[dm][ufs] support Universal Flash Storage (UFS)

[GuEe-GUI]

拉取/合并请求描述：(PR description)

[
Support UFS over PCI, too.

]

当前拉取/合并请求的状态 Intent for your PR

必须选择一项 Choose one (Mandatory):

• 本拉取/合并请求是一个草稿版本 This PR is for a code-review and is intended to get feedback
• 本拉取/合并请求是一个成熟版本 This PR is mature, and ready to be integrated into the repo

代码质量 Code Quality：

我在这个拉取/合并请求中已经考虑了 As part of this pull request, I've considered the following:

• 已经仔细查看过代码改动的对比 Already check the difference between PR and old code
• 代码风格正确，包括缩进空格，命名及其他风格 Style guide is adhered to, including spacing, naming and other styles
• 没有垃圾代码，代码尽量精简，不包含#if 0代码，不包含已经被注释了的代码 All redundant code is removed and cleaned up
• 所有变更均有原因及合理的，并且不会影响到其他软件组件代码或BSP All modifications are justified and not affect other components or BSP
• 对难懂代码均提供对应的注释 I've commented appropriately where code is tricky
• 代码是高质量的 Code in this PR is of high quality
• 已经使用formatting 等源码格式化工具确保格式符合RT-Thread代码规范 This PR complies with RT-Thread code specification
• 如果是新增bsp, 已经添加ci检查到.github/ALL_BSP_COMPILE.json 详细请参考链接BSP自查

[github-actions]

📌 Code Review Assignment

🏷️ Tag: components

Reviewers: @Maihuanyi

Changed Files (Click to expand)

• components/drivers/Kconfig
• components/drivers/include/drivers/ufs.h
• components/drivers/include/rtdevice.h
• components/drivers/ufs/Kconfig
• components/drivers/ufs/SConscript
• components/drivers/ufs/ufs-pci.c
• components/drivers/ufs/ufs.c
• components/drivers/ufs/ufs_pm.c

---

📊 Current Review Status (Last Updated: 2026-03-29 22:20 CST)

• ⌛ @Maihuanyi Pending Review

---

📝 Review Instructions

1. 维护者可以通过单击此处来刷新审查状态: 🔄 刷新状态
   Maintainers can refresh the review status by clicking here: 🔄 Refresh Status

2. 确认审核通过后评论 LGTM/lgtm
   Comment LGTM/lgtm after confirming approval

3. PR合并前需至少一位维护者确认
   PR must be confirmed by at least one maintainer before merging

ℹ️ 刷新CI状态操作需要具备仓库写入权限。
ℹ️ Refresh CI status operation requires repository Write permission.

[github-actions]

👋 感谢您对 RT-Thread 的贡献！Thank you for your contribution to RT-Thread!

为确保代码符合 RT-Thread 的编码规范，请在你的仓库中执行以下步骤运行代码格式化工作流（如果格式化CI运行失败）。
To ensure your code complies with RT-Thread's coding style, please run the code formatting workflow by following the steps below (If the formatting of CI fails to run).

---

🛠 操作步骤 | Steps

1. 前往 Actions 页面 | Go to the Actions page
   点击进入工作流 → | Click to open workflow →

2. 点击 Run workflow | Click Run workflow

• 设置需排除的文件/目录（目录请以"/"结尾）
  Set files/directories to exclude (directories should end with "/")
• 将目标分支设置为 \ Set the target branch to：dm_ufs
• 设置PR number为 \ Set the PR number to：11302

3. 等待工作流完成 | Wait for the workflow to complete
   格式化后的代码将自动推送至你的分支。
   The formatted code will be automatically pushed to your branch.

完成后，提交将自动更新至 dm_ufs 分支，关联的 Pull Request 也会同步更新。
Once completed, commits will be pushed to the dm_ufs branch automatically, and the related Pull Request will be updated.

如有问题欢迎联系我们，再次感谢您的贡献！💐
If you have any questions, feel free to reach out. Thanks again for your contribution!

[Copilot]

Pull request overview

This PR introduces a new RT-Thread DM storage driver stack for Universal Flash Storage (UFS), including core UTP/SCSI transport, basic power-management/link helpers, and an optional PCI bus glue driver.

