mlx4_core: Add support for secure-host and SMP firewall

Secure-host is the general term for the capability of a device to protect itself and the subnet from malicious host software. This is achieved by: 1. Not allowing un-trusted entities to access device configuration registers, directly (through pci_cr or pci_conf) and indirectly (through MADs). 2. Hiding M_Key from untrusted entities. 3. Preventing the modification of GUID0 by un-trusted entities 4. Not allowing drivers on untrusted hosts to receive nor to transmit packets over QP0 (SMP Firewall). The secure-host capability depends on firmware handling all QP0 packets, and not passing these packets up to the driver. Any information required by the driver for proper operation (e.g., SM lid) is passed via events generated by the firmware while processing QP0 MADs. Driver support mainly requires using the MAD_DEMUX FW command at startup, where the feature is enabled/disabled through a procedure described in the Mellanox HCA tools package. Signed-off-by: Jack Morgenstein <jackm@dev.mellanox.co.il> Signed-off-by: Or Gerlitz <ogerlitz@mellanox.com> [ Fix error path in mlx4_setup_hca to go to err_mcg_table_free. - Roland ] Signed-off-by: Roland Dreier <roland@purestorage.com>
author: Jack Morgenstein <jackm@dev.mellanox.co.il> 2014-06-01 04:53:50 -0400
committer: Roland Dreier <roland@purestorage.com> 2014-08-05 10:40:22 -0400
commit: 114840c3d29b9cbd867faa69595a2aee6f6b54a2 (patch)
tree: cc9e6089cd0fe65256c3fca020e62107a6f756d2
parent: 64aa90f26c06e1cb2aacfb98a7d0eccfbd6c1a91 (diff)
6 files changed, 113 insertions, 1 deletions
diff --git a/drivers/net/ethernet/mellanox/mlx4/cmd.c b/drivers/net/ethernet/mellanox/mlx4/cmd.c
index 5d940a26055c..65a4a0f88ea0 100644
--- a/drivers/net/ethernet/mellanox/mlx4/cmd.c
+++ b/drivers/net/ethernet/mellanox/mlx4/cmd.c
@@ -1311,6 +1311,15 @@ static struct mlx4_cmd_info cmd_info[] = {
                .wrapper = mlx4_MAD_IFC_wrapper
        },
        {
+                .opcode = MLX4_CMD_MAD_DEMUX,
+                .has_inbox = false,
+                .has_outbox = false,
+                .out_is_imm = false,
+                .encode_slave_id = false,
+                .verify = NULL,
+                .wrapper = mlx4_CMD_EPERM_wrapper
+        },
+        {
                .opcode = MLX4_CMD_QUERY_IF_STAT,
                .has_inbox = false,
                .has_outbox = true,
diff --git a/drivers/net/ethernet/mellanox/mlx4/fw.c b/drivers/net/ethernet/mellanox/mlx4/fw.c
index 688e1eabab29..494753e44ae3 100644
--- a/drivers/net/ethernet/mellanox/mlx4/fw.c
+++ b/drivers/net/ethernet/mellanox/mlx4/fw.c
@@ -136,7 +136,8 @@ static void dump_dev_cap_flags2(struct mlx4_dev *dev, u64 flags)
                [7] = "FSM (MAC anti-spoofing) support",
