Xen PVH booting via multiboot protocol (from pvgrub2-pvh) #482
Conversation
| @@ -55,6 +74,13 @@ ENTRY(_start32) | |||
| pushl $0 | |||
| pushl %ebx | |||
There was a problem hiding this comment.
So, %ebx is now either a (struct hvm_start_info *) with direct boot, OR a (struct multiboot_info *), right?
There was a problem hiding this comment.
Okay, can you please update both the header comment for this entry point and the comment immediately above to make sense in the new arrangement?
| @@ -20,10 +20,29 @@ | |||
|
|
|||
| #include "../cpu_x86_64.h" | |||
| #include "xen/elfnote.h" | |||
| #include "../virtio/multiboot.h" | |||
There was a problem hiding this comment.
You can leave this as-is, virtio needs some reverse consolidation with Xen anyway, so can do that then.
bindings/xen/boot.S
Outdated
|
|
||
| .align 4 | ||
| _multiboot_header: | ||
| .long MULTIBOOT_HEADER_MAGIC |
There was a problem hiding this comment.
Nit: Indent the rest of this block by 4 spaces.
| @@ -227,19 +228,64 @@ static void hypercall_init(void) | |||
| assert(HYPERCALL_PAGE[0] != 0xc3); | |||
| } | |||
|
|
|||
| void platform_init(const void *arg __attribute__((unused))) | |||
| /* Parse multiboot boot information */ | |||
| static void parse_multiboot(const void *arg) | |||
bindings/xen/platform.c
Outdated
|
|
||
| static void parse_hvm_start_info(const void *arg) { |
There was a problem hiding this comment.
Nit: Opening { goes on the following line.
bindings/xen/platform.c
Outdated
|
|
||
| void platform_init(const void *arg) | ||
| { | ||
| bool multiboot = *((uint32_t*)arg) != XEN_HVM_START_MAGIC_VALUE; |
There was a problem hiding this comment.
This does too much in one line, including assignment of a truth value based on the negation of another truth value. Please make it more explicit, e.g.:
bool is_xl_boot;
if (*(uint32_t *)arg == XEN_HVM_START_MAGIC_VALUE)
is_xl_boot = true;
else
is_xl_boot = false;
and modify below to suit.
bindings/xen/platform.c
Outdated
| bool multiboot = *((uint32_t*)arg) != XEN_HVM_START_MAGIC_VALUE; | ||
|
|
||
| /* | ||
| * Parse multiboot before setting page tables, as its location may not be |
There was a problem hiding this comment.
"If booted via multiboot, parse multiboot structure before setting up page tables ..."
bindings/xen/platform.c
Outdated
| console_init(); | ||
|
|
||
| /* | ||
| * Parse Xen HVM/PVH start_info structure after setting hypercall page - it |
There was a problem hiding this comment.
"If booted directly, parse the Xen hvm_start_info structure after setting up hypercalls"
| .interp : { | ||
| *(.interp) | ||
| } :interp :text | ||
|
|
There was a problem hiding this comment.
Why did this need moving, exactly? It doesn't really matter for Xen, but I'd still like to understand what's going on.
There was a problem hiding this comment.
The multiboot header needs to be in the first 8k of the file. Without this change, first 4k were program headers, then the second 4k were just this section, pushing multiboot header beyond the first 8k.
There was a problem hiding this comment.
You should be able to accomplish the same thing without re-ordering by placing *(.data.multiboot) into the .text output section as is done in solo5_virtio.lds?
There was a problem hiding this comment.
It's already here and it wasn't enough. .text was linked at 8k offset in the file - just beyond what we need. I'm not sure what's the difference with virtio, perhaps more notes here?
There was a problem hiding this comment.
Ok, don't worry about it, leave it as-is (and in a separate commit). Thanks.
There was a problem hiding this comment.
(... looking at the linker scripts and readelf output, I actually think .interp doesn't belong in :text at all but I'm not going to muck with that now...)
As I mentioned, there is more to sync/de-duplicate between virtio and xen than this, I'm happy to do it at some stage, no need to do it here.
I'd prefer to leave the low memory unmapped as it stops the unikernel from trivially mucking with its pagetables, intentionally or not. |
I was considering mapping read-only. |
I like the fact that you can't even introspect your pagetables (or anything else Xen might have "helpfully" put in low memory) without reloading |
|
Sure, no problem - as you can see it isn't a blocker. |
Add multiboot header pointing at the same entry point. Then, in platform_init distinguish which boot structure is in use based on its magic. Borrow the multiboot structure parsing from virtio bindings.
Currently two boot modes are supported: - native PVH - multiboot (not multiboot2) While hvm_start_info structure (PVH native) has a magic at the start, multiboot protocol set it in separate register (eax), which doesn't survive until platform_init. Add an early sanity check while both magic values are available, otherwise boot structures parsing will blow up.
Multiboot header needs to be in the first 8k of the file.
marmarek
force-pushed
the
xenpvh-multiboot
branch
from
bf78be1 to
d364601
Compare
|
tested with a qubes-builder build of mirage-firewall. minor confusion about memory-limits (maxmem setting actualy "works" now), but thats just "different" (compared to minios-pv), not "wrong". |
See QubesOS/qubes-issues#6162 for context.
TODO items: