/* Mapping a segment is a four step process:
* (1) xemem_get/attach the seg into our aspace
* (2) invoke aspace_virt_to_phys on the attached region to generate a page
* frame list
* (3) invoke aspace_map_region on the target region in the target
* aspace
* (4) detach the xemem attachment (hold onto the apid)
*/
static int
__map_hio_segment(hio_segment_t * seg,
id_t aspace_id)
{
xemem_apid_t apid;
void * local_attach;
uint32_t nr_pages, page_size, i, j;
int status;
if (aspace_id == MY_ID)
aspace_get_myid(&aspace_id);
/* (1) xemem get/attach */
{
struct xemem_addr addr;
apid = xemem_get(seg->segid, XEMEM_RDWR);
if (apid == -1) {
printf("Could not get xemem segid %li\n", seg->segid);
return -1;
}
addr.apid = apid;
addr.offset = 0;
local_attach = xemem_attach(addr, seg->size, NULL);
if (local_attach == MAP_FAILED) {
printf("Could not attach xemem apid %li (%s)\n", addr.apid, strerror(errno));
goto out_attach;
}
}
/* (2) figure out the pfns and (3) map them to the target aspace */
{
vaddr_t local_vaddr, target_vaddr;
paddr_t paddr;
struct pmem_region region;
page_size = seg->page_size;
nr_pages = seg->size / seg->page_size;
for (i = 0; i < nr_pages; i++) {
local_vaddr = (addr_t)local_attach + (seg->page_size * i);
target_vaddr = (addr_t)seg->vaddr + (seg->page_size * i);
/* (2) */
status = aspace_virt_to_phys(MY_ID, local_vaddr, &paddr);
if (status != 0) {
printf("aspace_virt_to_phys failed (%s)\n", strerror(errno));
goto out_virt_to_phys;
}
/* Temporary hack: add umem so we can use aspace_map_region below.
* (the kernel won't let us map non-umem memory)
*/
{
memset(®ion, 0, sizeof(struct pmem_region));
region.start = paddr;
region.end = paddr + seg->page_size;
region.type_is_set = true;
region.type = PMEM_TYPE_UMEM;
region.allocated_is_set = true;
region.allocated = true;
status = pmem_add(®ion);
if (status != 0) {
printf("pmem_add failed (%s)\n", strerror(errno));
goto out_umem;
}
}
/* (3) */
status = aspace_map_region(
aspace_id,
target_vaddr,
seg->page_size,
VM_READ | VM_WRITE | VM_USER,
seg->page_size,
"hio",
paddr
);
if (status != 0) {
printf("aspace_map_region failed (%d) (%s)\n",
status, strerror(errno));
goto out_map_pmem;
}
/* Remove umem now. Unclear how to do it later */
pmem_free_umem(®ion);
pmem_del(®ion);
}
}
/* (4) teardown local mapping */
xemem_detach(local_attach);
return 0;
out_map_pmem:
out_umem:
out_virt_to_phys:
for (j = 0; j < i; j++) {
aspace_unmap_region(
aspace_id,
(addr_t)seg->vaddr + (j * seg->page_size),
seg->page_size
);
}
xemem_detach(local_attach);
out_attach:
xemem_release(apid);
return -1;
}
int
main(int argc, char ** argv, char * envp[])
{
struct pisces_cmd cmd;
int pisces_fd = 0;
memset(&cmd, 0, sizeof(struct pisces_cmd));
printf("Pisces Control Daemon\n");
CPU_ZERO(&enclave_cpus); /* Initialize CPU mask */
CPU_SET(0, &enclave_cpus); /* We always boot on CPU 0 */
