1 // SPDX-License-Identifier: GPL-2.0
2 /*
3  * bio-integrity.c - bio data integrity extensions
4  *
5  * Copyright (C) 2007, 2008, 2009 Oracle Corporation
6  * Written by: Martin K. Petersen <martin.petersen@oracle.com>
7  */
8 
9 #include <linux/blk-integrity.h>
10 #include <linux/mempool.h>
11 #include <linux/export.h>
12 #include <linux/bio.h>
13 #include <linux/workqueue.h>
14 #include <linux/slab.h>
15 #include "blk.h"
16 
17 static struct kmem_cache *bip_slab;
18 static struct workqueue_struct *kintegrityd_wq;
19 
blk_flush_integrity(void)20 void blk_flush_integrity(void)
21 {
22 	flush_workqueue(kintegrityd_wq);
23 }
24 
__bio_integrity_free(struct bio_set * bs,struct bio_integrity_payload * bip)25 static void __bio_integrity_free(struct bio_set *bs,
26 				 struct bio_integrity_payload *bip)
27 {
28 	if (bs && mempool_initialized(&bs->bio_integrity_pool)) {
29 		if (bip->bip_vec)
30 			bvec_free(&bs->bvec_integrity_pool, bip->bip_vec,
31 				  bip->bip_max_vcnt);
32 		mempool_free(bip, &bs->bio_integrity_pool);
33 	} else {
34 		kfree(bip);
35 	}
36 }
37 
38 /**
39  * bio_integrity_alloc - Allocate integrity payload and attach it to bio
40  * @bio:	bio to attach integrity metadata to
41  * @gfp_mask:	Memory allocation mask
42  * @nr_vecs:	Number of integrity metadata scatter-gather elements
43  *
44  * Description: This function prepares a bio for attaching integrity
45  * metadata.  nr_vecs specifies the maximum number of pages containing
46  * integrity metadata that can be attached.
47  */
bio_integrity_alloc(struct bio * bio,gfp_t gfp_mask,unsigned int nr_vecs)48 struct bio_integrity_payload *bio_integrity_alloc(struct bio *bio,
49 						  gfp_t gfp_mask,
50 						  unsigned int nr_vecs)
51 {
52 	struct bio_integrity_payload *bip;
53 	struct bio_set *bs = bio->bi_pool;
54 	unsigned inline_vecs;
55 
56 	if (WARN_ON_ONCE(bio_has_crypt_ctx(bio)))
57 		return ERR_PTR(-EOPNOTSUPP);
58 
59 	if (!bs || !mempool_initialized(&bs->bio_integrity_pool)) {
60 		bip = kmalloc(struct_size(bip, bip_inline_vecs, nr_vecs), gfp_mask);
61 		inline_vecs = nr_vecs;
62 	} else {
63 		bip = mempool_alloc(&bs->bio_integrity_pool, gfp_mask);
64 		inline_vecs = BIO_INLINE_VECS;
65 	}
66 
67 	if (unlikely(!bip))
68 		return ERR_PTR(-ENOMEM);
69 
70 	memset(bip, 0, sizeof(*bip));
71 
72 	if (nr_vecs > inline_vecs) {
73 		bip->bip_max_vcnt = nr_vecs;
74 		bip->bip_vec = bvec_alloc(&bs->bvec_integrity_pool,
75 					  &bip->bip_max_vcnt, gfp_mask);
76 		if (!bip->bip_vec)
77 			goto err;
78 	} else {
79 		bip->bip_vec = bip->bip_inline_vecs;
80 		bip->bip_max_vcnt = inline_vecs;
81 	}
82 
83 	bip->bip_bio = bio;
84 	bio->bi_integrity = bip;
85 	bio->bi_opf |= REQ_INTEGRITY;
86 
87 	return bip;
88 err:
89 	__bio_integrity_free(bs, bip);
90 	return ERR_PTR(-ENOMEM);
91 }
92 EXPORT_SYMBOL(bio_integrity_alloc);
93 
94 /**
95  * bio_integrity_free - Free bio integrity payload
96  * @bio:	bio containing bip to be freed
97  *
98  * Description: Used to free the integrity portion of a bio. Usually
99  * called from bio_free().
100  */
bio_integrity_free(struct bio * bio)101 void bio_integrity_free(struct bio *bio)
102 {
103 	struct bio_integrity_payload *bip = bio_integrity(bio);
104 	struct bio_set *bs = bio->bi_pool;
105 
106 	if (bip->bip_flags & BIP_BLOCK_INTEGRITY)
107 		kfree(bvec_virt(bip->bip_vec));
108 
109 	__bio_integrity_free(bs, bip);
110 	bio->bi_integrity = NULL;
111 	bio->bi_opf &= ~REQ_INTEGRITY;
112 }
113 
114 /**
115  * bio_integrity_add_page - Attach integrity metadata
116  * @bio:	bio to update
117  * @page:	page containing integrity metadata
118  * @len:	number of bytes of integrity metadata in page
119  * @offset:	start offset within page
120  *
121  * Description: Attach a page containing integrity metadata to bio.
122  */
bio_integrity_add_page(struct bio * bio,struct page * page,unsigned int len,unsigned int offset)123 int bio_integrity_add_page(struct bio *bio, struct page *page,
124 			   unsigned int len, unsigned int offset)
125 {
126 	struct request_queue *q = bdev_get_queue(bio->bi_bdev);
127 	struct bio_integrity_payload *bip = bio_integrity(bio);
128 
129 	if (((bip->bip_iter.bi_size + len) >> SECTOR_SHIFT) >
130 	    queue_max_hw_sectors(q))
131 		return 0;
132 
133 	if (bip->bip_vcnt > 0) {
134 		struct bio_vec *bv = &bip->bip_vec[bip->bip_vcnt - 1];
135 		bool same_page = false;
136 
137 		if (bvec_try_merge_hw_page(q, bv, page, len, offset,
138 					   &same_page)) {
139 			bip->bip_iter.bi_size += len;
140 			return len;
141 		}
142 
143 		if (bip->bip_vcnt >=
144 		    min(bip->bip_max_vcnt, queue_max_integrity_segments(q)))
145 			return 0;
146 
147 		/*
148 		 * If the queue doesn't support SG gaps and adding this segment
149 		 * would create a gap, disallow it.
150 		 */
151 		if (bvec_gap_to_prev(&q->limits, bv, offset))
152 			return 0;
153 	}
154 
155 	bvec_set_page(&bip->bip_vec[bip->bip_vcnt], page, len, offset);
156 	bip->bip_vcnt++;
157 	bip->bip_iter.bi_size += len;
158 
159 	return len;
160 }
161 EXPORT_SYMBOL(bio_integrity_add_page);
162 
163 /**
164  * bio_integrity_process - Process integrity metadata for a bio
165  * @bio:	bio to generate/verify integrity metadata for
166  * @proc_iter:  iterator to process
167  * @proc_fn:	Pointer to the relevant processing function
168  */
bio_integrity_process(struct bio * bio,struct bvec_iter * proc_iter,integrity_processing_fn * proc_fn)169 static blk_status_t bio_integrity_process(struct bio *bio,
170 		struct bvec_iter *proc_iter, integrity_processing_fn *proc_fn)
171 {
172 	struct blk_integrity *bi = blk_get_integrity(bio->bi_bdev->bd_disk);
173 	struct blk_integrity_iter iter;
174 	struct bvec_iter bviter;
175 	struct bio_vec bv;
176 	struct bio_integrity_payload *bip = bio_integrity(bio);
177 	blk_status_t ret = BLK_STS_OK;
178 
179 	iter.disk_name = bio->bi_bdev->bd_disk->disk_name;
180 	iter.interval = 1 << bi->interval_exp;
181 	iter.tuple_size = bi->tuple_size;
182 	iter.seed = proc_iter->bi_sector;
183 	iter.prot_buf = bvec_virt(bip->bip_vec);
184 
185 	__bio_for_each_segment(bv, bio, bviter, *proc_iter) {
186 		void *kaddr = bvec_kmap_local(&bv);
187 
188 		iter.data_buf = kaddr;
189 		iter.data_size = bv.bv_len;
190 		ret = proc_fn(&iter);
191 		kunmap_local(kaddr);
192 
193 		if (ret)
194 			break;
195 
196 	}
197 	return ret;
198 }
199 
200 /**
201  * bio_integrity_prep - Prepare bio for integrity I/O
202  * @bio:	bio to prepare
203  *
204  * Description:  Checks if the bio already has an integrity payload attached.
