521 spin_unlock_bh(&session->lock);
2523 /* allocate initial PDU receive place holder */
2524 if (conn->data_size <= PAGE_SIZE)
2525 conn->data = kmalloc(conn->data_size, GFP_KERNEL);
2527 conn->data = (void*)__get_free_pages(GFP_KERNEL,
2528 get_order(conn->data_size));
2530 goto max_recv_dlenght_alloc_fail;
2532 init_timer(&conn->tmabort_timer);
2533 mutex_init(&conn->xmitmutex);
2534 init_waitqueue_head(&conn->ehwait);
2536 return iscsi_handle(conn);
2538 max_recv_dlenght_alloc_fail:
2539 spin_lock_bh(&session->lock);
2540 __kfifo_put(session->mgmtpool.queue, (void*)&conn->login_mtask,
2542 spin_unlock_bh(&session->lock);
2543 login_mtask_alloc_fail:
2544 kfifo_free(conn->mgmtqueue);
2545 mgmtqueue_alloc_fail:
2546 kfifo_free(conn->immqueue);
2547 immqueue_alloc_fail:
2548 kfifo_free(conn->writequeue);
2549 writequeue_alloc_fail:
2550 kfifo_free(conn->xmitqueue);
2551 xmitqueue_alloc_fail:
2554 return iscsi_handle(NULL);
2558 iscsi_conn_destroy(iscsi_connh_t connh)
2560 struct iscsi_conn *conn = iscsi_ptr(connh);
2561 struct iscsi_session *session = conn->session;
2563 mutex_lock(&conn->xmitmutex);
2564 set_bit(SUSPEND_BIT, &conn->suspend_tx);
2565 if (conn->c_stage == ISCSI_CONN_INITIAL_STAGE && conn->sock) {
2566 struct sock *sk = conn->sock->sk;
2569 * conn_start() has never been called!
2570 * need to cleanup the socket.
2572 write_lock_bh(&sk->sk_callback_lock);
2573 set_bit(SUSPEND_BIT, &conn->suspend_rx);
2574 write_unlock_bh(&sk->sk_callback_lock);
2576 sock_hold(conn->sock->sk);
2577 iscsi_conn_restore_callbacks(conn);
2578 sock_put(conn->sock->sk);
2579 sock_release(conn->sock);
2583 spin_lock_bh(&session->lock);
2584 conn->c_stage = ISCSI_CONN_CLEANUP_WAIT;
2585 if (session->leadconn == conn) {
2587 * leading connection? then give up on recovery.
2589 session->state = ISCSI_STATE_TERMINATE;
2590 wake_up(&conn->ehwait);
2592 spin_unlock_bh(&session->lock);
2594 mutex_unlock(&conn->xmitmutex);
2597 * Block until all in-progress commands for this connection
2601 spin_lock_bh(&conn->lock);
2602 if (!session->host->host_busy) { /* OK for ERL == 0 */
2603 spin_unlock_bh(&conn->lock);
2606 spin_unlock_bh(&conn->lock);
2607 msleep_interruptible(500);
2608 printk("conn_destroy(): host_busy %d host_failed %d\n",
2609 session->host->host_busy, session->host->host_failed);
2611 * force eh_abort() to unblock
2613 wake_up(&conn->ehwait);
2616 /* now free crypto */
2617 if (conn->hdrdgst_en || conn->datadgst_en) {
2619 crypto_free_tfm(conn->tx_tfm);
2621 crypto_free_tfm(conn->rx_tfm);
2622 if (conn->data_tx_tfm)
2623 crypto_free_tfm(conn->data_tx_tfm);
2624 if (conn->data_rx_tfm)
2625 crypto_free_tfm(conn->data_rx_tfm);
2628 /* free conn->data, size = MaxRecvDataSegmentLength */
2629 if (conn->data_size <= PAGE_SIZE)
2632 free_pages((unsigned long)conn->data,
2633 get_order(conn->data_size));
2635 spin_lock_bh(&session->lock);
2636 __kfifo_put(session->mgmtpool.queue, (void*)&conn->login_mtask,
2638 list_del(&conn->item);
2639 if (list_empty(&session->connections))
2640 session->leadconn = NULL;
2641 if (session->leadconn && session->leadconn == conn)
2642 session->leadconn = container_of(session->connections.next,
2643 struct iscsi_conn, item);
2645 if (session->leadconn == NULL)
2646 /* none connections exits.. reset sequencing */
2647 session->cmdsn = session->max_cmdsn = session->exp_cmdsn = 1;
2648 spin_unlock_bh(&session->lock);
2650 kfifo_free(conn->xmitqueue);
2651 kfifo_free(conn->writequeue);
2652 kfifo_free(conn->immqueue);
2653 kfifo_free(conn->mgmtqueue);
2658 iscsi_conn_bind(iscsi_sessionh_t sessionh, iscsi_connh_t connh,
2659 uint32_t transport_fd, int is_leading)
2661 struct iscsi_session *session = iscsi_ptr(sessionh);
