External/cloud-hypervisor
1
0
Fork 0
mirror of https://github.com/cloud-hypervisor/cloud-hypervisor.git synced 2025-02-22 03:12:27 +00:00
Code Issues Packages Projects Releases Wiki Activity

hypervisor, vmm: Avoid leaking hypervisor specific data structure

Browse Source 
Currently a bunch of KVM specific interfaces are leaked into the vmm
crate which should ideally does not contain any hypervisor specific data
structures.

Signed-off-by: Jinank Jain <jinankjain@microsoft.com>
This commit is contained in:
Jinank Jain 2025-01-23 05:46:42 +00:00 committed by Bo Chen
parent 5b929cb277
commit 171b28ce52
4 changed files with 132 additions and 47 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

24
hypervisor/src/cpu.rs
View File

@ -10,6 +10,9 @@
// //
// //
#[cfg(target_arch = "aarch64")]
use std::sync::Arc;
use thiserror::Error; use thiserror::Error;
#[cfg(not(target_arch = "riscv64"))] #[cfg(not(target_arch = "riscv64"))]
use vm_memory::GuestAddress; use vm_memory::GuestAddress;
@ -449,7 +452,26 @@ pub trait Vcpu: Send + Sync {
#[cfg(target_arch = "aarch64")] #[cfg(target_arch = "aarch64")]
fn vcpu_finalize(&self, feature: i32) -> Result<()>; fn vcpu_finalize(&self, feature: i32) -> Result<()>;
///
/// Gets the features that have been finalized for a given CPU.
///
#[cfg(target_arch = "aarch64")]
fn vcpu_get_finalized_features(&self) -> i32;
///
/// Sets processor features for a given CPU.
///
#[cfg(target_arch = "aarch64")]
fn vcpu_set_processor_features(
&self,
vm: &Arc<dyn crate::Vm>,
kvi: &mut VcpuInit,
id: u8,
) -> Result<()>;
///
/// Returns VcpuInit with default value set
///
#[cfg(target_arch = "aarch64")]
fn create_vcpu_init(&self) -> VcpuInit;
/// ///
/// Gets a list of the guest registers that are supported for the /// Gets a list of the guest registers that are supported for the
/// KVM_GET_ONE_REG/KVM_SET_ONE_REG calls. /// KVM_GET_ONE_REG/KVM_SET_ONE_REG calls.

58
hypervisor/src/kvm/mod.rs
View File

@ -2657,6 +2657,64 @@ impl cpu::Vcpu for KvmVcpu {
.map_err(|e| cpu::HypervisorCpuError::SetDebugRegs(e.into())) .map_err(|e| cpu::HypervisorCpuError::SetDebugRegs(e.into()))
} }
#[cfg(target_arch = "aarch64")]
fn vcpu_get_finalized_features(&self) -> i32 {
kvm_bindings::KVM_ARM_VCPU_SVE as i32
}
#[cfg(target_arch = "aarch64")]
fn vcpu_set_processor_features(
&self,
vm: &Arc<dyn crate::Vm>,
kvi: &mut crate::VcpuInit,
id: u8,
) -> cpu::Result<()> {
use std::arch::is_aarch64_feature_detected;
#[allow(clippy::nonminimal_bool)]
let sve_supported =
is_aarch64_feature_detected!("sve") || is_aarch64_feature_detected!("sve2");
let mut kvm_kvi: kvm_bindings::kvm_vcpu_init = (*kvi).into();
// We already checked that the capability is supported.
kvm_kvi.features[0] |= 1 << kvm_bindings::KVM_ARM_VCPU_PSCI_0_2;
if vm
.as_any()
.downcast_ref::<crate::kvm::KvmVm>()
.unwrap()
.check_extension(Cap::ArmPmuV3)
{
kvm_kvi.features[0] |= 1 << kvm_bindings::KVM_ARM_VCPU_PMU_V3;
}
if sve_supported
&& vm
.as_any()
.downcast_ref::<crate::kvm::KvmVm>()
.unwrap()
.check_extension(Cap::ArmSve)
{
kvm_kvi.features[0] |= 1 << kvm_bindings::KVM_ARM_VCPU_SVE;
}
// Non-boot cpus are powered off initially.
if id > 0 {
kvm_kvi.features[0] |= 1 << kvm_bindings::KVM_ARM_VCPU_POWER_OFF;
}
*kvi = kvm_kvi.into();
Ok(())
}
///
/// Return VcpuInit with default value set
///
#[cfg(target_arch = "aarch64")]
fn create_vcpu_init(&self) -> crate::VcpuInit {
kvm_bindings::kvm_vcpu_init::default().into()
}
#[cfg(target_arch = "aarch64")] #[cfg(target_arch = "aarch64")]
fn vcpu_init(&self, kvi: &crate::VcpuInit) -> cpu::Result<()> { fn vcpu_init(&self, kvi: &crate::VcpuInit) -> cpu::Result<()> {
let kvm_kvi: kvm_bindings::kvm_vcpu_init = (*kvi).into(); let kvm_kvi: kvm_bindings::kvm_vcpu_init = (*kvi).into();