205  * If it does, the payload has been generated by another kernel subsystem,
206  * and we just pass it through. Otherwise allocates integrity payload.
207  * The bio must have data direction, target device and start sector set priot
208  * to calling.  In the WRITE case, integrity metadata will be generated using
209  * the block device's integrity function.  In the READ case, the buffer
210  * will be prepared for DMA and a suitable end_io handler set up.
211  */
bio_integrity_prep(struct bio * bio)212 bool bio_integrity_prep(struct bio *bio)
213 {
214 	struct bio_integrity_payload *bip;
215 	struct blk_integrity *bi = blk_get_integrity(bio->bi_bdev->bd_disk);
216 	void *buf;
217 	unsigned long start, end;
218 	unsigned int len, nr_pages;
219 	unsigned int bytes, offset, i;
220 
221 	if (!bi)
222 		return true;
223 
224 	if (bio_op(bio) != REQ_OP_READ && bio_op(bio) != REQ_OP_WRITE)
225 		return true;
226 
227 	if (!bio_sectors(bio))
228 		return true;
229 
230 	/* Already protected? */
231 	if (bio_integrity(bio))
232 		return true;
233 
234 	if (bio_data_dir(bio) == READ) {
235 		if (!bi->profile->verify_fn ||
236 		    !(bi->flags & BLK_INTEGRITY_VERIFY))
237 			return true;
238 	} else {
239 		if (!bi->profile->generate_fn ||
240 		    !(bi->flags & BLK_INTEGRITY_GENERATE))
241 			return true;
242 	}
243 
244 	/* Allocate kernel buffer for protection data */
245 	len = bio_integrity_bytes(bi, bio_sectors(bio));
246 	buf = kmalloc(len, GFP_NOIO);
247 	if (unlikely(buf == NULL)) {
248 		printk(KERN_ERR "could not allocate integrity buffer\n");
249 		goto err_end_io;
250 	}
251 
252 	end = (((unsigned long) buf) + len + PAGE_SIZE - 1) >> PAGE_SHIFT;
253 	start = ((unsigned long) buf) >> PAGE_SHIFT;
254 	nr_pages = end - start;
255 
256 	/* Allocate bio integrity payload and integrity vectors */
257 	bip = bio_integrity_alloc(bio, GFP_NOIO, nr_pages);
258 	if (IS_ERR(bip)) {
259 		printk(KERN_ERR "could not allocate data integrity bioset\n");
260 		kfree(buf);
261 		goto err_end_io;
262 	}
263 
264 	bip->bip_flags |= BIP_BLOCK_INTEGRITY;
265 	bip_set_seed(bip, bio->bi_iter.bi_sector);
266 
267 	if (bi->flags & BLK_INTEGRITY_IP_CHECKSUM)
268 		bip->bip_flags |= BIP_IP_CHECKSUM;
269 
270 	/* Map it */
271 	offset = offset_in_page(buf);
272 	for (i = 0; i < nr_pages && len > 0; i++) {
273 		bytes = PAGE_SIZE - offset;
274 
275 		if (bytes > len)
276 			bytes = len;
277 
278 		if (bio_integrity_add_page(bio, virt_to_page(buf),
279 					   bytes, offset) < bytes) {
280 			printk(KERN_ERR "could not attach integrity payload\n");
281 			goto err_end_io;
282 		}
283 
284 		buf += bytes;
285 		len -= bytes;
286 		offset = 0;
287 	}
288 
289 	/* Auto-generate integrity metadata if this is a write */
290 	if (bio_data_dir(bio) == WRITE) {
291 		bio_integrity_process(bio, &bio->bi_iter,
292 				      bi->profile->generate_fn);
293 	} else {
294 		bip->bio_iter = bio->bi_iter;
295 	}
296 	return true;
297 
298 err_end_io:
299 	bio->bi_status = BLK_STS_RESOURCE;
300 	bio_endio(bio);
301 	return false;
302 }
303 EXPORT_SYMBOL(bio_integrity_prep);
304 
305 /**
306  * bio_integrity_verify_fn - Integrity I/O completion worker
307  * @work:	Work struct stored in bio to be verified
308  *
309  * Description: This workqueue function is called to complete a READ
310  * request.  The function verifies the transferred integrity metadata
311  * and then calls the original bio end_io function.
