Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Implement the final two ioctls #8

Open
wants to merge 10 commits into
base: main
Choose a base branch
from
Open

Implement the final two ioctls #8

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
10 commits
Select commit Hold shift + click to select a range
7dbee08
Update kvm-{bindings, ioctls} deps
jakecorrenti Dec 12, 2024
84ce5a0
Use `PhantomData` in `Cmd`
jakecorrenti Dec 12, 2024
4496266
Add mmap helper functions
jakecorrenti Aug 6, 2024
72e2ad7
Add `ram_mmap`
jakecorrenti Aug 6, 2024
f219e73
Re-implement `KVM_CHECK_EXTENSION`
jakecorrenti Aug 6, 2024
a34eb3d
Implement `KVM_TDX_INIT_MEM_REGION`
jakecorrenti Aug 6, 2024
fac0895
Implement `init_mem_region` testing
jakecorrenti Aug 6, 2024
e830317
Implement `KVM_TDX_FINALIZE_VM`
jakecorrenti Aug 6, 2024
8d15423
Remove CPUID patches
jakecorrenti Aug 6, 2024
1d31a76
Add X2APIC KVM Capability
jakecorrenti Aug 6, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
5 changes: 3 additions & 2 deletions Cargo.toml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -14,7 +14,8 @@ rust-version = "1.71"

[dependencies]
bitflags = "2.4.2"
kvm-bindings = "0.7.0"
kvm-ioctls = "0.16.0"
kvm-bindings = { version = "0.9.1", features = ["fam-wrappers"] }
kvm-ioctls = "0.18"
libc = "0.2.155"
uuid = "1.8.0"
vmm-sys-util = "0.12.1"
54 changes: 31 additions & 23 deletions src/launch/linux.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,5 +1,7 @@
// SPDX-License-Identifier: Apache-2.0

use std::marker::PhantomData;

pub const NR_CPUID_CONFIGS: usize = 12;

/// Trust Domain eXtensions sub-ioctl() commands
Expand All @@ -8,13 +10,15 @@ pub enum CmdId {
GetCapabilities,
InitVm,
InitVcpu,
InitMemRegion,
FinalizeVm,
}

/// Contains information for the sub-ioctl() command to be run. This is
/// equivalent to `struct kvm_tdx_cmd` in the kernel.
#[derive(Default)]
#[repr(C)]
pub struct Cmd {
pub struct Cmd<'a, T: 'a> {
/// TDX command identifier
pub id: u32,

Expand All @@ -31,6 +35,21 @@ pub struct Cmd {

/// Reserved.
pub _unused: u64,

_phantom: PhantomData<&'a T>,
}

impl<'a, T: 'a> Cmd<'a, T> {
pub fn from(id: CmdId, data: &'a T) -> Self {
Self {
id: id as u32,
flags: 0,
data: data as *const T as _,
error: 0,
_unused: 0,
_phantom: PhantomData,
}
}
}

#[derive(Debug)]
Expand Down Expand Up @@ -159,18 +178,6 @@ impl Default for Capabilities {
}
}

impl From<&Capabilities> for Cmd {
fn from(caps: &Capabilities) -> Self {
Self {
id: CmdId::GetCapabilities as u32,
flags: 0,
data: caps as *const Capabilities as _,
error: 0,
_unused: 0,
}
}
}

/// TDX specific VM initialization information
#[derive(Debug)]
#[repr(C)]
Expand Down Expand Up @@ -227,14 +234,15 @@ impl Default for InitVm {
}
}

impl From<&InitVm> for Cmd {
fn from(init_vm: &InitVm) -> Self {
Self {
id: CmdId::InitVm as u32,
flags: 0,
data: init_vm as *const InitVm as _,
error: 0,
_unused: 0,
}
}
#[repr(C)]
#[derive(Debug)]
pub struct TdxInitMemRegion {
/// Host physical address of the target page to be added to the TD
pub source_addr: u64,

/// Guest physical address to be mapped
pub gpa: u64,

/// Number of pages to be mapped
pub nr_pages: u64,
}
102 changes: 58 additions & 44 deletions src/launch/mod.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -3,11 +3,10 @@
mod linux;

use kvm_bindings::{kvm_enable_cap, KVM_CAP_MAX_VCPUS, KVM_CAP_SPLIT_IRQCHIP};
use linux::{Capabilities, Cmd, CpuidConfig, InitVm, TdxError};
use linux::{Capabilities, Cmd, CmdId, CpuidConfig, InitVm, TdxError};

use bitflags::bitflags;
use kvm_ioctls::{Kvm, VmFd};
use std::arch::x86_64;

// Defined in linux/arch/x86/include/uapi/asm/kvm.h
const KVM_X86_TDX_VM: u64 = 2;
Expand All @@ -34,13 +33,17 @@ impl TdxVm {
cap.args[0] = 24;
vm_fd.enable_cap(&cap).unwrap();

cap.cap = kvm_bindings::KVM_CAP_X2APIC_API;
cap.args[0] = (1 << 0) | (1 << 1);
vm_fd.enable_cap(&cap).unwrap();

Ok(Self { fd: vm_fd })
}

/// Retrieve information about the Intel TDX module
pub fn get_capabilities(&self) -> Result<TdxCapabilities, TdxError> {
let caps = Capabilities::default();
let mut cmd: Cmd = Cmd::from(&caps);
let mut cmd: Cmd<Capabilities> = Cmd::from(CmdId::GetCapabilities, &caps);

unsafe {
self.fd.encrypt_op(&mut cmd)?;
Expand All @@ -61,7 +64,7 @@ impl TdxVm {
}