pisces_fd = open(PISCES_CMD_PATH, O_RDWR);
if (pisces_fd < 0) {
printf("Error opening pisces cmd file (%s)\n", PISCES_CMD_PATH);
return -1;
}
while (1) {
int ret = 0;
ret = read(pisces_fd, &cmd, sizeof(struct pisces_cmd));
if (ret != sizeof(struct pisces_cmd)) {
printf("Error reading pisces CMD (ret=%d)\n", ret);
break;
}
//printf("Command=%llu, data_len=%d\n", cmd.cmd, cmd.data_len);
switch (cmd.cmd) {
case ENCLAVE_CMD_ADD_MEM: {
struct cmd_mem_add mem_cmd;
struct pmem_region rgn;
memset(&mem_cmd, 0, sizeof(struct cmd_mem_add));
memset(&rgn, 0, sizeof(struct pmem_region));
ret = read(pisces_fd, &mem_cmd, sizeof(struct cmd_mem_add));
if (ret != sizeof(struct cmd_mem_add)) {
printf("Error reading pisces MEM_ADD CMD (ret=%d)\n", ret);
send_resp(pisces_fd, -1);
break;
}
rgn.start = mem_cmd.phys_addr;
rgn.end = mem_cmd.phys_addr + mem_cmd.size;
rgn.type_is_set = 1;
rgn.type = PMEM_TYPE_UMEM;
rgn.allocated_is_set = 1;
rgn.allocated = 0;
printf("Adding pmem (%p - %p)\n", (void *)rgn.start, (void *)rgn.end);
ret = pmem_add(&rgn);
printf("pmem_add returned %d\n", ret);
ret = pmem_zero(&rgn);
printf("pmem_zero returned %d\n", ret);
send_resp(pisces_fd, 0);
break;
}
case ENCLAVE_CMD_ADD_CPU: {
struct cmd_cpu_add cpu_cmd;
int logical_cpu = 0;
ret = read(pisces_fd, &cpu_cmd, sizeof(struct cmd_cpu_add));
if (ret != sizeof(struct cmd_cpu_add)) {
printf("Error reading pisces CPU_ADD CMD (ret=%d)\n", ret);
send_resp(pisces_fd, -1);
break;
}
printf("Adding CPU phys_id %llu, apic_id %llu\n",
(unsigned long long) cpu_cmd.phys_cpu_id,
(unsigned long long) cpu_cmd.apic_id);
logical_cpu = phys_cpu_add(cpu_cmd.phys_cpu_id, cpu_cmd.apic_id);
if (logical_cpu == -1) {
printf("Error Adding CPU to Kitten\n");
send_resp(pisces_fd, -1);
break;
}
/* Notify Palacios of New CPU */
if (issue_v3_cmd(V3_ADD_CPU, (uintptr_t)logical_cpu) == -1) {
printf("Error: Could not add CPU to Palacios\n");
}
CPU_SET(logical_cpu, &enclave_cpus);
send_resp(pisces_fd, 0);
break;
}
case ENCLAVE_CMD_REMOVE_CPU: {
struct cmd_cpu_add cpu_cmd;
int logical_cpu = 0;
ret = read(pisces_fd, &cpu_cmd, sizeof(struct cmd_cpu_add));
if (ret != sizeof(struct cmd_cpu_add)) {
printf("Error reading pisces CPU_ADD CMD (ret=%d)\n", ret);
send_resp(pisces_fd, -1);
break;
}
printf("Removing CPU phys_id %llu, apic_id %llu\n",
(unsigned long long) cpu_cmd.phys_cpu_id,
(unsigned long long) cpu_cmd.apic_id);
logical_cpu = phys_cpu_remove(cpu_cmd.phys_cpu_id, cpu_cmd.apic_id);
if (logical_cpu == -1) {
printf("Error remove CPU to Kitten\n");
send_resp(pisces_fd, -1);
break;
}
CPU_CLR(logical_cpu, &enclave_cpus);
send_resp(pisces_fd, 0);
break;
}
case ENCLAVE_CMD_LAUNCH_JOB: {
struct cmd_launch_job * job_cmd = malloc(sizeof(struct cmd_launch_job));
int ret = 0;
memset(job_cmd, 0, sizeof(struct cmd_launch_job));