                [8] = "Dynamic QP updates support",
                [9] = "Device managed flow steering IPoIB support",
-                [10] = "TCP/IP offloads/flow-steering for VXLAN support"
+                [10] = "TCP/IP offloads/flow-steering for VXLAN support",
+                [11] = "MAD DEMUX (Secure-Host) support"
        };
        int i;
@@ -571,6 +572,7 @@ int mlx4_QUERY_DEV_CAP(struct mlx4_dev *dev, struct mlx4_dev_cap *dev_cap)
 #define QUERY_DEV_CAP_MAX_ICM_SZ_OFFSET         0xa0
 #define QUERY_DEV_CAP_FW_REASSIGN_MAC           0x9d
 #define QUERY_DEV_CAP_VXLAN                     0x9e
+#define QUERY_DEV_CAP_MAD_DEMUX_OFFSET          0xb0
        dev_cap->flags2 = 0;
        mailbox = mlx4_alloc_cmd_mailbox(dev);
@@ -748,6 +750,11 @@ int mlx4_QUERY_DEV_CAP(struct mlx4_dev *dev, struct mlx4_dev_cap *dev_cap)
                MLX4_GET(dev_cap->max_counters, outbox,
                         QUERY_DEV_CAP_MAX_COUNTERS_OFFSET);
+        MLX4_GET(field32, outbox,
+                 QUERY_DEV_CAP_MAD_DEMUX_OFFSET);
+        if (field32 & (1 << 0))
+                dev_cap->flags2 |= MLX4_DEV_CAP_FLAG2_MAD_DEMUX;
        MLX4_GET(field32, outbox, QUERY_DEV_CAP_EXT_2_FLAGS_OFFSET);
        if (field32 & (1 << 16))
                dev_cap->flags2 |= MLX4_DEV_CAP_FLAG2_UPDATE_QP;
@@ -2016,3 +2023,85 @@ void mlx4_opreq_action(struct work_struct *work)
 out:
        mlx4_free_cmd_mailbox(dev, mailbox);
 }
+static int mlx4_check_smp_firewall_active(struct mlx4_dev *dev,
+                                          struct mlx4_cmd_mailbox *mailbox)
+{
+#define MLX4_CMD_MAD_DEMUX_SET_ATTR_OFFSET              0x10
+#define MLX4_CMD_MAD_DEMUX_GETRESP_ATTR_OFFSET          0x20
+#define MLX4_CMD_MAD_DEMUX_TRAP_ATTR_OFFSET             0x40
+#define MLX4_CMD_MAD_DEMUX_TRAP_REPRESS_ATTR_OFFSET     0x70
+        u32 set_attr_mask, getresp_attr_mask;
+        u32 trap_attr_mask, traprepress_attr_mask;
+        MLX4_GET(set_attr_mask, mailbox->buf,
+                 MLX4_CMD_MAD_DEMUX_SET_ATTR_OFFSET);
+        mlx4_dbg(dev, "SMP firewall set_attribute_mask = 0x%x\n",
+                 set_attr_mask);
+        MLX4_GET(getresp_attr_mask, mailbox->buf,
+                 MLX4_CMD_MAD_DEMUX_GETRESP_ATTR_OFFSET);
+        mlx4_dbg(dev, "SMP firewall getresp_attribute_mask = 0x%x\n",
+                 getresp_attr_mask);
+        MLX4_GET(trap_attr_mask, mailbox->buf,
+                 MLX4_CMD_MAD_DEMUX_TRAP_ATTR_OFFSET);
+        mlx4_dbg(dev, "SMP firewall trap_attribute_mask = 0x%x\n",
+                 trap_attr_mask);
+        MLX4_GET(traprepress_attr_mask, mailbox->buf,
+                 MLX4_CMD_MAD_DEMUX_TRAP_REPRESS_ATTR_OFFSET);
+        mlx4_dbg(dev, "SMP firewall traprepress_attribute_mask = 0x%x\n",