312  */
bio_integrity_verify_fn(struct work_struct * work)313 static void bio_integrity_verify_fn(struct work_struct *work)
314 {
315 	struct bio_integrity_payload *bip =
316 		container_of(work, struct bio_integrity_payload, bip_work);
317 	struct bio *bio = bip->bip_bio;
318 	struct blk_integrity *bi = blk_get_integrity(bio->bi_bdev->bd_disk);
319 
320 	/*
321 	 * At the moment verify is called bio's iterator was advanced
322 	 * during split and completion, we need to rewind iterator to
323 	 * it's original position.
324 	 */
325 	bio->bi_status = bio_integrity_process(bio, &bip->bio_iter,
326 						bi->profile->verify_fn);
327 	bio_integrity_free(bio);
328 	bio_endio(bio);
329 }
330 
331 /**
332  * __bio_integrity_endio - Integrity I/O completion function
333  * @bio:	Protected bio
334  *
335  * Description: Completion for integrity I/O
336  *
337  * Normally I/O completion is done in interrupt context.  However,
338  * verifying I/O integrity is a time-consuming task which must be run
339  * in process context.	This function postpones completion
340  * accordingly.
341  */
__bio_integrity_endio(struct bio * bio)342 bool __bio_integrity_endio(struct bio *bio)
343 {
344 	struct blk_integrity *bi = blk_get_integrity(bio->bi_bdev->bd_disk);
345 	struct bio_integrity_payload *bip = bio_integrity(bio);
346 
347 	if (bio_op(bio) == REQ_OP_READ && !bio->bi_status &&
348 	    (bip->bip_flags & BIP_BLOCK_INTEGRITY) && bi->profile->verify_fn) {
349 		INIT_WORK(&bip->bip_work, bio_integrity_verify_fn);
350 		queue_work(kintegrityd_wq, &bip->bip_work);
351 		return false;
352 	}
353 
354 	bio_integrity_free(bio);
355 	return true;
356 }
357 
358 /**
359  * bio_integrity_advance - Advance integrity vector
360  * @bio:	bio whose integrity vector to update
361  * @bytes_done:	number of data bytes that have been completed
362  *
363  * Description: This function calculates how many integrity bytes the
364  * number of completed data bytes correspond to and advances the
365  * integrity vector accordingly.
366  */
bio_integrity_advance(struct bio * bio,unsigned int bytes_done)367 void bio_integrity_advance(struct bio *bio, unsigned int bytes_done)
368 {
369 	struct bio_integrity_payload *bip = bio_integrity(bio);
370 	struct blk_integrity *bi = blk_get_integrity(bio->bi_bdev->bd_disk);
371 	unsigned bytes = bio_integrity_bytes(bi, bytes_done >> 9);
372 
373 	bip->bip_iter.bi_sector += bio_integrity_intervals(bi, bytes_done >> 9);
374 	bvec_iter_advance(bip->bip_vec, &bip->bip_iter, bytes);
375 }
376 
377 /**
378  * bio_integrity_trim - Trim integrity vector
379  * @bio:	bio whose integrity vector to update
380  *
381  * Description: Used to trim the integrity vector in a cloned bio.
