From: Christoph Egger <Christoph.Egger@amd.com>
To: "xen-devel@lists.xensource.com" <xen-devel@lists.xensource.com>
Subject: [PATCH 04/12] Nested Virtualization: core
Date: Mon, 20 Dec 2010 17:05:06 +0100 [thread overview]
Message-ID: <201012201705.06356.Christoph.Egger@amd.com> (raw)
[-- Attachment #1: Type: text/plain, Size: 264 bytes --]
--
---to satisfy European Law for business letters:
Advanced Micro Devices GmbH
Einsteinring 24, 85609 Dornach b. Muenchen
Geschaeftsfuehrer: Alberto Bozzo, Andrew Bowd
Sitz: Dornach, Gemeinde Aschheim, Landkreis Muenchen
Registergericht Muenchen, HRB Nr. 43632
[-- Attachment #2: xen_nh04_core.diff --]
[-- Type: text/x-diff, Size: 8289 bytes --]
# HG changeset patch
# User cegger
# Date 1292839432 -3600
Nested Virtualization core implementation
Signed-off-by: Christoph Egger <Christoph.Egger@amd.com>
diff -r e43ab6fb0ee2 -r a9465de5a794 xen/arch/x86/hvm/Makefile
--- a/xen/arch/x86/hvm/Makefile
+++ b/xen/arch/x86/hvm/Makefile
@@ -10,6 +10,7 @@ obj-y += intercept.o
obj-y += io.o
obj-y += irq.o
obj-y += mtrr.o
+obj-y += nestedhvm.o
obj-y += pmtimer.o
obj-y += quirks.o
obj-y += rtc.o
diff -r e43ab6fb0ee2 -r a9465de5a794 xen/arch/x86/hvm/nestedhvm.c
--- /dev/null
+++ b/xen/arch/x86/hvm/nestedhvm.c
@@ -0,0 +1,198 @@
+/*
+ * Nested HVM
+ * Copyright (c) 2010, Advanced Micro Devices, Inc.
+ * Author: Christoph Egger <Christoph.Egger@amd.com>
+ *
+ * This program is free software; you can redistribute it and/or modify it
+ * under the terms and conditions of the GNU General Public License,
+ * version 2, as published by the Free Software Foundation.
+ *
+ * This program is distributed in the hope it will be useful, but WITHOUT
+ * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
+ * FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for
+ * more details.
+ *
+ * You should have received a copy of the GNU General Public License along with
+ * this program; if not, write to the Free Software Foundation, Inc., 59 Temple
+ * Place - Suite 330, Boston, MA 02111-1307 USA.
+ */
+
+#include <asm/msr.h>
+#include <asm/hvm/support.h> /* for HVM_DELIVER_NO_ERROR_CODE */
+#include <asm/hvm/hvm.h>
+#include <asm/hvm/nestedhvm.h>
+#include <asm/event.h> /* for local_event_delivery_(en|dis)able */
+#include <asm/paging.h> /* for paging_mode_hap() */
+
+
+/* Nested HVM on/off per domain */
+bool_t
+nestedhvm_enabled(struct domain *d)
+{
+ bool_t enabled;
+
+ enabled = !!(d->arch.hvm_domain.params[HVM_PARAM_NESTEDHVM]);
+ /* sanity check */
+ BUG_ON(enabled && !is_hvm_domain(d));
+
+ if (!is_hvm_domain(d))
+ return 0;
+
+ return enabled;
+}
+
+/* Nested VCPU */
+bool_t
+nestedhvm_vcpu_in_guestmode(struct vcpu *v)
+{
+ return vcpu_nestedhvm(v).nv_guestmode;
+}
+
+void
+nestedhvm_vcpu_reset(struct vcpu *v)
+{
+ struct nestedvcpu *nv = &vcpu_nestedhvm(v);
+
+ if (nv->nv_vmcx)
+ hvm_unmap_guest_frame(nv->nv_vmcx);
+ nv->nv_vmcx = NULL;
+ nv->nv_vmcxaddr = VMCX_EADDR;
+ nv->nv_flushp2m = 0;
+ nv->nv_p2m = NULL;
+
+ nhvm_vcpu_reset(v);
+
+ /* vcpu is in host mode */
+ nestedhvm_vcpu_exit_guestmode(v);
+}
+
+int