+                 traprepress_attr_mask);
+        if (set_attr_mask && getresp_attr_mask && trap_attr_mask &&
+            traprepress_attr_mask)
+                return 1;
+        return 0;
+}
+int mlx4_config_mad_demux(struct mlx4_dev *dev)
+{
+        struct mlx4_cmd_mailbox *mailbox;
+        int secure_host_active;
+        int err;
+        /* Check if mad_demux is supported */
+        if (!(dev->caps.flags2 & MLX4_DEV_CAP_FLAG2_MAD_DEMUX))
+                return 0;
+        mailbox = mlx4_alloc_cmd_mailbox(dev);
+        if (IS_ERR(mailbox)) {
+                mlx4_warn(dev, "Failed to allocate mailbox for cmd MAD_DEMUX");
+                return -ENOMEM;
+        }
+        /* Query mad_demux to find out which MADs are handled by internal sma */
+        err = mlx4_cmd_box(dev, 0, mailbox->dma, 0x01 /* subn mgmt class */,
+                           MLX4_CMD_MAD_DEMUX_QUERY_RESTR, MLX4_CMD_MAD_DEMUX,
+                           MLX4_CMD_TIME_CLASS_B, MLX4_CMD_NATIVE);
+        if (err) {
+                mlx4_warn(dev, "MLX4_CMD_MAD_DEMUX: query restrictions failed (%d)\n",
+                          err);
+                goto out;
+        }
+        secure_host_active = mlx4_check_smp_firewall_active(dev, mailbox);
+        /* Config mad_demux to handle all MADs returned by the query above */
+        err = mlx4_cmd(dev, mailbox->dma, 0x01 /* subn mgmt class */,
+                       MLX4_CMD_MAD_DEMUX_CONFIG, MLX4_CMD_MAD_DEMUX,
+                       MLX4_CMD_TIME_CLASS_B, MLX4_CMD_NATIVE);
+        if (err) {
+                mlx4_warn(dev, "MLX4_CMD_MAD_DEMUX: configure failed (%d)\n", err);
+                goto out;
+        }
+        if (secure_host_active)
+                mlx4_warn(dev, "HCA operating in secure-host mode. SMP firewall activated.\n");
+out:
+        mlx4_free_cmd_mailbox(dev, mailbox);
+        return err;
+}
diff --git a/drivers/net/ethernet/mellanox/mlx4/main.c b/drivers/net/ethernet/mellanox/mlx4/main.c
index 82ab427290c3..f2c8e8ba23fe 100644
--- a/drivers/net/ethernet/mellanox/mlx4/main.c
+++ b/drivers/net/ethernet/mellanox/mlx4/main.c
@@ -1831,6 +1831,11 @@ static int mlx4_setup_hca(struct mlx4_dev *dev)
                        mlx4_err(dev, "Failed to initialize multicast group table, aborting\n");
                        goto err_mr_table_free;
                }
+                err = mlx4_config_mad_demux(dev);
+                if (err) {
+                        mlx4_err(dev, "Failed in config_mad_demux, aborting\n");
+                        goto err_mcg_table_free;
+                }
        }
        err = mlx4_init_eq_table(dev);
diff --git a/drivers/net/ethernet/mellanox/mlx4/mlx4.h b/drivers/net/ethernet/mellanox/mlx4/mlx4.h
index 1d8af7336807..310b30b4682c 100644
