|  | /* Copyright 2015 Google Inc. | 
|  | * | 
|  | * See LICENSE for details. | 
|  | */ | 
|  |  | 
|  | /* We're not going to falll into the trap of only compiling support | 
|  | * for AMD OR Intel for an image. It all gets compiled in, and which | 
|  | * one you use depends on on cpuinfo, not a compile-time | 
|  | * switch. That's proven to be the best strategy.  Conditionally | 
|  | * compiling in support is the path to hell. | 
|  | */ | 
|  | #include <assert.h> | 
|  | #include <pmap.h> | 
|  | #include <smp.h> | 
|  | #include <kmalloc.h> | 
|  |  | 
|  | #include "intel/vmx.h" | 
|  | #include "vmm.h" | 
|  |  | 
|  | /* TODO: have better cpuid info storage and checks */ | 
|  | bool x86_supports_vmx = FALSE; | 
|  |  | 
|  | /* Figure out what kind of CPU we are on, and if it supports any reasonable | 
|  | * virtualization. For now, if we're not some sort of newer intel, don't | 
|  | * bother. This does all cores. Again, note, we make these decisions at runtime, | 
|  | * to avoid getting into the problems that compile-time decisions can cause. | 
|  | * At this point, of course, it's still all intel. | 
|  | */ | 
|  | void vmm_init(void) | 
|  | { | 
|  | int ret; | 
|  | /* Check first for intel capabilities. This is hence two back-to-back | 
|  | * implementationd-dependent checks. That's ok, it's all msr dependent. | 
|  | */ | 
|  | ret = intel_vmm_init(); | 
|  | if (! ret) { | 
|  | printd("intel_vmm_init worked\n"); | 
|  | x86_supports_vmx = TRUE; | 
|  | return; | 
|  | } | 
|  |  | 
|  | /* TODO: AMD. Will we ever care? It's not clear. */ | 
|  | printk("vmm_init failed, ret %d\n", ret); | 
|  | return; | 
|  | } | 
|  |  | 
|  | void vmm_pcpu_init(void) | 
|  | { | 
|  | if (!x86_supports_vmx) | 
|  | return; | 
|  | if (! intel_vmm_pcpu_init()) { | 
|  | printd("vmm_pcpu_init worked\n"); | 
|  | return; | 
|  | } | 
|  | /* TODO: AMD. Will we ever care? It's not clear. */ | 
|  | printk("vmm_pcpu_init failed\n"); | 
|  | } | 
|  |  | 
|  | int vm_run(uint64_t rip, uint64_t rsp, uint64_t cr3) | 
|  | { | 
|  | int vmx_launch(uint64_t rip, uint64_t rsp, uint64_t cr3); | 
|  | if (current->vmm.amd) { | 
|  | return -1; | 
|  | } else { | 
|  | return vmx_launch(rip, rsp, cr3); | 
|  | } | 
|  | return -1; | 
|  | } | 
|  |  | 
|  | /* Initializes a process to run virtual machine contexts, returning the number | 
|  | * initialized, optionally setting errno */ | 
|  | int vmm_struct_init(struct proc *p, unsigned int nr_guest_pcores) | 
|  | { | 
|  | struct vmm *vmm = &p->vmm; | 
|  | unsigned int i; | 
|  | if (!x86_supports_vmx) { | 
|  | set_errno(ENODEV); | 
|  | return 0; | 
|  | } | 
|  | qlock(&vmm->qlock); | 
|  | if (vmm->vmmcp) { | 
|  | set_errno(EINVAL); | 
|  | qunlock(&vmm->qlock); | 
|  | return 0; | 
|  | } | 
|  | /* Set this early, so cleanup checks the gpc array */ | 
|  | vmm->vmmcp = TRUE; | 
|  | nr_guest_pcores = MIN(nr_guest_pcores, num_cpus); | 
|  | vmm->amd = 0; | 
|  | vmm->guest_pcores = kzmalloc(sizeof(void*) * nr_guest_pcores, KMALLOC_WAIT); | 
|  | for (i = 0; i < nr_guest_pcores; i++) { | 
|  | vmm->guest_pcores[i] = vmx_create_vcpu(p); | 
|  | /* If we failed, we'll clean it up when the process dies */ | 
|  | if (!vmm->guest_pcores[i]) { | 
|  | set_errno(ENOMEM); | 
|  | break; | 
|  | } | 
|  | } | 
|  | vmm->nr_guest_pcores = i; | 
|  | qunlock(&vmm->qlock); | 
|  | return i; | 
|  | } | 
|  |  | 
|  | /* Has no concurrency protection - only call this when you know you have the | 
|  | * only ref to vmm.  For instance, from __proc_free, where there is only one ref | 
|  | * to the proc (and thus proc.vmm). */ | 
|  | void __vmm_struct_cleanup(struct proc *p) | 
|  | { | 
|  | struct vmm *vmm = &p->vmm; | 
|  | if (!vmm->vmmcp) | 
|  | return; | 
|  | for (int i = 0; i < vmm->nr_guest_pcores; i++) { | 
|  | if (vmm->guest_pcores[i]) | 
|  | vmx_destroy_vcpu(vmm->guest_pcores[i]); | 
|  | } | 
|  | kfree(vmm->guest_pcores); | 
|  | ept_flush(p->env_pgdir.eptp); | 
|  | vmm->vmmcp = FALSE; | 
|  | } |