+nestedhvm_vcpu_initialise(struct vcpu *v)
+{
+ int rc;
+ struct nestedvcpu *nv = &vcpu_nestedhvm(v);
+
+ if (!nestedhvm_enabled(v->domain))
+ return 0;
+
+ memset(nv, 0x0, sizeof(struct nestedvcpu));
+
+ /* initialise hostsave, for example */
+ rc = nhvm_vcpu_initialise(v);
+ if (rc) {
+ nhvm_vcpu_destroy(v);
+ return rc;
+ }
+
+ nestedhvm_vcpu_reset(v);
+ return 0;
+}
+
+int
+nestedhvm_vcpu_destroy(struct vcpu *v)
+{
+ if (!nestedhvm_enabled(v->domain))
+ return 0;
+
+ return nhvm_vcpu_destroy(v);
+}
+
+void
+nestedhvm_vcpu_enter_guestmode(struct vcpu *v)
+{
+ vcpu_nestedhvm(v).nv_guestmode = 1;
+}
+
+void
+nestedhvm_vcpu_exit_guestmode(struct vcpu *v)
+{
+ vcpu_nestedhvm(v).nv_guestmode = 0;
+}
+
+/* Common shadow IO Permission bitmap */
+
+struct shadow_iomap {
+ /* same format and size as hvm_io_bitmap */
+ unsigned long iomap[3*PAGE_SIZE/BYTES_PER_LONG];
+ int refcnt;
+};
+
+/* There four global patterns of io bitmap each guest can
+ * choose one of them depending on interception of io port 0x80 and/or
+ * 0xED (shown in table below). Each shadow iomap pattern is
+ * implemented as a singleton to minimize memory consumption while
+ * providing a provider/consumer interface to the users.
+ * The users are in SVM/VMX specific code.
+ *
+ * bitmap port 0x80 port 0xed
+ * hvm_io_bitmap cleared cleared
+ * iomap[0] cleared set
+ * iomap[1] set cleared
+ * iomap[2] set set
+ */
+static struct shadow_iomap *nhvm_io_bitmap[3];
+
+unsigned long *
+nestedhvm_vcpu_iomap_get(bool_t port_80, bool_t port_ed)
+{
+ int i;
+ extern int hvm_port80_allowed;
+
+ if (!hvm_port80_allowed)
+ port_80 = 1;
+
+ if (port_80 == 0) {
+ if (port_ed == 0)
+ return hvm_io_bitmap;
+ i = 0;
+ } else {
+ if (port_ed == 0)
+ i = 1;
+ else
+ i = 2;
+ }
+
+ if (nhvm_io_bitmap[i] == NULL) {
+ nhvm_io_bitmap[i] =
+ _xmalloc(sizeof(struct shadow_iomap), PAGE_SIZE);
+ nhvm_io_bitmap[i]->refcnt = 0;
+ /* set all bits */
+ memset(nhvm_io_bitmap[i]->iomap, ~0, sizeof(nhvm_io_bitmap[i]->iomap));
+ switch (i) {
+ case 0:
+ __clear_bit(0x80, nhvm_io_bitmap[i]->iomap);
+ break;
+ case 1:
+ __clear_bit(0xed, nhvm_io_bitmap[i]->iomap);
+ break;
+ case 2:
+ break;
+ }
+ }
+
+ nhvm_io_bitmap[i]->refcnt++;
+ return nhvm_io_bitmap[i]->iomap;
+}
+
+void
+nestedhvm_vcpu_iomap_put(unsigned long *iomap)
+{
+ int i;
+
+ if (iomap == hvm_io_bitmap)
+ return;
+
+ for (i = 0; i < 3; i++) {
+ struct shadow_iomap *map;
+ if (iomap != nhvm_io_bitmap[i]->iomap)
+ continue;
+ map = nhvm_io_bitmap[i];
+ map->refcnt--;
+ if (map->refcnt == 0) {
+ xfree(map);
+ nhvm_io_bitmap[i] = NULL;
+ }
+ return;
+ }
+ BUG();
+}
diff -r e43ab6fb0ee2 -r a9465de5a794 xen/include/asm-x86/hvm/nestedhvm.h
--- /dev/null
+++ b/xen/include/asm-x86/hvm/nestedhvm.h
@@ -0,0 +1,67 @@
+/*
+ * Nested HVM
+ * Copyright (c) 2010, Advanced Micro Devices, Inc.
+ * Author: Christoph Egger <Christoph.Egger@amd.com>
+ *
+ * This program is free software; you can redistribute it and/or modify it
+ * under the terms and conditions of the GNU General Public License,
+ * version 2, as published by the Free Software Foundation.