2662 struct iscsi_conn *tmp = ERR_PTR(-EEXIST), *conn = iscsi_ptr(connh);
2664 struct socket *sock;
2667 /* lookup for existing socket */
2668 sock = sockfd_lookup(transport_fd, &err);
2670 printk(KERN_ERR "iscsi_tcp: sockfd_lookup failed %d\n", err);
2674 /* lookup for existing connection */
2675 spin_lock_bh(&session->lock);
2676 list_for_each_entry(tmp, &session->connections, item) {
2678 if (conn->c_stage != ISCSI_CONN_STOPPED ||
2679 conn->stop_stage == STOP_CONN_TERM) {
2680 printk(KERN_ERR "iscsi_tcp: can't bind "
2681 "non-stopped connection (%d:%d)\n",
2682 conn->c_stage, conn->stop_stage);
2683 spin_unlock_bh(&session->lock);
2690 /* bind new iSCSI connection to session */
2691 conn->session = session;
2693 list_add(&conn->item, &session->connections);
2695 spin_unlock_bh(&session->lock);
2697 if (conn->stop_stage != STOP_CONN_SUSPEND) {
2698 /* bind iSCSI connection and socket */
2701 /* setup Socket parameters */
2704 sk->sk_sndtimeo = 15 * HZ; /* FIXME: make it configurable */
2705 sk->sk_allocation = GFP_ATOMIC;
2707 /* FIXME: disable Nagle's algorithm */
2710 * Intercept TCP callbacks for sendfile like receive
2713 iscsi_conn_set_callbacks(conn);
2716 * set receive state machine into initial state
2718 conn->in_progress = IN_PROGRESS_WAIT_HEADER;
2722 session->leadconn = conn;
2725 * Unblock xmitworker(), Login Phase will pass through.
2727 clear_bit(SUSPEND_BIT, &conn->suspend_rx);
2728 clear_bit(SUSPEND_BIT, &conn->suspend_tx);
2734 iscsi_conn_start(iscsi_connh_t connh)
2736 struct iscsi_conn *conn = iscsi_ptr(connh);
2737 struct iscsi_session *session = conn->session;
2740 /* FF phase warming up... */
2742 if (session == NULL) {
2743 printk(KERN_ERR "iscsi_tcp: can't start unbound connection\n");
2747 sk = conn->sock->sk;
2749 write_lock_bh(&sk->sk_callback_lock);
2750 spin_lock_bh(&session->lock);
2751 conn->c_stage = ISCSI_CONN_STARTED;
2752 session->state = ISCSI_STATE_LOGGED_IN;
2754 switch(conn->stop_stage) {
2755 case STOP_CONN_RECOVER:
2757 * unblock eh_abort() if it is blocked. re-try all
2758 * commands after successful recovery
2760 session->conn_cnt++;
2761 conn->stop_stage = 0;
2762 conn->tmabort_state = TMABORT_INITIAL;
2764 wake_up(&conn->ehwait);
2766 case STOP_CONN_TERM:
2767 session->conn_cnt++;
2768 conn->stop_stage = 0;
2770 case STOP_CONN_SUSPEND:
2771 conn->stop_stage = 0;
2772 clear_bit(SUSPEND_BIT, &conn->suspend_rx);
2773 clear_bit(SUSPEND_BIT, &conn->suspend_tx);
2778 spin_unlock_bh(&session->lock);
2779 write_unlock_bh(&sk->sk_callback_lock);
2785 iscsi_conn_stop(iscsi_connh_t connh, int flag)
2787 struct iscsi_conn *conn = iscsi_ptr(connh);
2788 struct iscsi_session *session = conn->session;
2790 unsigned long flags;
2792 BUG_ON(!conn->sock);
2793 sk = conn->sock->sk;
2794 write_lock_bh(&sk->sk_callback_lock);
2795 set_bit(SUSPEND_BIT, &conn->suspend_rx);
2796 write_unlock_bh(&sk->sk_callback_lock);
2798 mutex_lock(&conn->xmitmutex);
2800 spin_lock_irqsave(session->host->host_lock, flags);
2801 spin_lock(&session->lock);
2802 conn->stop_stage = flag;
2803 conn->c_stage = ISCSI_CONN_STOPPED;
2804 set_bit(SUSPEND_BIT, &conn->suspend_tx);
2806 if (flag != STOP_CONN_SUSPEND)
2807 session->conn_cnt--;
2809 if (session->conn_cnt == 0 || session->leadconn == conn)
2810 session->state = ISCSI_STATE_FAILED;
2812 spin_unlock(&session->lock);
2813 spin_unlock_irqrestore(session->host->host_lock, flags);
2815 if (flag == STOP_CONN_TERM || flag == STOP_CONN_RECOVER) {
2816 struct iscsi_cmd_task *ctask;
2817 struct iscsi_mgmt_task *mtask;
2820 * Socket must go now.
2822 sock_hold(conn->sock->sk);
2823 iscsi_conn_restore_callbacks(conn);
2824 sock_put(conn->sock->sk);
2827 * flush xmit queues.