Changes:

• Add UFS host controller driver (ufs.c) implementing UTP transfer for a subset of SCSI commands.
• Add UFS PM/link helper utilities (ufs_pm.c) for DME/PA power mode, Hibern8, AHIT, and interrupt aggregation.
• Add optional PCI glue (ufs-pci.c) plus build/Kconfig wiring and public header exposure.

Reviewed changes

Copilot reviewed 8 out of 8 changed files in this pull request and generated 9 comments.

Show a summary per file

File	Description
components/drivers/ufs/ufs.c	Core UFS host registration and UTP-based SCSI transfer path
components/drivers/ufs/ufs_pm.c	UIC/DME helpers and post-link power/interrupt aggregation setup
components/drivers/ufs/ufs-pci.c	PCI probe/remove glue for UFS host controller
components/drivers/ufs/SConscript	Build integration for the new UFS sources
components/drivers/ufs/Kconfig	Kconfig options for enabling UFS and UFS-over-PCI
components/drivers/include/drivers/ufs.h	Public UFS register/UPIU/UTP definitions and APIs
components/drivers/include/rtdevice.h	Expose drivers/ufs.h under RT_USING_UFS
components/drivers/Kconfig	Hook UFS Kconfig into the drivers menu

[Copilot]

[bug/缺陷]: Sense-data copy block is effectively unreachable.

English: The code returns immediately when rsp->header.status != 0 (sets err and goto _end), so the later if (err != RT_EOK && rsp->sr.sense_data_len != 0 ...) never runs (err is RT_EOK on the success path). If you intend to copy sense data on CHECK CONDITION, set err before the copy and perform the copy before returning, or key the copy off rsp->header.status.
中文：当 rsp->header.status != 0 时会立刻设置 err 并跳转返回，因此后面的 if (err != RT_EOK && rsp->sr.sense_data_len != 0 ...) 实际不会被执行（成功路径下 err 仍为 RT_EOK）。若希望在 CHECK CONDITION 时拷贝 sense 数据，应在返回前完成拷贝，并以 rsp->header.status / sense_data_len 作为条件。

Suggested change

	err = -RT_ERROR;
	goto _end;
	}
	/* Sense data: copy to cmd when check condition (BSP may use cmd->data.ptr for sense) */
	if (err != RT_EOK && rsp->sr.sense_data_len != 0 && cmd->data.ptr && cmd->data.size >= RT_UFS_SENSE_SIZE)
	{
	rt_uint16_t sense_len = rt_be16_to_cpu(rsp->sr.sense_data_len);
	sense_len = rt_min_t(rt_uint16_t, sense_len, RT_UFS_SENSE_SIZE);
	rt_memcpy(cmd->data.ptr, rsp->sr.sense_data, sense_len);
	}
	/* Sense data: copy to cmd when check condition (BSP may use cmd->data.ptr for sense) */
	if (rsp->sr.sense_data_len != 0 && cmd->data.ptr && cmd->data.size >= RT_UFS_SENSE_SIZE)
	{
	rt_uint16_t sense_len = rt_be16_to_cpu(rsp->sr.sense_data_len);
	sense_len = rt_min_t(rt_uint16_t, sense_len, RT_UFS_SENSE_SIZE);
	rt_memcpy(cmd->data.ptr, rsp->sr.sense_data, sense_len);
	}
	err = -RT_ERROR;
	goto _end;
	}

[Copilot]

[maintainability/可维护性]: Timeout PRDT debug log prints the address of the addr field (not the PRDT DMA address), and prints LE fields without converting.

English: &prd_table[0]->addr logs the pointer-to-field, which is misleading for post-mortem debugging. Consider logging rt_le64_to_cpu(prd_table[0].addr) and rt_le32_to_cpu(prd_table[0].size) (and avoid taking the address-of).
中文：超时场景下的 PRDT 日志打印的是 addr 字段自身的地址（指针），不是 PRDT 里保存的 DMA 地址；同时 LE 字段未做 endian 转换，容易误导定位问题。建议打印 rt_le64_to_cpu(prd_table[0].addr) / rt_le32_to_cpu(prd_table[0].size)，不要对字段取地址。