+ *
+ * This program is distributed in the hope it will be useful, but WITHOUT
+ * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
+ * FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for
+ * more details.
+ *
+ * You should have received a copy of the GNU General Public License along with
+ * this program; if not, write to the Free Software Foundation, Inc., 59 Temple
+ * Place - Suite 330, Boston, MA 02111-1307 USA.
+ */
+
+#ifndef _HVM_NESTEDHVM_H
+#define _HVM_NESTEDHVM_H
+
+#include <xen/types.h> /* for uintNN_t */
+#include <xen/sched.h> /* for struct vcpu, struct domain */
+#include <asm/hvm/vcpu.h> /* for vcpu_nestedhvm */
+
+enum nestedhvm_vmexits {
+ NESTEDHVM_VMEXIT_ERROR = 0, /* inject VMEXIT w/ invalid VMCB */
+ NESTEDHVM_VMEXIT_FATALERROR = 1, /* crash first level guest */
+ NESTEDHVM_VMEXIT_HOST = 2, /* exit handled on host level */
+ NESTEDHVM_VMEXIT_CONTINUE = 3, /* further handling */
+ NESTEDHVM_VMEXIT_INJECT = 4, /* inject VMEXIT */
+ NESTEDHVM_VMEXIT_DONE = 5, /* VMEXIT handled */
+};
+
+#define VMCX_EADDR (~0ULL)
+
+/* Nested HVM on/off per domain */
+bool_t nestedhvm_enabled(struct domain *d);
+int nestedhvm_initialise(struct domain *d);
+
+/* Nested VCPU */
+int nestedhvm_vcpu_initialise(struct vcpu *v);
+int nestedhvm_vcpu_destroy(struct vcpu *v);
+void nestedhvm_vcpu_reset(struct vcpu *v);
+bool_t nestedhvm_vcpu_in_guestmode(struct vcpu *v);
+void nestedhvm_vcpu_enter_guestmode(struct vcpu *v);
+void nestedhvm_vcpu_exit_guestmode(struct vcpu *v);
+
+/* Nested paging */
+#define NESTEDHVM_PAGEFAULT_DONE 0
+#define NESTEDHVM_PAGEFAULT_INJECT 1
+#define NESTEDHVM_PAGEFAULT_ERROR 2
+int nestedhvm_hap_nested_page_fault(struct vcpu *v, paddr_t L2_gpa);
+
+/* IO permission map */
+unsigned long *nestedhvm_vcpu_iomap_get(bool_t ioport_80, bool_t ioport_ed);
+void nestedhvm_vcpu_iomap_put(unsigned long *iomap);
+
+/* Misc */
+#define nestedhvm_paging_mode_hap(v) (!!nhvm_vmcx_hap_enabled(v))
+#define nestedhvm_vmswitch_in_progress(v) \
+ (!!vcpu_nestedhvm((v)).nv_vmswitch_in_progress)
+#define nestedhvm_vmcx_flushtlb(d) \
+ flush_tlb_mask(&(d)->arch.hvm_domain.nh_dirty_cpumask)
+
+#endif /* _HVM_NESTEDHVM_H */
[-- Attachment #3: Type: text/plain, Size: 138 bytes --]
_______________________________________________
Xen-devel mailing list
Xen-devel@lists.xensource.com
http://lists.xensource.com/xen-devel
next reply other threads:[~2010-12-20 16:05 UTC|newest]
Thread overview: 11+ messages / expand[flat|nested] mbox.gz Atom feed top
2010-12-20 16:05 Christoph Egger [this message]
2010-12-27 7:54 ` [PATCH 04/12] Nested Virtualization: core Dong, Eddie
2011-01-03 15:58 ` Christoph Egger
2011-01-06 17:33 ` Dong, Eddie
2011-01-07 10:24 ` Christoph Egger
2011-01-07 20:39 ` Dong, Eddie
2011-01-07 16:31 ` Christoph Egger
2011-01-07 14:12 ` Tim Deegan
2011-01-07 15:56 ` Christoph Egger
-- strict thread matches above, loose matches on Subject: below --
2011-03-09 14:23 Christoph Egger
2011-03-29 6:44 ` Dong, Eddie
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=201012201705.06356.Christoph.Egger@amd.com \
--to=christoph.egger@amd.com \
--cc=xen-devel@lists.xensource.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.