2829 spin_lock_bh(&session->lock);
2830 while (__kfifo_get(conn->writequeue, (void*)&ctask,
2832 __kfifo_get(conn->xmitqueue, (void*)&ctask,
2834 struct iscsi_r2t_info *r2t;
2837 * flush ctask's r2t queues
2839 while (__kfifo_get(ctask->r2tqueue, (void*)&r2t,
2841 __kfifo_put(ctask->r2tpool.queue, (void*)&r2t,
2844 spin_unlock_bh(&session->lock);
2846 iscsi_ctask_cleanup(conn, ctask);
2848 spin_lock_bh(&session->lock);
2851 while (__kfifo_get(conn->immqueue, (void*)&mtask,
2853 __kfifo_get(conn->mgmtqueue, (void*)&mtask,
2855 __kfifo_put(session->mgmtpool.queue,
2856 (void*)&mtask, sizeof(void*));
2859 spin_unlock_bh(&session->lock);
2862 * release socket only after we stopped data_xmit()
2863 * activity and flushed all outstandings
2865 sock_release(conn->sock);
2869 * for connection level recovery we should not calculate
2870 * header digest. conn->hdr_size used for optimization
2871 * in hdr_extract() and will be re-negotiated at
2874 if (flag == STOP_CONN_RECOVER) {
2875 conn->hdr_size = sizeof(struct iscsi_hdr);
2876 conn->hdrdgst_en = 0;
2877 conn->datadgst_en = 0;
2880 mutex_unlock(&conn->xmitmutex);
2884 iscsi_conn_send_generic(struct iscsi_conn *conn, struct iscsi_hdr *hdr,
2885 char *data, uint32_t data_size)
2887 struct iscsi_session *session = conn->session;
2888 struct iscsi_nopout *nop = (struct iscsi_nopout *)hdr;
2889 struct iscsi_mgmt_task *mtask;
2891 spin_lock_bh(&session->lock);
2892 if (session->state == ISCSI_STATE_TERMINATE) {
2893 spin_unlock_bh(&session->lock);
2896 if (hdr->opcode == (ISCSI_OP_LOGIN | ISCSI_OP_IMMEDIATE) ||
2897 hdr->opcode == (ISCSI_OP_TEXT | ISCSI_OP_IMMEDIATE))
2899 * Login and Text are sent serially, in
2900 * request-followed-by-response sequence.
2901 * Same mtask can be used. Same ITT must be used.
2902 * Note that login_mtask is preallocated at conn_create().
2904 mtask = conn->login_mtask;
2906 BUG_ON(conn->c_stage == ISCSI_CONN_INITIAL_STAGE);
2907 BUG_ON(conn->c_stage == ISCSI_CONN_STOPPED);
2909 if (!__kfifo_get(session->mgmtpool.queue,
2910 (void*)&mtask, sizeof(void*))) {
2911 spin_unlock_bh(&session->lock);
2917 * pre-format CmdSN and ExpStatSN for outgoing PDU.
2919 if (hdr->itt != cpu_to_be32(ISCSI_RESERVED_TAG)) {
2920 hdr->itt = mtask->itt | (conn->id << CID_SHIFT) |
2921 (session->age << AGE_SHIFT);
2922 nop->cmdsn = cpu_to_be32(session->cmdsn);
2923 if (conn->c_stage == ISCSI_CONN_STARTED &&
2924 !(hdr->opcode & ISCSI_OP_IMMEDIATE))
2927 /* do not advance CmdSN */
2928 nop->cmdsn = cpu_to_be32(session->cmdsn);
2930 nop->exp_statsn = cpu_to_be32(conn->exp_statsn);
2932 memcpy(&mtask->hdr, hdr, sizeof(struct iscsi_hdr));
2934 iscsi_buf_init_virt(&mtask->headbuf, (char*)&mtask->hdr,
2935 sizeof(struct iscsi_hdr));
2937 spin_unlock_bh(&session->lock);
2940 memcpy(mtask->data, data, data_size);
2941 mtask->data_count = data_size;
2943 mtask->data_count = 0;
2945 mtask->xmstate = XMSTATE_IMM_HDR;
2947 if (mtask->data_count) {
2948 iscsi_buf_init_iov(&mtask->sendbuf, (char*)mtask->data,
2952 debug_scsi("mgmtpdu [op 0x%x hdr->itt 0x%x datalen %d]\n",
2953 hdr->opcode, hdr->itt, data_size);
2956 * since send_pdu() could be called at least from two contexts,
2957 * we need to serialize __kfifo_put, so we don't have to take
2958 * additional lock on fast data-path
2960 if (hdr->opcode & ISCSI_OP_IMMEDIATE)
2961 __kfifo_put(conn->immqueue, (void*)&mtask, sizeof(void*));
2963 __kfifo_put(conn->mgmtqueue, (void*)&mtask, sizeof(void*));
2965 schedule_work(&conn->xmitwork);
2971 iscsi_eh_host_reset(struct scsi_cmnd *sc)
2973 struct iscsi_cmd_task *ctask = (struct iscsi_cmd_task *)sc->SCp.ptr;
2974 struct iscsi_conn *conn = ctask->conn;
2975 struct iscsi_session *session = conn->session;
2977 spin_lock_bh(&session->lock);
2978 if (session->state == ISCSI_STATE_TERMINATE) {
2979 debug_scsi("failing host reset: session terminated "
2980 "[CID %d age %d]", conn->id, session->age);
2981 spin_unlock_bh(&session->lock);