--- a/drivers/net/ethernet/mellanox/mlx4/mlx4.h
+++ b/drivers/net/ethernet/mellanox/mlx4/mlx4.h
@@ -1311,5 +1311,6 @@ void mlx4_init_quotas(struct mlx4_dev *dev);
 int mlx4_get_slave_num_gids(struct mlx4_dev *dev, int slave, int port);
 /* Returns the VF index of slave */
 int mlx4_get_vf_indx(struct mlx4_dev *dev, int slave);
+int mlx4_config_mad_demux(struct mlx4_dev *dev);
 #endif /* MLX4_H */
diff --git a/include/linux/mlx4/cmd.h b/include/linux/mlx4/cmd.h
index c8450366c130..379c02648ab3 100644
--- a/include/linux/mlx4/cmd.h
+++ b/include/linux/mlx4/cmd.h
@@ -116,6 +116,7 @@ enum {
        /* special QP and management commands */
        MLX4_CMD_CONF_SPECIAL_QP = 0x23,
        MLX4_CMD_MAD_IFC         = 0x24,
+        MLX4_CMD_MAD_DEMUX       = 0x203,
        /* multicast commands */
        MLX4_CMD_READ_MCG        = 0x25,
@@ -186,6 +187,12 @@ enum {
 };
 enum {
+        MLX4_CMD_MAD_DEMUX_CONFIG       = 0,
+        MLX4_CMD_MAD_DEMUX_QUERY_STATE  = 1,
+        MLX4_CMD_MAD_DEMUX_QUERY_RESTR  = 2, /* Query mad demux restrictions */
+};
+enum {
        MLX4_CMD_WRAPPED,
        MLX4_CMD_NATIVE
 };
diff --git a/include/linux/mlx4/device.h b/include/linux/mlx4/device.h
index 35b51e7af886..cee9561e8ef6 100644
--- a/include/linux/mlx4/device.h
+++ b/include/linux/mlx4/device.h
@@ -172,6 +172,7 @@ enum {
        MLX4_DEV_CAP_FLAG2_UPDATE_QP            = 1LL <<  8,
        MLX4_DEV_CAP_FLAG2_DMFS_IPOIB           = 1LL <<  9,
        MLX4_DEV_CAP_FLAG2_VXLAN_OFFLOADS       = 1LL <<  10,
+        MLX4_DEV_CAP_FLAG2_MAD_DEMUX            = 1LL <<  11,
 };
 enum {
author	Jack Morgenstein <jackm@dev.mellanox.co.il>	2014-06-01 04:53:50 -0400
committer	Roland Dreier <roland@purestorage.com>	2014-08-05 10:40:22 -0400
commit	114840c3d29b9cbd867faa69595a2aee6f6b54a2 (patch)
tree	cc9e6089cd0fe65256c3fca020e62107a6f756d2
parent	64aa90f26c06e1cb2aacfb98a7d0eccfbd6c1a91 (diff)

diff --git a/drivers/net/ethernet/mellanox/mlx4/cmd.c b/drivers/net/ethernet/mellanox/mlx4/cmd.c index 5d940a26055c..65a4a0f88ea0 100644 --- a/drivers/net/ethernet/mellanox/mlx4/cmd.c +++ b/drivers/net/ethernet/mellanox/mlx4/cmd.c
@@ -1311,6 +1311,15 @@ static struct mlx4_cmd_info cmd_info[] = {
1311	.wrapper = mlx4_MAD_IFC_wrapper	1311	.wrapper = mlx4_MAD_IFC_wrapper
1312	},	1312	},
1313	{	1313	{
		1314	.opcode = MLX4_CMD_MAD_DEMUX,
		1315	.has_inbox = false,
		1316	.has_outbox = false,
		1317	.out_is_imm = false,
		1318	.encode_slave_id = false,
		1319	.verify = NULL,
		1320	.wrapper = mlx4_CMD_EPERM_wrapper
		1321	},
		1322	{
1314	.opcode = MLX4_CMD_QUERY_IF_STAT,	1323	.opcode = MLX4_CMD_QUERY_IF_STAT,
1315	.has_inbox = false,	1324	.has_inbox = false,
1316	.has_outbox = true,	1325	.has_outbox = true,