25
hypervisor/src/mshv/mod.rs
View File

@ -1257,6 +1257,31 @@ impl cpu::Vcpu for MshvVcpu {
unimplemented!() unimplemented!()
} }
#[cfg(target_arch = "aarch64")]
fn vcpu_finalize(&self, _feature: i32) -> cpu::Result<()> {
unimplemented!()
}
#[cfg(target_arch = "aarch64")]
fn vcpu_get_finalized_features(&self) -> i32 {
unimplemented!()
}
#[cfg(target_arch = "aarch64")]
fn vcpu_set_processor_features(
&self,
_vm: &Arc<dyn crate::Vm>,
_kvi: &mut crate::VcpuInit,
_id: u8,
) -> cpu::Result<()> {
unimplemented!()
}
#[cfg(target_arch = "aarch64")]
fn create_vcpu_init(&self) -> crate::VcpuInit {
unimplemented!();
}
#[cfg(target_arch = "x86_64")] #[cfg(target_arch = "x86_64")]
/// ///
/// X86 specific call to setup the CPUID registers. /// X86 specific call to setup the CPUID registers.

72
vmm/src/cpu.rs
View File

@ -44,10 +44,6 @@ use hypervisor::arch::x86::CpuIdEntry;
use hypervisor::arch::x86::MsrEntry; use hypervisor::arch::x86::MsrEntry;
#[cfg(all(target_arch = "x86_64", feature = "guest_debug"))] #[cfg(all(target_arch = "x86_64", feature = "guest_debug"))]
use hypervisor::arch::x86::SpecialRegisters; use hypervisor::arch::x86::SpecialRegisters;
#[cfg(target_arch = "aarch64")]
use hypervisor::kvm::kvm_bindings;
#[cfg(all(target_arch = "aarch64", feature = "kvm"))]
use hypervisor::kvm::kvm_ioctls::Cap;
#[cfg(feature = "tdx")] #[cfg(feature = "tdx")]
use hypervisor::kvm::{TdxExitDetails, TdxExitStatus}; use hypervisor::kvm::{TdxExitDetails, TdxExitStatus};
#[cfg(target_arch = "x86_64")] #[cfg(target_arch = "x86_64")]
@ -138,6 +134,10 @@ pub enum Error {
#[error("Error fetching preferred target: {0}")] #[error("Error fetching preferred target: {0}")]
VcpuArmPreferredTarget(#[source] hypervisor::HypervisorVmError), VcpuArmPreferredTarget(#[source] hypervisor::HypervisorVmError),
#[cfg(target_arch = "aarch64")]
#[error("Error setting vCPU processor features: {0}")]
VcpuSetProcessorFeatures(#[source] hypervisor::HypervisorCpuError),
#[cfg(target_arch = "aarch64")] #[cfg(target_arch = "aarch64")]
#[error("Error initialising vCPU: {0}")] #[error("Error initialising vCPU: {0}")]
VcpuArmInit(#[source] hypervisor::HypervisorCpuError), VcpuArmInit(#[source] hypervisor::HypervisorCpuError),
@ -422,44 +422,25 @@ impl Vcpu {
#[cfg(target_arch = "aarch64")] #[cfg(target_arch = "aarch64")]
pub fn init(&self, vm: &Arc<dyn hypervisor::Vm>) -> Result<()> { pub fn init(&self, vm: &Arc<dyn hypervisor::Vm>) -> Result<()> {
use std::arch::is_aarch64_feature_detected; use std::arch::is_aarch64_feature_detected;
let mut kvi: kvm_bindings::kvm_vcpu_init = kvm_bindings::kvm_vcpu_init::default();