382  */
bio_integrity_trim(struct bio * bio)383 void bio_integrity_trim(struct bio *bio)
384 {
385 	struct bio_integrity_payload *bip = bio_integrity(bio);
386 	struct blk_integrity *bi = blk_get_integrity(bio->bi_bdev->bd_disk);
387 
388 	bip->bip_iter.bi_size = bio_integrity_bytes(bi, bio_sectors(bio));
389 }
390 EXPORT_SYMBOL(bio_integrity_trim);
391 
392 /**
393  * bio_integrity_clone - Callback for cloning bios with integrity metadata
394  * @bio:	New bio
395  * @bio_src:	Original bio
396  * @gfp_mask:	Memory allocation mask
397  *
398  * Description:	Called to allocate a bip when cloning a bio
399  */
bio_integrity_clone(struct bio * bio,struct bio * bio_src,gfp_t gfp_mask)400 int bio_integrity_clone(struct bio *bio, struct bio *bio_src,
401 			gfp_t gfp_mask)
402 {
403 	struct bio_integrity_payload *bip_src = bio_integrity(bio_src);
404 	struct bio_integrity_payload *bip;
405 
406 	BUG_ON(bip_src == NULL);
407 
408 	bip = bio_integrity_alloc(bio, gfp_mask, bip_src->bip_vcnt);
409 	if (IS_ERR(bip))
410 		return PTR_ERR(bip);
411 
412 	memcpy(bip->bip_vec, bip_src->bip_vec,
413 	       bip_src->bip_vcnt * sizeof(struct bio_vec));
414 
415 	bip->bip_vcnt = bip_src->bip_vcnt;
416 	bip->bip_iter = bip_src->bip_iter;
417 	bip->bip_flags = bip_src->bip_flags & ~BIP_BLOCK_INTEGRITY;
418 
419 	return 0;
420 }
421 
bioset_integrity_create(struct bio_set * bs,int pool_size)422 int bioset_integrity_create(struct bio_set *bs, int pool_size)
423 {
424 	if (mempool_initialized(&bs->bio_integrity_pool))
425 		return 0;
426 
427 	if (mempool_init_slab_pool(&bs->bio_integrity_pool,
428 				   pool_size, bip_slab))
429 		return -1;
430 
431 	if (biovec_init_pool(&bs->bvec_integrity_pool, pool_size)) {
432 		mempool_exit(&bs->bio_integrity_pool);
433 		return -1;
434 	}
435 
436 	return 0;
437 }
438 EXPORT_SYMBOL(bioset_integrity_create);
439 
bioset_integrity_free(struct bio_set * bs)440 void bioset_integrity_free(struct bio_set *bs)
441 {
442 	mempool_exit(&bs->bio_integrity_pool);
443 	mempool_exit(&bs->bvec_integrity_pool);
444 }
445 
bio_integrity_init(void)446 void __init bio_integrity_init(void)
447 {
448 	/*
449 	 * kintegrityd won't block much but may burn a lot of CPU cycles.
450 	 * Make it highpri CPU intensive wq with max concurrency of 1.
451 	 */
452 	kintegrityd_wq = alloc_workqueue("kintegrityd", WQ_MEM_RECLAIM |
453 					 WQ_HIGHPRI | WQ_CPU_INTENSIVE, 1);
454 	if (!kintegrityd_wq)
455 		panic("Failed to create kintegrityd\n");
456 
457 	bip_slab = kmem_cache_create("bio_integrity_payload",
458 				     sizeof(struct bio_integrity_payload) +
459 				     sizeof(struct bio_vec) * BIO_INLINE_VECS,
460 				     0, SLAB_HWCACHE_ALIGN|SLAB_PANIC, NULL);
461 }
462