mirror of
https://github.com/cloud-hypervisor/cloud-hypervisor.git
synced 2024-09-12 18:15:06 +00:00
0ff074d2b8
There is one corner case which was not properly handled by the current code from our AddressAllocator. If both the address start (from the next range) and the requested region size are already aligned on the same value as "alignment", when doing the substract of the requested size + alignment, the returned address is already aligned. The problem is that we might end up overlapping with an existing range since the check between the available delta and the requested size does not take into account a full extra alignment. By substracting the requested size + alignment - 1 from the address start of the next range, we ensure this kind of corner case would not happen since the address won't be naturally aligned and after some adjustment from the function align_address(), the correct start address will be returned. Signed-off-by: Sebastien Boeuf <sebastien.boeuf@intel.com>
135 lines
4.6 KiB
Rust
Executable File
135 lines
4.6 KiB
Rust
Executable File
// Copyright 2018 The Chromium OS Authors. All rights reserved.
|
|
// Copyright © 2019 Intel Corporation
|
|
//
|
|
// Portions Copyright 2017 The Chromium OS Authors. All rights reserved.
|
|
// Use of this source code is governed by a BSD-style license that can be
|
|
// found in the LICENSE-BSD-3-Clause file.
|
|
//
|
|
// SPDX-License-Identifier: Apache-2.0 AND BSD-3-Clause
|
|
|
|
use vm_memory::{GuestAddress, GuestUsize};
|
|
|
|
use crate::address::AddressAllocator;
|
|
use crate::gsi::{GsiAllocator, GsiApic};
|
|
|
|
use libc::{sysconf, _SC_PAGESIZE};
|
|
|
|
/// Safe wrapper for `sysconf(_SC_PAGESIZE)`.
|
|
#[inline(always)]
|
|
fn pagesize() -> usize {
|
|
// Trivially safe
|
|
unsafe { sysconf(_SC_PAGESIZE) as usize }
|
|
}
|
|
|
|
/// Manages allocating system resources such as address space and interrupt numbers.
|
|
///
|
|
/// # Example - Use the `SystemAddress` builder.
|
|
///
|
|
/// ```
|
|
/// # use vm_allocator::{GsiApic, SystemAllocator};
|
|
/// # use vm_memory::{Address, GuestAddress, GuestUsize};
|
|
/// let mut allocator = SystemAllocator::new(
|
|
/// GuestAddress(0x1000), 0x10000,
|
|
/// GuestAddress(0x10000000), 0x10000000,
|
|
/// GuestAddress(0x20000000), 0x100000,
|
|
/// vec![GsiApic::new(5, 19)]).unwrap();
|
|
/// assert_eq!(allocator.allocate_irq(), Some(5));
|
|
/// assert_eq!(allocator.allocate_irq(), Some(6));
|
|
/// assert_eq!(allocator.allocate_mmio_addresses(None, 0x1000, Some(0x1000)), Some(GuestAddress(0x1fff_f000)));
|
|
///
|
|
/// ```
|
|
pub struct SystemAllocator {
|
|
io_address_space: AddressAllocator,
|
|
mmio_address_space: AddressAllocator,
|
|
mmio_hole_address_space: AddressAllocator,
|
|
gsi_allocator: GsiAllocator,
|
|
}
|
|
|
|
impl SystemAllocator {
|
|
/// Creates a new `SystemAllocator` for managing addresses and irq numvers.
|
|
/// Can return `None` if `base` + `size` overflows a u64
|
|
///
|
|
/// * `io_base` - The starting address of IO memory.
|
|
/// * `io_size` - The size of IO memory.
|
|
/// * `mmio_base` - The starting address of MMIO memory.
|
|
/// * `mmio_size` - The size of MMIO memory.
|
|
/// * `first_irq` - The first irq number to give out.
|
|
pub fn new(
|
|
io_base: GuestAddress,
|
|
io_size: GuestUsize,
|
|
mmio_base: GuestAddress,
|
|
mmio_size: GuestUsize,
|
|
mmio_hole_base: GuestAddress,
|
|
mmio_hole_size: GuestUsize,
|
|
apics: Vec<GsiApic>,
|
|
) -> Option<Self> {
|
|
Some(SystemAllocator {
|
|
io_address_space: AddressAllocator::new(io_base, io_size)?,
|
|
mmio_address_space: AddressAllocator::new(mmio_base, mmio_size)?,
|
|
mmio_hole_address_space: AddressAllocator::new(mmio_hole_base, mmio_hole_size)?,
|
|
gsi_allocator: GsiAllocator::new(apics),
|
|
})
|
|
}
|
|
|
|
/// Reserves the next available system irq number.
|
|
pub fn allocate_irq(&mut self) -> Option<u32> {
|
|
self.gsi_allocator.allocate_irq().ok()
|
|
}
|
|
|
|
/// Reserves the next available GSI.
|
|
pub fn allocate_gsi(&mut self) -> Option<u32> {
|
|
self.gsi_allocator.allocate_gsi().ok()
|
|
}
|
|
|
|
/// Reserves a section of `size` bytes of IO address space.
|
|
pub fn allocate_io_addresses(
|
|
&mut self,
|
|
address: Option<GuestAddress>,
|
|
size: GuestUsize,
|
|
align_size: Option<GuestUsize>,
|
|
) -> Option<GuestAddress> {
|
|
self.io_address_space
|
|
.allocate(address, size, Some(align_size.unwrap_or(0x1)))
|
|
}
|
|
|
|
/// Reserves a section of `size` bytes of MMIO address space.
|
|
pub fn allocate_mmio_addresses(
|
|
&mut self,
|
|
address: Option<GuestAddress>,
|
|
size: GuestUsize,
|
|
align_size: Option<GuestUsize>,
|
|
) -> Option<GuestAddress> {
|
|
self.mmio_address_space.allocate(
|
|
address,
|
|
size,
|
|
Some(align_size.unwrap_or(pagesize() as u64)),
|
|
)
|
|
}
|
|
|
|
/// Reserves a section of `size` bytes of MMIO address space.
|
|
pub fn allocate_mmio_hole_addresses(
|
|
&mut self,
|
|
address: Option<GuestAddress>,
|
|
size: GuestUsize,
|
|
align_size: Option<GuestUsize>,
|
|
) -> Option<GuestAddress> {
|
|
self.mmio_hole_address_space.allocate(
|
|
address,
|
|
size,
|
|
Some(align_size.unwrap_or(pagesize() as u64)),
|
|
)
|
|
}
|
|
|
|
/// Free an IO address range.
|
|
/// We can only free a range if it matches exactly an already allocated range.
|
|
pub fn free_io_addresses(&mut self, address: GuestAddress, size: GuestUsize) {
|
|
self.io_address_space.free(address, size)
|
|
}
|
|
|
|
/// Free an MMIO address range.
|
|
/// We can only free a range if it matches exactly an already allocated range.
|
|
pub fn free_mmio_addresses(&mut self, address: GuestAddress, size: GuestUsize) {
|
|
self.mmio_address_space.free(address, size)
|
|
}
|
|
}
|