#[allow(clippy::nonminimal_bool)] #[allow(clippy::nonminimal_bool)]
let sve_supported = let sve_supported =
is_aarch64_feature_detected!("sve") || is_aarch64_feature_detected!("sve2"); is_aarch64_feature_detected!("sve") || is_aarch64_feature_detected!("sve2");
let mut kvi = self.vcpu.create_vcpu_init();
// This reads back the kernel's preferred target type. // This reads back the kernel's preferred target type.
vm.get_preferred_target(&mut kvi.into()) vm.get_preferred_target(&mut kvi)
.map_err(Error::VcpuArmPreferredTarget)?; .map_err(Error::VcpuArmPreferredTarget)?;
// We already checked that the capability is supported.
kvi.features[0] |= 1 << kvm_bindings::KVM_ARM_VCPU_PSCI_0_2;
if vm
.as_any()
.downcast_ref::<hypervisor::kvm::KvmVm>()
.unwrap()
.check_extension(Cap::ArmPmuV3)
{
kvi.features[0] |= 1 << kvm_bindings::KVM_ARM_VCPU_PMU_V3;
}
if sve_supported
&& vm
.as_any()
.downcast_ref::<hypervisor::kvm::KvmVm>()
.unwrap()
.check_extension(Cap::ArmSve)
{
kvi.features[0] |= 1 << kvm_bindings::KVM_ARM_VCPU_SVE;
}
// Non-boot cpus are powered off initially.
if self.id > 0 {
kvi.features[0] |= 1 << kvm_bindings::KVM_ARM_VCPU_POWER_OFF;
}
self.vcpu self.vcpu
.vcpu_init(&kvi.into()) .vcpu_set_processor_features(vm, &mut kvi, self.id)
.map_err(Error::VcpuArmInit)?; .map_err(Error::VcpuSetProcessorFeatures)?;
self.vcpu.vcpu_init(&kvi).map_err(Error::VcpuArmInit)?;
if sve_supported { if sve_supported {
let finalized_features = self.vcpu.vcpu_get_finalized_features();
self.vcpu self.vcpu
.vcpu_finalize(kvm_bindings::KVM_ARM_VCPU_SVE as i32) .vcpu_finalize(finalized_features)
.map_err(Error::VcpuArmFinalize)?; .map_err(Error::VcpuArmFinalize)?;
} }
Ok(()) Ok(())
@ -2952,8 +2933,7 @@ mod tests {
use arch::layout; use arch::layout;
use hypervisor::kvm::aarch64::is_system_register; use hypervisor::kvm::aarch64::is_system_register;
use hypervisor::kvm::kvm_bindings::{ use hypervisor::kvm::kvm_bindings::{
kvm_vcpu_init, user_pt_regs, KVM_REG_ARM64, KVM_REG_ARM64_SYSREG, KVM_REG_ARM_CORE, user_pt_regs, KVM_REG_ARM64, KVM_REG_ARM64_SYSREG, KVM_REG_ARM_CORE, KVM_REG_SIZE_U64,
KVM_REG_SIZE_U64,
}; };
use hypervisor::{arm64_core_reg_id, offset_of}; use hypervisor::{arm64_core_reg_id, offset_of};
@ -2966,9 +2946,9 @@ mod tests {
// Must fail when vcpu is not initialized yet. // Must fail when vcpu is not initialized yet.
vcpu.setup_regs(0, 0x0, layout::FDT_START.0).unwrap_err(); vcpu.setup_regs(0, 0x0, layout::FDT_START.0).unwrap_err();
let mut kvi: kvm_vcpu_init = kvm_vcpu_init::default(); let mut kvi = vcpu.create_vcpu_init();
vm.get_preferred_target(&mut kvi.into()).unwrap(); vm.get_preferred_target(&mut kvi).unwrap();