ret = read(pisces_fd, job_cmd, sizeof(struct cmd_launch_job));
if (ret != sizeof(struct cmd_launch_job)) {
printf("Error reading Job Launch CMD (ret = %d)\n", ret);
free(job_cmd);
send_resp(pisces_fd, -1);
break;
}
ret = launch_job(pisces_fd, &(job_cmd->spec));
free(job_cmd);
send_resp(pisces_fd, ret);
break;
}
case ENCLAVE_CMD_LOAD_FILE: {
struct cmd_load_file * load_cmd = malloc(sizeof(struct cmd_load_file));
int ret = 0;
memset(load_cmd, 0, sizeof(struct cmd_load_file));
ret = read(pisces_fd, load_cmd, sizeof(struct cmd_load_file));
if (ret != sizeof(struct cmd_load_file)) {
printf("Error reading LOAD FILE CMD (ret = %d)\n", ret);
free(load_cmd);
send_resp(pisces_fd, -1);
break;
}
ret = load_file(pisces_fd, load_cmd->file_pair.lnx_file, load_cmd->file_pair.lwk_file);
free(load_cmd);
send_resp(pisces_fd, ret);
break;
}
case ENCLAVE_CMD_STORE_FILE: {
break;
}
case ENCLAVE_CMD_CREATE_VM: {
struct pisces_user_file_info * file_info = NULL;
struct cmd_create_vm vm_cmd;
struct pmem_region rgn;
struct v3_guest_img guest_img;
id_t my_aspace_id;
vaddr_t file_addr;
size_t file_size = 0;
int path_len = 0;
int vm_id = -1;
int status = 0;
memset(&vm_cmd, 0, sizeof(struct cmd_create_vm));
memset(&rgn, 0, sizeof(struct pmem_region));
memset(&guest_img, 0, sizeof(struct v3_guest_img));
ret = read(pisces_fd, &vm_cmd, sizeof(struct cmd_create_vm));
if (ret != sizeof(struct cmd_create_vm)) {
send_resp(pisces_fd, -1);
printf("Error: CREATE_VM command could not be read\n");
break;
}
path_len = strlen((char *)vm_cmd.path.file_name) + 1;
file_info = malloc(sizeof(struct pisces_user_file_info) + path_len);
memset(file_info, 0, sizeof(struct pisces_user_file_info) + path_len);
file_info->path_len = path_len;
strncpy(file_info->path, (char *)vm_cmd.path.file_name, path_len - 1);
file_size = ioctl(pisces_fd, PISCES_STAT_FILE, file_info);
status = aspace_get_myid(&my_aspace_id);
if (status != 0)
return status;
if (pmem_alloc_umem(file_size, PAGE_SIZE, &rgn)) {
printf("Error: Could not allocate umem for guest image (size=%lu)\n", file_size);
break;
}
pmem_zero(&rgn);
status =
aspace_map_region_anywhere(
my_aspace_id,
&file_addr,
round_up(file_size, PAGE_SIZE),
(VM_USER|VM_READ|VM_WRITE),
PAGE_SIZE,
"VM Image",
rgn.start
);
file_info->user_addr = file_addr;
ioctl(pisces_fd, PISCES_LOAD_FILE, file_info);
guest_img.size = file_size;
guest_img.guest_data = (void *)file_info->user_addr;
strncpy(guest_img.name, (char *)vm_cmd.path.vm_name, 127);
/* Issue VM Create command to Palacios */
vm_id = issue_v3_cmd(V3_CREATE_GUEST, (uintptr_t)&guest_img);
aspace_unmap_region(my_aspace_id, file_addr, round_up(file_size, PAGE_SIZE));
pmem_free_umem(&rgn);
if (vm_id < 0) {
printf("Error: Could not create VM (%s) at (%s) (err=%d)\n",
vm_cmd.path.vm_name, vm_cmd.path.file_name, vm_id);
send_resp(pisces_fd, vm_id);
break;
}