Suggested change

	LOG_E("%s: UTP PRDT[0]: addr=%#llx size(le32)=%#08x",
	rt_dm_dev_get_name(ufs->parent.dev),
	(rt_uint64_t)(&((struct rt_utp_transfer_cmd_desc *)ufs->ucd_base)->prd_table[0])->addr,
	(&((struct rt_utp_transfer_cmd_desc *)ufs->ucd_base)->prd_table[0])->size);
	LOG_E("%s: UTP PRDT[0]: addr=%#llx size=%#08x",
	rt_dm_dev_get_name(ufs->parent.dev),
	(rt_uint64_t)rt_le64_to_cpu(((struct rt_utp_transfer_cmd_desc *)ufs->ucd_base)->prd_table[0].addr),
	(rt_uint32_t)rt_le32_to_cpu(((struct rt_utp_transfer_cmd_desc *)ufs->ucd_base)->prd_table[0].size));

[Copilot]

[bug/缺陷]: pci_ufs_probe() failure path leaks resources.

English: If rt_ufs_host_register() fails after rt_pci_iomap()/rt_pci_set_master()/rt_pci_irq_unmask(), the _fail label only frees pci_ufs and does not: mask IRQ, clear bus master, or iounmap regs. Please add cleanup similar to components/drivers/ata/ahci-pci.c (disable/mask IRQ, rt_pci_clear_master, rt_iounmap).
中文：pci_ufs_probe() 在 rt_pci_iomap()/rt_pci_set_master()/rt_pci_irq_unmask() 之后若 rt_ufs_host_register() 失败，_fail 仅 rt_free(pci_ufs)，会泄露/遗留资源：未 mask IRQ、未 clear master、未 iounmap regs。建议参考 components/drivers/ata/ahci-pci.c 的清理流程（mask/disable IRQ、rt_pci_clear_master、rt_iounmap）。

Suggested change

	_fail:
	_fail:
	if (ufs->regs)
	{
	rt_pci_irq_mask(pdev);
	rt_pci_clear_master(pdev);
	rt_iounmap(ufs->regs);
	}

[Copilot]

[bug/缺陷]: rt_ufs_dme_get() may dereference a NULL ufs / ufs->regs when reading UCMDARG3.

English: Even though rt_ufs_uic_cmd_send() checks regs, this function reads HWREG32(ufs->regs + ...) unconditionally after the call, which will crash if ufs or regs is NULL. Please add the same validation as other helpers (ufs && ufs->regs) before issuing the UIC command.
中文：rt_ufs_dme_get() 在读取 UCMDARG3 时可能解引用 NULL 的 ufs / ufs->regs。虽然 rt_ufs_uic_cmd_send() 会检查 regs，但本函数在调用后无条件执行 HWREG32(ufs->regs + ...)，若 ufs/regs 为空会崩溃。建议在发送 UIC 命令前增加与其他辅助函数一致的校验（ufs && ufs->regs）。

[Copilot]

[concurrency/并发]: rt_ufs_host_unregister() frees DMA buffers but does not mask/detach the IRQ (nor disable controller interrupts), which can lead to ISR use-after-free during hot-unplug/remove.

English: Please add NULL checks, stop/disable interrupts (e.g., clear IE, mask + detach IRQ like rt_ahci_host_unregister does), then free DMA buffers. Also consider checking/propagating the return value of rt_scsi_host_unregister().
中文：rt_ufs_host_unregister() 在释放 DMA 缓冲区前没有屏蔽/解绑中断（也未关闭控制器中断），在设备移除/热插拔时可能导致 ISR 访问已释放内存（UAF）。建议增加空指针检查，先关闭/屏蔽中断（例如清 IE，并像 rt_ahci_host_unregister 那样 mask + detach IRQ），再释放 DMA 缓冲区；同时建议检查/返回 rt_scsi_host_unregister() 的返回值。

Suggested change

	rt_scsi_host_unregister(&ufs->parent);
	if (ufs->ops->exit && (err = ufs->ops->exit(ufs)))
	{
	LOG_W("%s: UFS ops->exit failed: %s", rt_dm_dev_get_name(ufs->parent.dev), rt_strerror(err));
	}
	rt_err_t ret = RT_EOK;
	if (ufs == RT_NULL)
	{
	return -RT_EINVAL;
	}
	/* First, stop controller and interrupts via ops->exit (if available). */
	if (ufs->ops && ufs->ops->exit)
	{
	ret = ufs->ops->exit(ufs);
	if (ret != RT_EOK)
	{
	LOG_W("%s: UFS ops->exit failed: %s",
	rt_dm_dev_get_name(ufs->parent.dev), rt_strerror(ret));
	err = ret;
	}
	}
	/* Unregister SCSI host and propagate error if it fails. */
	ret = rt_scsi_host_unregister(&ufs->parent);
	if (ret != RT_EOK)
	{
	LOG_W("%s: rt_scsi_host_unregister failed: %s",
	rt_dm_dev_get_name(ufs->parent.dev), rt_strerror(ret));
	if (err == RT_EOK)
	{
	err = ret;
	}
	}

[Copilot]

[bug/缺陷]: pci_ufs_probe() chooses ufs->ops as quirk ? quirk->ops : &pci_ufs_std_ops, which can set ops to NULL when quirk exists but quirk->ops is not provided.

English: Please match the pattern used by AHCI/NVMe PCI drivers: ufs->ops = (quirk && quirk->ops) ? quirk->ops : &pci_ufs_std_ops; to avoid rt_ufs_host_register() failing/crashing.
中文：pci_ufs_probe() 使用 quirk ? quirk->ops : &pci_ufs_std_ops 选择 ops，当 quirk 存在但 quirk->ops 未设置时会把 ops 置为 NULL，导致后续注册失败/潜在崩溃。建议参考 AHCI/NVMe PCI 驱动的写法：(quirk && quirk->ops) ? quirk->ops : &pci_ufs_std_ops。

Suggested change

	ufs->ops = quirk ? quirk->ops : &pci_ufs_std_ops;
	ufs->ops = (quirk && quirk->ops) ? quirk->ops : &pci_ufs_std_ops;

[Copilot]

[bug/缺陷]: rt_ufs_dme_set() does not validate ufs/ufs->regs before calling rt_ufs_uic_cmd_send().

English: If a caller passes a NULL ufs (or an uninitialized host), this will dereference ufs inside rt_ufs_uic_cmd_send() and crash. Please add parameter checks (ufs != RT_NULL && ufs->regs != RT_NULL) and return -RT_EINVAL, consistent with other UFS PM APIs in this file.
中文：rt_ufs_dme_set() 在调用 rt_ufs_uic_cmd_send() 前未检查 ufs/ufs->regs，若调用方传入 NULL 或未初始化的 host，会在 rt_ufs_uic_cmd_send() 内解引用导致崩溃。建议增加参数检查（ufs != RT_NULL 且 ufs->regs != RT_NULL）并返回 -RT_EINVAL，与本文件其他 UFS PM API 的风格保持一致。

Suggested change

	if ((ufs == RT_NULL) || (ufs->regs == RT_NULL))
	{
	return -RT_EINVAL;
	}

[Copilot]

[best_practices/最佳实践]: __BIT_FIELD uses a double-underscore identifier reserved for the implementation.

English: Please rename this helper macro to a non-reserved name (e.g. RT_UFS_BIT_FIELD/RT_BIT_FIELD_GET) to avoid undefined behavior / namespace clashes with toolchains.
中文：__BIT_FIELD 使用了双下划线开头的标识符，属于 C 标准保留命名，可能与编译器/库发生命名冲突。建议改为非保留名称（例如 RT_UFS_BIT_FIELD / RT_BIT_FIELD_GET）。

[Copilot]

[concurrency/并发]: scsi->parallel_io is set to RT_TRUE, but this UFS implementation uses a single shared slot (RT_UFS_SLOT_ID=0) and shared UTRD/UCD buffers, so concurrent block I/O can race/corrupt descriptors.

English: Please set scsi->parallel_io to RT_FALSE (so blk layer serializes via usr_lock), or add proper per-request resources + locking to make ufs_utp_transfer re-entrant.
中文：这里将 scsi->parallel_io 设为 RT_TRUE，但当前实现只使用单个共享 slot（RT_UFS_SLOT_ID=0）且 UTRD/UCD 缓冲区共享，并发读写会产生竞态并可能破坏描述符/数据。建议将 scsi->parallel_io 设为 RT_FALSE（由块层串行化），或实现可重入的请求资源与锁。

Suggested change

	scsi->parallel_io = RT_TRUE;
	/* Use single-threaded I/O: UFS driver shares a single UTP slot/UTRD/UCD. */
	scsi->parallel_io = RT_FALSE;