/// Do additional VM initialization that is specific to Intel TDX
pub fn init_vm(&self, kvm_fd: &Kvm, caps: &TdxCapabilities) -> Result<(), TdxError> {
pub fn init_vm(&self, kvm_fd: &Kvm) -> Result<(), TdxError> {
let cpuid = kvm_fd
.get_supported_cpuid(kvm_bindings::KVM_MAX_CPUID_ENTRIES)
.unwrap();
Expand All @@ -70,46 +73,63 @@ impl TdxVm {
// resize to 256 entries to make sure that InitVm is 8KB
cpuid_entries.resize(256, kvm_bindings::kvm_cpuid_entry2::default());

// hex for Ob1100000001011111111 based on the XSAVE state-components architecture
let xcr0_mask = 0x602ff;
// hex for 0b11111110100000000 based on the XSAVE state-components architecture
let xss_mask = 0x1FD00;

let xfam_fixed0 = caps.xfam.fixed0.bits();
let xfam_fixed1 = caps.xfam.fixed1.bits();

// patch cpuid
for entry in cpuid_entries.as_mut_slice() {
// mandatory patches for TDX based on XFAM values reported by TdxCapabilities
match entry.index {
// XSAVE features and state-components
0xD => {
if entry.index == 0 {
// XSAVE XCR0 LO
entry.eax &= (xfam_fixed0 as u32) & (xcr0_mask as u32);
entry.eax |= (xfam_fixed1 as u32) & (xcr0_mask as u32);
// XSAVE XCR0 HI
entry.edx &= ((xfam_fixed0 & xcr0_mask) >> 32) as u32;
entry.edx |= ((xfam_fixed1 & xcr0_mask) >> 32) as u32;
} else if entry.index == 1 {
// XSAVE XCR0 LO
entry.ecx &= (xfam_fixed0 as u32) & (xss_mask as u32);
entry.ecx |= (xfam_fixed1 as u32) & (xss_mask as u32);
// XSAVE XCR0 HI
entry.edx &= ((xfam_fixed0 & xss_mask) >> 32) as u32;
entry.edx |= ((xfam_fixed1 & xss_mask) >> 32) as u32;
}
if entry.function == 0xD && entry.index == 0 {
const XFEATURE_MASK_XTILE: u32 = (1 << 17) | (1 << 18);
if (entry.eax & XFEATURE_MASK_XTILE) != XFEATURE_MASK_XTILE {
entry.eax &= !XFEATURE_MASK_XTILE;
}
0x8000_0008 => {
// host physical address bits supported
let phys_bits = unsafe { x86_64::__cpuid(0x8000_0008).eax } & 0xff;
entry.eax = (entry.eax & 0xffff_ff00) | (phys_bits & 0xff);
}

if entry.function == 0xD && entry.index == 1 {
entry.ecx &= !(1 << 15);
const XFEATURE_MASK_CET: u32 = (1 << 11) | (1 << 12);
if entry.ecx & XFEATURE_MASK_CET > 0 {
entry.ecx |= XFEATURE_MASK_CET;
}
_ => (),
}
}

let mut cmd = Cmd::from(&InitVm::new(&cpuid_entries));
let init_vm = InitVm::new(&cpuid_entries);
let mut cmd: Cmd<InitVm> = Cmd::from(CmdId::InitVm, &init_vm);
unsafe {
self.fd.encrypt_op(&mut cmd)?;
}

Ok(())
}

/// Encrypt a memory continuous region
pub fn init_mem_region(
&self,
gpa: u64,
nr_pages: u64,
attributes: u32,
source_addr: u64,
) -> Result<(), TdxError> {
const TDVF_SECTION_ATTRIBUTES_MR_EXTEND: u32 = 1u32 << 0;
let mem_region = linux::TdxInitMemRegion {
source_addr,
gpa,
nr_pages,
};

let mut cmd: Cmd<linux::TdxInitMemRegion> = Cmd::from(CmdId::InitMemRegion, &mem_region);

// determines if we also extend the measurement
cmd.flags = ((attributes & TDVF_SECTION_ATTRIBUTES_MR_EXTEND) > 0) as u32;

unsafe {
self.fd.encrypt_op(&mut cmd)?;
}

Ok(())
}

/// Complete measurement of the initial TD contents and mark it ready to run
pub fn finalize(&self) -> Result<(), TdxError> {
let mut cmd: Cmd<u64> = Cmd::from(CmdId::FinalizeVm, &0);
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Why &0?

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

there's a data field in Cmd which is a pointer to whatever we pass as the second argument. The FINALIZE_VM ioctl doesn't require any data so that should be null. I can make the parameter Option<&'a T> instead if that makes more sense.

unsafe {
self.fd.encrypt_op(&mut cmd)?;
}
Expand Down Expand Up @@ -280,13 +300,7 @@ pub struct TdxVcpu<'a> {

impl<'a> TdxVcpu<'a> {
pub fn init(&self, hob_address: u64) -> Result<(), TdxError> {
let mut cmd = Cmd {
id: linux::CmdId::InitVcpu as u32,
flags: 0,
data: hob_address as *const u64 as _,
error: 0,
_unused: 0,
};
let mut cmd: Cmd<u64> = Cmd::from(CmdId::InitVcpu, &hob_address);
let ret = unsafe { ioctl::ioctl_with_mut_ptr(self.fd, KVM_MEMORY_ENCRYPT_OP(), &mut cmd) };
if ret < 0 {
// can't return `ret` because it will just return -1 and not give the error
Expand Down
Binary file added tests/data/OVMF.fd
View file
Open in desktop
Binary file not shown.
Binary file removed tests/data/OVMF.inteltdx.fd
View file
Open in desktop
Binary file not shown.
Loading
Loading