2984 spin_unlock_bh(&session->lock);
2986 debug_scsi("failing connection CID %d due to SCSI host reset "
2987 "[itt 0x%x age %d]", conn->id, ctask->itt,
2989 iscsi_conn_failure(conn, ISCSI_ERR_CONN_FAILED);
2995 iscsi_tmabort_timedout(unsigned long data)
2997 struct iscsi_cmd_task *ctask = (struct iscsi_cmd_task *)data;
2998 struct iscsi_conn *conn = ctask->conn;
2999 struct iscsi_session *session = conn->session;
3001 spin_lock(&session->lock);
3002 if (conn->tmabort_state == TMABORT_INITIAL) {
3003 __kfifo_put(session->mgmtpool.queue,
3004 (void*)&ctask->mtask, sizeof(void*));
3005 conn->tmabort_state = TMABORT_TIMEDOUT;
3006 debug_scsi("tmabort timedout [sc %lx itt 0x%x]\n",
3007 (long)ctask->sc, ctask->itt);
3008 /* unblock eh_abort() */
3009 wake_up(&conn->ehwait);
3011 spin_unlock(&session->lock);
3015 iscsi_eh_abort(struct scsi_cmnd *sc)
3018 struct iscsi_cmd_task *ctask = (struct iscsi_cmd_task *)sc->SCp.ptr;
3019 struct iscsi_conn *conn = ctask->conn;
3020 struct iscsi_session *session = conn->session;
3022 conn->eh_abort_cnt++;
3023 debug_scsi("aborting [sc %lx itt 0x%x]\n", (long)sc, ctask->itt);
3026 * two cases for ERL=0 here:
3028 * 1) connection-level failure;
3029 * 2) recovery due protocol error;
3031 mutex_lock(&conn->xmitmutex);
3032 spin_lock_bh(&session->lock);
3033 if (session->state != ISCSI_STATE_LOGGED_IN) {
3034 if (session->state == ISCSI_STATE_TERMINATE) {
3035 spin_unlock_bh(&session->lock);
3036 mutex_unlock(&conn->xmitmutex);
3039 spin_unlock_bh(&session->lock);
3041 struct iscsi_tm *hdr = &conn->tmhdr;
3044 * Still LOGGED_IN...
3047 if (!ctask->sc || sc->SCp.phase != session->age) {
3049 * 1) ctask completed before time out. But session
3050 * is still ok => Happy Retry.
3051 * 2) session was re-open during time out of ctask.
3053 spin_unlock_bh(&session->lock);
3054 mutex_unlock(&conn->xmitmutex);
3057 conn->tmabort_state = TMABORT_INITIAL;
3058 spin_unlock_bh(&session->lock);
3061 * ctask timed out but session is OK
3062 * ERL=0 requires task mgmt abort to be issued on each
3063 * failed command. requests must be serialized.
3065 memset(hdr, 0, sizeof(struct iscsi_tm));
3066 hdr->opcode = ISCSI_OP_SCSI_TMFUNC | ISCSI_OP_IMMEDIATE;
3067 hdr->flags = ISCSI_TM_FUNC_ABORT_TASK;
3068 hdr->flags |= ISCSI_FLAG_CMD_FINAL;
3069 memcpy(hdr->lun, ctask->hdr.lun, sizeof(hdr->lun));
3070 hdr->rtt = ctask->hdr.itt;
3071 hdr->refcmdsn = ctask->hdr.cmdsn;
3073 rc = iscsi_conn_send_generic(conn, (struct iscsi_hdr *)hdr,
3076 iscsi_conn_failure(conn, ISCSI_ERR_CONN_FAILED);
3077 debug_scsi("abort sent failure [itt 0x%x]", ctask->itt);
3079 struct iscsi_r2t_info *r2t;
3082 * TMF abort vs. TMF response race logic
3084 spin_lock_bh(&session->lock);
3085 ctask->mtask = (struct iscsi_mgmt_task *)
3086 session->mgmt_cmds[(hdr->itt & ITT_MASK) -
3087 ISCSI_MGMT_ITT_OFFSET];
3089 * have to flush r2tqueue to avoid r2t leaks
3091 while (__kfifo_get(ctask->r2tqueue, (void*)&r2t,
3093 __kfifo_put(ctask->r2tpool.queue, (void*)&r2t,
3096 if (conn->tmabort_state == TMABORT_INITIAL) {
3097 conn->tmfcmd_pdus_cnt++;
3098 conn->tmabort_timer.expires = 3*HZ + jiffies;
3099 conn->tmabort_timer.function =
3100 iscsi_tmabort_timedout;
3101 conn->tmabort_timer.data = (unsigned long)ctask;
3102 add_timer(&conn->tmabort_timer);
3103 debug_scsi("abort sent [itt 0x%x]", ctask->itt);
3106 conn->tmabort_state == TMABORT_SUCCESS) {
3107 conn->tmabort_state = TMABORT_INITIAL;
3108 spin_unlock_bh(&session->lock);
3109 mutex_unlock(&conn->xmitmutex);
3112 conn->tmabort_state = TMABORT_INITIAL;
3113 iscsi_conn_failure(conn, ISCSI_ERR_CONN_FAILED);
3115 spin_unlock_bh(&session->lock);
3118 mutex_unlock(&conn->xmitmutex);
3122 * block eh thread until:
3124 * 1) abort response;
3126 * 3) session re-opened;
3127 * 4) session terminated;
3130 int p_state = session->state;
3132 rc = wait_event_interruptible(conn->ehwait,
3133 (p_state == ISCSI_STATE_LOGGED_IN ?