printf("Created VM (%d)\n", vm_id);
send_resp(pisces_fd, vm_id);
break;
}
case ENCLAVE_CMD_FREE_VM: {
struct cmd_vm_ctrl vm_cmd;
ret = read(pisces_fd, &vm_cmd, sizeof(struct cmd_vm_ctrl));
if (ret != sizeof(struct cmd_vm_ctrl)) {
send_resp(pisces_fd, -1);
break;
}
/* Signal Palacios to Launch VM */
if (issue_v3_cmd(V3_FREE_GUEST, (uintptr_t)vm_cmd.vm_id) == -1) {
send_resp(pisces_fd, -1);
break;
}
send_resp(pisces_fd, 0);
break;
}
case ENCLAVE_CMD_ADD_V3_PCI: {
struct cmd_add_pci_dev cmd;
struct v3_hw_pci_dev v3_pci_spec;
int ret = 0;
memset(&cmd, 0, sizeof(struct cmd_add_pci_dev));
printf("Adding V3 PCI Device\n");
ret = read(pisces_fd, &cmd, sizeof(struct cmd_add_pci_dev));
if (ret != sizeof(struct cmd_add_pci_dev)) {
send_resp(pisces_fd, -1);
break;
}
memcpy(v3_pci_spec.name, cmd.spec.name, 128);
v3_pci_spec.bus = cmd.spec.bus;
v3_pci_spec.dev = cmd.spec.dev;
v3_pci_spec.func = cmd.spec.func;
/* Issue Device Add operation to Palacios */
if (issue_v3_cmd(V3_ADD_PCI, (uintptr_t)&(v3_pci_spec)) == -1) {
printf("Error: Could not add PCI device to Palacios\n");
send_resp(pisces_fd, -1);
break;
}
send_resp(pisces_fd, 0);
break;
}
case ENCLAVE_CMD_FREE_V3_PCI: {
struct cmd_add_pci_dev cmd;
struct v3_hw_pci_dev v3_pci_spec;
int ret = 0;
memset(&cmd, 0, sizeof(struct cmd_add_pci_dev));
printf("Removing V3 PCI Device\n");
ret = read(pisces_fd, &cmd, sizeof(struct cmd_add_pci_dev));
if (ret != sizeof(struct cmd_add_pci_dev)) {
send_resp(pisces_fd, -1);
break;
}
memcpy(v3_pci_spec.name, cmd.spec.name, 128);
v3_pci_spec.bus = cmd.spec.bus;
v3_pci_spec.dev = cmd.spec.dev;
v3_pci_spec.func = cmd.spec.func;
/* Issue Device Add operation to Palacios */
if (issue_v3_cmd(V3_REMOVE_PCI, (uintptr_t)&(v3_pci_spec)) == -1) {
printf("Error: Could not remove PCI device from Palacios\n");
send_resp(pisces_fd, -1);
break;
}
send_resp(pisces_fd, 0);
break;
}
case ENCLAVE_CMD_LAUNCH_VM: {
struct cmd_vm_ctrl vm_cmd;
ret = read(pisces_fd, &vm_cmd, sizeof(struct cmd_vm_ctrl));
if (ret != sizeof(struct cmd_vm_ctrl)) {
send_resp(pisces_fd, -1);
break;
}
/* Signal Palacios to Launch VM */
if (issue_vm_cmd(vm_cmd.vm_id, V3_VM_LAUNCH, (uintptr_t)NULL) == -1) {
send_resp(pisces_fd, -1);
break;
}
/*
if (xpmem_pisces_add_dom(palacios_fd, vm_cmd.vm_id)) {
printf("ERROR: Could not add connect to Palacios VM %d XPMEM channel\n",
vm_cmd.vm_id);
}
*/
send_resp(pisces_fd, 0);
break;
}
case ENCLAVE_CMD_STOP_VM: {
struct cmd_vm_ctrl vm_cmd;
ret = read(pisces_fd, &vm_cmd, sizeof(struct cmd_vm_ctrl));
if (ret != sizeof(struct cmd_vm_ctrl)) {
send_resp(pisces_fd, -1);
break;
}
/* Signal Palacios to Launch VM */
if (issue_vm_cmd(vm_cmd.vm_id, V3_VM_STOP, (uintptr_t)NULL) == -1) {
send_resp(pisces_fd, -1);
break;
}
send_resp(pisces_fd, 0);
break;
}
case ENCLAVE_CMD_PAUSE_VM: {
struct cmd_vm_ctrl vm_cmd;