vcpu.vcpu_init(&kvi.into()).unwrap(); vcpu.vcpu_init(&kvi).unwrap();
vcpu.setup_regs(0, 0x0, layout::FDT_START.0).unwrap(); vcpu.setup_regs(0, 0x0, layout::FDT_START.0).unwrap();
} }
@ -2978,13 +2958,13 @@ mod tests {
let hv = hypervisor::new().unwrap(); let hv = hypervisor::new().unwrap();
let vm = hv.create_vm().unwrap(); let vm = hv.create_vm().unwrap();
let vcpu = vm.create_vcpu(0, None).unwrap(); let vcpu = vm.create_vcpu(0, None).unwrap();
let mut kvi: kvm_vcpu_init = kvm_vcpu_init::default(); let mut kvi = vcpu.create_vcpu_init();
vm.get_preferred_target(&mut kvi.into()).unwrap(); vm.get_preferred_target(&mut kvi).unwrap();
// Must fail when vcpu is not initialized yet. // Must fail when vcpu is not initialized yet.
vcpu.get_sys_reg(regs::MPIDR_EL1).unwrap_err(); vcpu.get_sys_reg(regs::MPIDR_EL1).unwrap_err();
vcpu.vcpu_init(&kvi.into()).unwrap(); vcpu.vcpu_init(&kvi).unwrap();
assert_eq!(vcpu.get_sys_reg(regs::MPIDR_EL1).unwrap(), 0x80000000); assert_eq!(vcpu.get_sys_reg(regs::MPIDR_EL1).unwrap(), 0x80000000);
} }
@ -3002,8 +2982,8 @@ mod tests {
let hv = hypervisor::new().unwrap(); let hv = hypervisor::new().unwrap();
let vm = hv.create_vm().unwrap(); let vm = hv.create_vm().unwrap();
let vcpu = vm.create_vcpu(0, None).unwrap(); let vcpu = vm.create_vcpu(0, None).unwrap();
let mut kvi: kvm_vcpu_init = kvm_vcpu_init::default(); let mut kvi = vcpu.create_vcpu_init();
vm.get_preferred_target(&mut kvi.into()).unwrap(); vm.get_preferred_target(&mut kvi).unwrap();
// Must fail when vcpu is not initialized yet. // Must fail when vcpu is not initialized yet.
assert_eq!( assert_eq!(
@ -3017,7 +2997,7 @@ mod tests {
"Failed to set aarch64 core register: Exec format error (os error 8)" "Failed to set aarch64 core register: Exec format error (os error 8)"
); );
vcpu.vcpu_init(&kvi.into()).unwrap(); vcpu.vcpu_init(&kvi).unwrap();
state = vcpu.get_regs().unwrap(); state = vcpu.get_regs().unwrap();
assert_eq!(state.get_pstate(), 0x3C5); assert_eq!(state.get_pstate(), 0x3C5);
@ -3029,8 +3009,8 @@ mod tests {
let hv = hypervisor::new().unwrap(); let hv = hypervisor::new().unwrap();
let vm = hv.create_vm().unwrap(); let vm = hv.create_vm().unwrap();
let vcpu = vm.create_vcpu(0, None).unwrap(); let vcpu = vm.create_vcpu(0, None).unwrap();
let mut kvi: kvm_vcpu_init = kvm_vcpu_init::default(); let mut kvi = vcpu.create_vcpu_init();
vm.get_preferred_target(&mut kvi.into()).unwrap(); vm.get_preferred_target(&mut kvi).unwrap();
let state = vcpu.get_mp_state().unwrap(); let state = vcpu.get_mp_state().unwrap();
vcpu.set_mp_state(state).unwrap(); vcpu.set_mp_state(state).unwrap();