3134 (session->state == ISCSI_STATE_TERMINATE ||
3135 conn->tmabort_state != TMABORT_INITIAL) :
3136 (session->state == ISCSI_STATE_TERMINATE ||
3137 session->state == ISCSI_STATE_LOGGED_IN)));
3140 session->state = ISCSI_STATE_TERMINATE;
3144 if (signal_pending(current))
3145 flush_signals(current);
3147 if (session->state == ISCSI_STATE_TERMINATE)
3150 spin_lock_bh(&session->lock);
3151 if (sc->SCp.phase == session->age &&
3152 (conn->tmabort_state == TMABORT_TIMEDOUT ||
3153 conn->tmabort_state == TMABORT_FAILED)) {
3154 conn->tmabort_state = TMABORT_INITIAL;
3157 * ctask completed before tmf abort response or
3159 * But session is still ok => Happy Retry.
3161 spin_unlock_bh(&session->lock);
3164 spin_unlock_bh(&session->lock);
3165 iscsi_conn_failure(conn, ISCSI_ERR_CONN_FAILED);
3168 spin_unlock_bh(&session->lock);
3173 debug_scsi("abort success [sc %lx itt 0x%x]\n", (long)sc, ctask->itt);
3178 debug_scsi("abort failed [sc %lx itt 0x%x]\n", (long)sc, ctask->itt);
3182 del_timer_sync(&conn->tmabort_timer);
3184 mutex_lock(&conn->xmitmutex);
3186 struct sock *sk = conn->sock->sk;
3188 write_lock_bh(&sk->sk_callback_lock);
3189 iscsi_ctask_cleanup(conn, ctask);
3190 write_unlock_bh(&sk->sk_callback_lock);
3192 mutex_unlock(&conn->xmitmutex);
3197 iscsi_r2tpool_alloc(struct iscsi_session *session)
3203 * initialize per-task: R2T pool and xmit queue
3205 for (cmd_i = 0; cmd_i < session->cmds_max; cmd_i++) {
3206 struct iscsi_cmd_task *ctask = session->cmds[cmd_i];
3209 * pre-allocated x4 as much r2ts to handle race when
3210 * target acks DataOut faster than we data_xmit() queues
3211 * could replenish r2tqueue.
3215 if (iscsi_pool_init(&ctask->r2tpool, session->max_r2t * 4,
3216 (void***)&ctask->r2ts, sizeof(struct iscsi_r2t_info))) {
3217 goto r2t_alloc_fail;
3220 /* R2T xmit queue */
3221 ctask->r2tqueue = kfifo_alloc(
3222 session->max_r2t * 4 * sizeof(void*), GFP_KERNEL, NULL);
3223 if (ctask->r2tqueue == ERR_PTR(-ENOMEM)) {
3224 iscsi_pool_free(&ctask->r2tpool, (void**)ctask->r2ts);
3225 goto r2t_alloc_fail;
3230 * Data-Out PDU's within R2T-sequence can be quite big;
3233 ctask->datapool = mempool_create(ISCSI_DTASK_DEFAULT_MAX,
3234 mempool_alloc_slab, mempool_free_slab, taskcache);
3235 if (ctask->datapool == NULL) {
3236 kfifo_free(ctask->r2tqueue);
3237 iscsi_pool_free(&ctask->r2tpool, (void**)ctask->r2ts);
3238 goto r2t_alloc_fail;
3240 INIT_LIST_HEAD(&ctask->dataqueue);
3246 for (i = 0; i < cmd_i; i++) {
3247 mempool_destroy(session->cmds[i]->datapool);
3248 kfifo_free(session->cmds[i]->r2tqueue);
3249 iscsi_pool_free(&session->cmds[i]->r2tpool,
3250 (void**)session->cmds[i]->r2ts);
3256 iscsi_r2tpool_free(struct iscsi_session *session)
3260 for (i = 0; i < session->cmds_max; i++) {
3261 mempool_destroy(session->cmds[i]->datapool);
3262 kfifo_free(session->cmds[i]->r2tqueue);
3263 iscsi_pool_free(&session->cmds[i]->r2tpool,
3264 (void**)session->cmds[i]->r2ts);
3268 static struct scsi_host_template iscsi_sht = {
3269 .name = "iSCSI Initiator over TCP/IP, v."