diff --git a/drivers/net/ethernet/mellanox/mlx4/fw.c b/drivers/net/ethernet/mellanox/mlx4/fw.c index 688e1eabab29..494753e44ae3 100644 --- a/drivers/net/ethernet/mellanox/mlx4/fw.c +++ b/drivers/net/ethernet/mellanox/mlx4/fw.c
@@ -136,7 +136,8 @@ static void dump_dev_cap_flags2(struct mlx4_dev *dev, u64 flags)
136	[7] = "FSM (MAC anti-spoofing) support",	136	[7] = "FSM (MAC anti-spoofing) support",
137	[8] = "Dynamic QP updates support",	137	[8] = "Dynamic QP updates support",
138	[9] = "Device managed flow steering IPoIB support",	138	[9] = "Device managed flow steering IPoIB support",
139	[10] = "TCP/IP offloads/flow-steering for VXLAN support"	139	[10] = "TCP/IP offloads/flow-steering for VXLAN support",
		140	[11] = "MAD DEMUX (Secure-Host) support"
140	};	141	};
141	int i;	142	int i;
142		143
@@ -571,6 +572,7 @@ int mlx4_QUERY_DEV_CAP(struct mlx4_dev dev, struct mlx4_dev_cap dev_cap)
571	#define QUERY_DEV_CAP_MAX_ICM_SZ_OFFSET 0xa0	572	#define QUERY_DEV_CAP_MAX_ICM_SZ_OFFSET 0xa0
572	#define QUERY_DEV_CAP_FW_REASSIGN_MAC 0x9d	573	#define QUERY_DEV_CAP_FW_REASSIGN_MAC 0x9d
573	#define QUERY_DEV_CAP_VXLAN 0x9e	574	#define QUERY_DEV_CAP_VXLAN 0x9e
		575	#define QUERY_DEV_CAP_MAD_DEMUX_OFFSET 0xb0
574		576
575	dev_cap->flags2 = 0;	577	dev_cap->flags2 = 0;
576	mailbox = mlx4_alloc_cmd_mailbox(dev);	578	mailbox = mlx4_alloc_cmd_mailbox(dev);
@@ -748,6 +750,11 @@ int mlx4_QUERY_DEV_CAP(struct mlx4_dev dev, struct mlx4_dev_cap dev_cap)
748	MLX4_GET(dev_cap->max_counters, outbox,	750	MLX4_GET(dev_cap->max_counters, outbox,
749	QUERY_DEV_CAP_MAX_COUNTERS_OFFSET);	751	QUERY_DEV_CAP_MAX_COUNTERS_OFFSET);
750		752
		753	MLX4_GET(field32, outbox,
		754	QUERY_DEV_CAP_MAD_DEMUX_OFFSET);
		755	if (field32 & (1 << 0))
		756	dev_cap->flags2 \|= MLX4_DEV_CAP_FLAG2_MAD_DEMUX;
		757
751	MLX4_GET(field32, outbox, QUERY_DEV_CAP_EXT_2_FLAGS_OFFSET);	758	MLX4_GET(field32, outbox, QUERY_DEV_CAP_EXT_2_FLAGS_OFFSET);
752	if (field32 & (1 << 16))	759	if (field32 & (1 << 16))
753	dev_cap->flags2 \|= MLX4_DEV_CAP_FLAG2_UPDATE_QP;	760	dev_cap->flags2 \|= MLX4_DEV_CAP_FLAG2_UPDATE_QP;
@@ -2016,3 +2023,85 @@ void mlx4_opreq_action(struct work_struct *work)
2016	out:	2023	out:
2017	mlx4_free_cmd_mailbox(dev, mailbox);	2024	mlx4_free_cmd_mailbox(dev, mailbox);
2018	}	2025	}
		2026
		2027	static int mlx4_check_smp_firewall_active(struct mlx4_dev *dev,
		2028	struct mlx4_cmd_mailbox *mailbox)
		2029	{
		2030	#define MLX4_CMD_MAD_DEMUX_SET_ATTR_OFFSET 0x10
		2031	#define MLX4_CMD_MAD_DEMUX_GETRESP_ATTR_OFFSET 0x20
		2032	#define MLX4_CMD_MAD_DEMUX_TRAP_ATTR_OFFSET 0x40
		2033	#define MLX4_CMD_MAD_DEMUX_TRAP_REPRESS_ATTR_OFFSET 0x70
		2034
		2035	u32 set_attr_mask, getresp_attr_mask;
		2036	u32 trap_attr_mask, traprepress_attr_mask;
		2037
		2038	MLX4_GET(set_attr_mask, mailbox->buf,