ret = read(pisces_fd, &vm_cmd, sizeof(struct cmd_vm_ctrl));
if (ret != sizeof(struct cmd_vm_ctrl)) {
send_resp(pisces_fd, -1);
break;
}
/* Signal Palacios to Launch VM */
if (issue_vm_cmd(vm_cmd.vm_id, V3_VM_PAUSE, (uintptr_t)NULL) == -1) {
send_resp(pisces_fd, -1);
break;
}
send_resp(pisces_fd, 0);
break;
}
case ENCLAVE_CMD_CONTINUE_VM: {
struct cmd_vm_ctrl vm_cmd;
ret = read(pisces_fd, &vm_cmd, sizeof(struct cmd_vm_ctrl));
if (ret != sizeof(struct cmd_vm_ctrl)) {
send_resp(pisces_fd, -1);
break;
}
/* Signal Palacios to Launch VM */
if (issue_vm_cmd(vm_cmd.vm_id, V3_VM_CONTINUE, (uintptr_t)NULL) == -1) {
send_resp(pisces_fd, -1);
break;
}
send_resp(pisces_fd, 0);
break;
}
case ENCLAVE_CMD_VM_CONS_CONNECT: {
struct cmd_vm_ctrl vm_cmd;
u64 cons_ring_buf = 0;
ret = read(pisces_fd, &vm_cmd, sizeof(struct cmd_vm_ctrl));
if (ret != sizeof(struct cmd_vm_ctrl)) {
printf("Error reading console command\n");
send_resp(pisces_fd, -1);
break;
}
/* Signal Palacios to connect the console */
if (issue_vm_cmd(vm_cmd.vm_id, V3_VM_CONSOLE_CONNECT, (uintptr_t)&cons_ring_buf) == -1) {
cons_ring_buf = 0;
}
printf("Cons Ring Buf=%p\n", (void *)cons_ring_buf);
send_resp(pisces_fd, cons_ring_buf);
break;
}
case ENCLAVE_CMD_VM_CONS_DISCONNECT: {
struct cmd_vm_ctrl vm_cmd;
ret = read(pisces_fd, &vm_cmd, sizeof(struct cmd_vm_ctrl));
if (ret != sizeof(struct cmd_vm_ctrl)) {
send_resp(pisces_fd, -1);
break;
}
/* Send Disconnect Request to Palacios */
if (issue_vm_cmd(vm_cmd.vm_id, V3_VM_CONSOLE_DISCONNECT, (uintptr_t)NULL) == -1) {
send_resp(pisces_fd, -1);
break;
}
send_resp(pisces_fd, 0);
break;
}
case ENCLAVE_CMD_VM_CONS_KEYCODE: {
struct cmd_vm_cons_keycode vm_cmd;
ret = read(pisces_fd, &vm_cmd, sizeof(struct cmd_vm_cons_keycode));
if (ret != sizeof(struct cmd_vm_cons_keycode)) {
send_resp(pisces_fd, -1);
break;
}
/* Send Keycode to Palacios */
if (issue_vm_cmd(vm_cmd.vm_id, V3_VM_KEYBOARD_EVENT, vm_cmd.scan_code) == -1) {
send_resp(pisces_fd, -1);
break;
}
send_resp(pisces_fd, 0);
break;
}
case ENCLAVE_CMD_VM_DBG: {
struct cmd_vm_debug pisces_cmd;
struct v3_debug_cmd v3_cmd;
ret = read(pisces_fd, &pisces_cmd, sizeof(struct cmd_vm_debug));
if (ret != sizeof(struct cmd_vm_debug)) {
send_resp(pisces_fd, -1);
break;
}
v3_cmd.core = pisces_cmd.spec.core;
v3_cmd.cmd = pisces_cmd.spec.cmd;
if (issue_vm_cmd(pisces_cmd.spec.vm_id, V3_VM_DEBUG, (uintptr_t)&v3_cmd) == -1) {
send_resp(pisces_fd, -1);
break;
}
send_resp(pisces_fd, 0);
break;
}
case ENCLAVE_CMD_SHUTDOWN: {
if (issue_v3_cmd(V3_SHUTDOWN, 0) == -1) {
printf("Error: Could not shutdown Palacios VMM\n");
send_resp(pisces_fd, -1);
break;
}
/* Perform additional Cleanup is necessary */
send_resp(pisces_fd, 0);
close(pisces_fd);
exit(0);
}
default: {
printf("Unknown Pisces Command (%llu)\n", cmd.cmd);
send_resp(pisces_fd, -1);
break;
}
}
}
close(pisces_fd);
return 0;
}