3271 .queuecommand = iscsi_queuecommand,
3272 .change_queue_depth = iscsi_change_queue_depth,
3273 .can_queue = ISCSI_XMIT_CMDS_MAX - 1,
3274 .sg_tablesize = ISCSI_SG_TABLESIZE,
3275 .cmd_per_lun = ISCSI_DEF_CMD_PER_LUN,
3276 .eh_abort_handler = iscsi_eh_abort,
3277 .eh_host_reset_handler = iscsi_eh_host_reset,
3278 .use_clustering = DISABLE_CLUSTERING,
3279 .proc_name = "iscsi_tcp",
3283 static iscsi_sessionh_t
3284 iscsi_session_create(uint32_t initial_cmdsn, struct Scsi_Host *host)
3287 struct iscsi_session *session;
3289 session = iscsi_hostdata(host->hostdata);
3290 memset(session, 0, sizeof(struct iscsi_session));
3292 session->host = host;
3293 session->id = host->host_no;
3294 session->state = ISCSI_STATE_LOGGED_IN;
3295 session->mgmtpool_max = ISCSI_MGMT_CMDS_MAX;
3296 session->cmds_max = ISCSI_XMIT_CMDS_MAX;
3297 session->cmdsn = initial_cmdsn;
3298 session->exp_cmdsn = initial_cmdsn + 1;
3299 session->max_cmdsn = initial_cmdsn + 1;
3300 session->max_r2t = 1;
3302 /* initialize SCSI PDU commands pool */
3303 if (iscsi_pool_init(&session->cmdpool, session->cmds_max,
3304 (void***)&session->cmds, sizeof(struct iscsi_cmd_task)))
3305 goto cmdpool_alloc_fail;
3307 /* pre-format cmds pool with ITT */
3308 for (cmd_i = 0; cmd_i < session->cmds_max; cmd_i++)
3309 session->cmds[cmd_i]->itt = cmd_i;
3311 spin_lock_init(&session->lock);
3312 INIT_LIST_HEAD(&session->connections);
3314 /* initialize immediate command pool */
3315 if (iscsi_pool_init(&session->mgmtpool, session->mgmtpool_max,
3316 (void***)&session->mgmt_cmds, sizeof(struct iscsi_mgmt_task)))
3317 goto mgmtpool_alloc_fail;
3320 /* pre-format immediate cmds pool with ITT */
3321 for (cmd_i = 0; cmd_i < session->mgmtpool_max; cmd_i++) {
3322 session->mgmt_cmds[cmd_i]->itt = ISCSI_MGMT_ITT_OFFSET + cmd_i;
3323 session->mgmt_cmds[cmd_i]->data = kmalloc(
3324 DEFAULT_MAX_RECV_DATA_SEGMENT_LENGTH, GFP_KERNEL);
3325 if (!session->mgmt_cmds[cmd_i]->data) {
3328 for (j = 0; j < cmd_i; j++)
3329 kfree(session->mgmt_cmds[j]->data);
3330 goto immdata_alloc_fail;
3334 if (iscsi_r2tpool_alloc(session))
3335 goto r2tpool_alloc_fail;
3337 return iscsi_handle(session);
3340 for (cmd_i = 0; cmd_i < session->mgmtpool_max; cmd_i++)
3341 kfree(session->mgmt_cmds[cmd_i]->data);
3342 iscsi_pool_free(&session->mgmtpool, (void**)session->mgmt_cmds);
3344 mgmtpool_alloc_fail:
3345 iscsi_pool_free(&session->cmdpool, (void**)session->cmds);
3347 return iscsi_handle(NULL);
3351 iscsi_session_destroy(iscsi_sessionh_t sessionh)
3354 struct iscsi_data_task *dtask, *n;
3355 struct iscsi_session *session = iscsi_ptr(sessionh);
3357 for (cmd_i = 0; cmd_i < session->cmds_max; cmd_i++) {
3358 struct iscsi_cmd_task *ctask = session->cmds[cmd_i];
3359 list_for_each_entry_safe(dtask, n, &ctask->dataqueue, item) {
3360 list_del(&dtask->item);
3361 mempool_free(dtask, ctask->datapool);
3365 for (cmd_i = 0; cmd_i < session->mgmtpool_max; cmd_i++)
3366 kfree(session->mgmt_cmds[cmd_i]->data);
3368 iscsi_r2tpool_free(session);
3369 iscsi_pool_free(&session->mgmtpool, (void**)session->mgmt_cmds);
3370 iscsi_pool_free(&session->cmdpool, (void**)session->cmds);
3374 iscsi_conn_set_param(iscsi_connh_t connh, enum iscsi_param param,
3377 struct iscsi_conn *conn = iscsi_ptr(connh);
3378 struct iscsi_session *session = conn->session;