		2039	MLX4_CMD_MAD_DEMUX_SET_ATTR_OFFSET);
		2040	mlx4_dbg(dev, "SMP firewall set_attribute_mask = 0x%x\n",
		2041	set_attr_mask);
		2042
		2043	MLX4_GET(getresp_attr_mask, mailbox->buf,
		2044	MLX4_CMD_MAD_DEMUX_GETRESP_ATTR_OFFSET);
		2045	mlx4_dbg(dev, "SMP firewall getresp_attribute_mask = 0x%x\n",
		2046	getresp_attr_mask);
		2047
		2048	MLX4_GET(trap_attr_mask, mailbox->buf,
		2049	MLX4_CMD_MAD_DEMUX_TRAP_ATTR_OFFSET);
		2050	mlx4_dbg(dev, "SMP firewall trap_attribute_mask = 0x%x\n",
		2051	trap_attr_mask);
		2052
		2053	MLX4_GET(traprepress_attr_mask, mailbox->buf,
		2054	MLX4_CMD_MAD_DEMUX_TRAP_REPRESS_ATTR_OFFSET);
		2055	mlx4_dbg(dev, "SMP firewall traprepress_attribute_mask = 0x%x\n",
		2056	traprepress_attr_mask);
		2057
		2058	if (set_attr_mask && getresp_attr_mask && trap_attr_mask &&
		2059	traprepress_attr_mask)
		2060	return 1;
		2061
		2062	return 0;
		2063	}
		2064
		2065	int mlx4_config_mad_demux(struct mlx4_dev *dev)
		2066	{
		2067	struct mlx4_cmd_mailbox *mailbox;
		2068	int secure_host_active;
		2069	int err;
		2070
		2071	/* Check if mad_demux is supported */
		2072	if (!(dev->caps.flags2 & MLX4_DEV_CAP_FLAG2_MAD_DEMUX))
		2073	return 0;
		2074
		2075	mailbox = mlx4_alloc_cmd_mailbox(dev);
		2076	if (IS_ERR(mailbox)) {
		2077	mlx4_warn(dev, "Failed to allocate mailbox for cmd MAD_DEMUX");
		2078	return -ENOMEM;
		2079	}
		2080
		2081	/* Query mad_demux to find out which MADs are handled by internal sma */
		2082	err = mlx4_cmd_box(dev, 0, mailbox->dma, 0x01 /* subn mgmt class */,
		2083	MLX4_CMD_MAD_DEMUX_QUERY_RESTR, MLX4_CMD_MAD_DEMUX,
		2084	MLX4_CMD_TIME_CLASS_B, MLX4_CMD_NATIVE);
		2085	if (err) {
		2086	mlx4_warn(dev, "MLX4_CMD_MAD_DEMUX: query restrictions failed (%d)\n",
		2087	err);
		2088	goto out;
		2089	}
		2090
		2091	secure_host_active = mlx4_check_smp_firewall_active(dev, mailbox);
		2092
		2093	/* Config mad_demux to handle all MADs returned by the query above */
		2094	err = mlx4_cmd(dev, mailbox->dma, 0x01 /* subn mgmt class */,
		2095	MLX4_CMD_MAD_DEMUX_CONFIG, MLX4_CMD_MAD_DEMUX,
		2096	MLX4_CMD_TIME_CLASS_B, MLX4_CMD_NATIVE);
		2097	if (err) {
		2098	mlx4_warn(dev, "MLX4_CMD_MAD_DEMUX: configure failed (%d)\n", err);
		2099	goto out;
		2100	}
		2101
		2102	if (secure_host_active)
		2103	mlx4_warn(dev, "HCA operating in secure-host mode. SMP firewall activated.\n");
		2104	out:
		2105	mlx4_free_cmd_mailbox(dev, mailbox);
		2106	return err;
		2107	}


diff --git a/drivers/net/ethernet/mellanox/mlx4/main.c b/drivers/net/ethernet/mellanox/mlx4/main.c index 82ab427290c3..f2c8e8ba23fe 100644 --- a/drivers/net/ethernet/mellanox/mlx4/main.c +++ b/drivers/net/ethernet/mellanox/mlx4/main.c
@@ -1831,6 +1831,11 @@ static int mlx4_setup_hca(struct mlx4_dev *dev)