3380 spin_lock_bh(&session->lock);
3381 if (conn->c_stage != ISCSI_CONN_INITIAL_STAGE &&
3382 conn->stop_stage != STOP_CONN_RECOVER) {
3383 printk(KERN_ERR "iscsi_tcp: can not change parameter [%d]\n",
3385 spin_unlock_bh(&session->lock);
3388 spin_unlock_bh(&session->lock);
3391 case ISCSI_PARAM_MAX_RECV_DLENGTH: {
3392 char *saveptr = conn->data;
3393 gfp_t flags = GFP_KERNEL;
3395 if (conn->data_size >= value) {
3396 conn->max_recv_dlength = value;
3400 spin_lock_bh(&session->lock);
3401 if (conn->stop_stage == STOP_CONN_RECOVER)
3403 spin_unlock_bh(&session->lock);
3405 if (value <= PAGE_SIZE)
3406 conn->data = kmalloc(value, flags);
3408 conn->data = (void*)__get_free_pages(flags,
3410 if (conn->data == NULL) {
3411 conn->data = saveptr;
3414 if (conn->data_size <= PAGE_SIZE)
3417 free_pages((unsigned long)saveptr,
3418 get_order(conn->data_size));
3419 conn->max_recv_dlength = value;
3420 conn->data_size = value;
3423 case ISCSI_PARAM_MAX_XMIT_DLENGTH:
3424 conn->max_xmit_dlength = value;
3426 case ISCSI_PARAM_HDRDGST_EN:
3427 conn->hdrdgst_en = value;
3428 conn->hdr_size = sizeof(struct iscsi_hdr);
3429 if (conn->hdrdgst_en) {
3430 conn->hdr_size += sizeof(__u32);
3432 conn->tx_tfm = crypto_alloc_tfm("crc32c", 0);
3436 conn->rx_tfm = crypto_alloc_tfm("crc32c", 0);
3437 if (!conn->rx_tfm) {
3438 crypto_free_tfm(conn->tx_tfm);
3443 crypto_free_tfm(conn->tx_tfm);
3445 crypto_free_tfm(conn->rx_tfm);
3448 case ISCSI_PARAM_DATADGST_EN:
3449 conn->datadgst_en = value;
3450 if (conn->datadgst_en) {
3451 if (!conn->data_tx_tfm)
3453 crypto_alloc_tfm("crc32c", 0);
3454 if (!conn->data_tx_tfm)
3456 if (!conn->data_rx_tfm)
3458 crypto_alloc_tfm("crc32c", 0);
3459 if (!conn->data_rx_tfm) {
3460 crypto_free_tfm(conn->data_tx_tfm);
3464 if (conn->data_tx_tfm)
3465 crypto_free_tfm(conn->data_tx_tfm);
3466 if (conn->data_rx_tfm)
3467 crypto_free_tfm(conn->data_rx_tfm);
3470 case ISCSI_PARAM_INITIAL_R2T_EN:
3471 session->initial_r2t_en = value;
3473 case ISCSI_PARAM_MAX_R2T:
3474 if (session->max_r2t == roundup_pow_of_two(value))
3476 iscsi_r2tpool_free(session);
3477 session->max_r2t = value;
3478 if (session->max_r2t & (session->max_r2t - 1))
3479 session->max_r2t = roundup_pow_of_two(session->max_r2t);
3480 if (iscsi_r2tpool_alloc(session))
3483 case ISCSI_PARAM_IMM_DATA_EN:
3484 session->imm_data_en = value;
3486 case ISCSI_PARAM_FIRST_BURST:
3487 session->first_burst = value;
3489 case ISCSI_PARAM_MAX_BURST:
3490 session->max_burst = value;
3492 case ISCSI_PARAM_PDU_INORDER_EN:
3493 session->pdu_inorder_en = value;
3495 case ISCSI_PARAM_DATASEQ_INORDER_EN:
3496 session->dataseq_inorder_en = value;
3498 case ISCSI_PARAM_ERL:
3499 session->erl = value;
3501 case ISCSI_PARAM_IFMARKER_EN:
3503 session->ifmarker_en = value;
3505 case ISCSI_PARAM_OFMARKER_EN:
3507 session->ofmarker_en = value;
3517 iscsi_conn_get_param(iscsi_connh_t connh, enum iscsi_param param,
3520 struct iscsi_conn *conn = iscsi_ptr(connh);
3521 struct iscsi_session *session = conn->session;
3524 case ISCSI_PARAM_MAX_RECV_DLENGTH:
3525 *value = conn->max_recv_dlength;
3527 case ISCSI_PARAM_MAX_XMIT_DLENGTH:
3528 *value = conn->max_xmit_dlength;
3530 case ISCSI_PARAM_HDRDGST_EN:
3531 *value = conn->hdrdgst_en;
3533 case ISCSI_PARAM_DATADGST_EN:
3534 *value = conn->datadgst_en;
3536 case ISCSI_PARAM_INITIAL_R2T_EN:
3537 *value = session->initial_r2t_en;
3539 case ISCSI_PARAM_MAX_R2T:
3540 *value = session->max_r2t;
3542 case ISCSI_PARAM_IMM_DATA_EN:
3543 *value = session->imm_data_en;
3545 case ISCSI_PARAM_FIRST_BURST:
3546 *value = session->first_burst;
3548 case ISCSI_PARAM_MAX_BURST:
3549 *value = session->max_burst;
3551 case ISCSI_PARAM_PDU_INORDER_EN:
3552 *value = session->pdu_inorder_en;
3554 case ISCSI_PARAM_DATASEQ_INORDER_EN:
3555 *value = session->dataseq_inorder_en;
3557 case ISCSI_PARAM_ERL:
3558 *value = session->erl;
3560 case ISCSI_PARAM_IFMARKER_EN:
3561 *value = session->ifmarker_en;
3563 case ISCSI_PARAM_OFMARKER_EN:
3564 *value = session->ofmarker_en;
3567 return ISCSI_ERR_PARAM_NOT_FOUND;
3574 iscsi_conn_get_stats(iscsi_connh_t connh, struct iscsi_stats *stats)
3576 struct iscsi_conn *conn = iscsi_ptr(connh);
3578 stats->txdata_octets = conn->txdata_octets;
3579 stats->rxdata_octets = conn->rxdata_octets;
3580 stats->scsicmd_pdus = conn->scsicmd_pdus_cnt;
3581 stats->dataout_pdus = conn->dataout_pdus_cnt;
3582 stats->scsirsp_pdus = conn->scsirsp_pdus_cnt;
3583 stats->datain_pdus = conn->datain_pdus_cnt;
3584 stats->r2t_pdus = conn->r2t_pdus_cnt;
3585 stats->tmfcmd_pdus = conn->tmfcmd_pdus_cnt;
3586 stats->tmfrsp_pdus = conn->tmfrsp_pdus_cnt;
3587 stats->custom_length = 3;
3588 strcpy(stats->custom[0].desc, "tx_sendpage_failures");
3589 stats->custom[0].value = conn->sendpage_failures_cnt;
3590 strcpy(stats->custom[1].desc, "rx_discontiguous_hdr");
3591 stats->custom[1].value = conn->discontiguous_hdr_cnt;
3592 strcpy(stats->custom[2].desc, "eh_abort_cnt");
3593 stats->custom[2].value = conn->eh_abort_cnt;
3597 iscsi_conn_send_pdu(iscsi_connh_t connh, struct iscsi_hdr *hdr, char *data,
3600 struct iscsi_conn *conn = iscsi_ptr(connh);
3603 mutex_lock(&conn->xmitmutex);
3604 rc = iscsi_conn_send_generic(conn, hdr, data, data_size);
3605 mutex_unlock(&conn->xmitmutex);
3610 static struct iscsi_transport iscsi_tcp_transport = {
3611 .owner = THIS_MODULE,
3613 .caps = CAP_RECOVERY_L0 | CAP_MULTI_R2T | CAP_HDRDGST
3615 .host_template = &iscsi_sht,
3616 .hostdata_size = sizeof(struct iscsi_session),
3618 .max_cmd_len = ISCSI_TCP_MAX_CMD_LEN,
3619 .create_session = iscsi_session_create,
3620 .destroy_session = iscsi_session_destroy,
3621 .create_conn = iscsi_conn_create,
3622 .bind_conn = iscsi_conn_bind,
3623 .destroy_conn = iscsi_conn_destroy,
3624 .set_param = iscsi_conn_set_param,
3625 .get_param = iscsi_conn_get_param,
3626 .start_conn = iscsi_conn_start,
3627 .stop_conn = iscsi_conn_stop,
3628 .send_pdu = iscsi_conn_send_pdu,
3629 .get_stats = iscsi_conn_get_stats,
3633 iscsi_tcp_init(void)
3637 if (iscsi_max_lun < 1) {
3638 printk(KERN_ERR "Invalid max_lun value of %u\n", iscsi_max_lun);
3641 iscsi_tcp_transport.max_lun = iscsi_max_lun;
3643 taskcache = kmem_cache_create("iscsi_taskcache",
3644 sizeof(struct iscsi_data_task), 0,
3645 SLAB_HWCACHE_ALIGN | SLAB_NO_REAP, NULL, NULL);
3649 error = iscsi_register_transport(&iscsi_tcp_transport);
3651 kmem_cache_destroy(taskcache);
3657 iscsi_tcp_exit(void)
3659 iscsi_unregister_transport(&iscsi_tcp_transport);
3660 kmem_cache_destroy(taskcache);
3663 module_init(iscsi_tcp_init);
3664 module_exit(iscsi_tcp_exit);