1831	mlx4_err(dev, "Failed to initialize multicast group table, aborting\n");	1831	mlx4_err(dev, "Failed to initialize multicast group table, aborting\n");
1832	goto err_mr_table_free;	1832	goto err_mr_table_free;
1833	}	1833	}
		1834	err = mlx4_config_mad_demux(dev);
		1835	if (err) {
		1836	mlx4_err(dev, "Failed in config_mad_demux, aborting\n");
		1837	goto err_mcg_table_free;
		1838	}
1834	}	1839	}
1835		1840
1836	err = mlx4_init_eq_table(dev);	1841	err = mlx4_init_eq_table(dev);


diff --git a/drivers/net/ethernet/mellanox/mlx4/mlx4.h b/drivers/net/ethernet/mellanox/mlx4/mlx4.h index 1d8af7336807..310b30b4682c 100644 --- a/drivers/net/ethernet/mellanox/mlx4/mlx4.h +++ b/drivers/net/ethernet/mellanox/mlx4/mlx4.h
@@ -1311,5 +1311,6 @@ void mlx4_init_quotas(struct mlx4_dev *dev);
1311	int mlx4_get_slave_num_gids(struct mlx4_dev *dev, int slave, int port);	1311	int mlx4_get_slave_num_gids(struct mlx4_dev *dev, int slave, int port);
1312	/* Returns the VF index of slave */	1312	/* Returns the VF index of slave */
1313	int mlx4_get_vf_indx(struct mlx4_dev *dev, int slave);	1313	int mlx4_get_vf_indx(struct mlx4_dev *dev, int slave);
		1314	int mlx4_config_mad_demux(struct mlx4_dev *dev);
1314		1315
1315	#endif /* MLX4_H */	1316	#endif /* MLX4_H */


diff --git a/include/linux/mlx4/cmd.h b/include/linux/mlx4/cmd.h index c8450366c130..379c02648ab3 100644 --- a/include/linux/mlx4/cmd.h +++ b/include/linux/mlx4/cmd.h
@@ -116,6 +116,7 @@ enum {
116	/* special QP and management commands */	116	/* special QP and management commands */
117	MLX4_CMD_CONF_SPECIAL_QP = 0x23,	117	MLX4_CMD_CONF_SPECIAL_QP = 0x23,
118	MLX4_CMD_MAD_IFC = 0x24,	118	MLX4_CMD_MAD_IFC = 0x24,
		119	MLX4_CMD_MAD_DEMUX = 0x203,
119		120
120	/* multicast commands */	121	/* multicast commands */
121	MLX4_CMD_READ_MCG = 0x25,	122	MLX4_CMD_READ_MCG = 0x25,
@@ -186,6 +187,12 @@ enum {
186	};	187	};
187		188
188	enum {	189	enum {
		190	MLX4_CMD_MAD_DEMUX_CONFIG = 0,
		191	MLX4_CMD_MAD_DEMUX_QUERY_STATE = 1,
		192	MLX4_CMD_MAD_DEMUX_QUERY_RESTR = 2, /* Query mad demux restrictions */
		193	};
		194
		195	enum {
189	MLX4_CMD_WRAPPED,	196	MLX4_CMD_WRAPPED,
190	MLX4_CMD_NATIVE	197	MLX4_CMD_NATIVE
191	};	198	};


diff --git a/include/linux/mlx4/device.h b/include/linux/mlx4/device.h index 35b51e7af886..cee9561e8ef6 100644 --- a/include/linux/mlx4/device.h +++ b/include/linux/mlx4/device.h
@@ -172,6 +172,7 @@ enum {
172	MLX4_DEV_CAP_FLAG2_UPDATE_QP = 1LL << 8,	172	MLX4_DEV_CAP_FLAG2_UPDATE_QP = 1LL << 8,
173	MLX4_DEV_CAP_FLAG2_DMFS_IPOIB = 1LL << 9,	173	MLX4_DEV_CAP_FLAG2_DMFS_IPOIB = 1LL << 9,
174	MLX4_DEV_CAP_FLAG2_VXLAN_OFFLOADS = 1LL << 10,	174	MLX4_DEV_CAP_FLAG2_VXLAN_OFFLOADS = 1LL << 10,
		175	MLX4_DEV_CAP_FLAG2_MAD_DEMUX = 1LL << 11,
175	};	176	};
176		177
177	enum {	178	enum {