coconut-svsm · vijaydhanraj · Sep 13, 2024 · Sep 14, 2024 · Sep 18, 2024 · Jul 9, 2024
diff --git a/.github/workflows/rust.yml b/.github/workflows/rust.yml
@@ -62,7 +62,7 @@ jobs:
         uses: actions-rs/cargo@v1
         with:
           command: clippy
-          args: --workspace --all-features --exclude svsm --exclude svsm-fuzz --target=x86_64-unknown-linux-gnu -- -D warnings
+          args: --workspace --all-features --exclude svsm --exclude svsm-fuzz --exclude init --exclude dm --target=x86_64-unknown-linux-gnu -- -D warnings
 
       - name: Clippy on svsm-fuzz
         uses: actions-rs/cargo@v1

diff --git a/Cargo.lock b/Cargo.lock
diff --git a/Cargo.toml b/Cargo.toml
@@ -14,6 +14,10 @@ members = [
     "libmstpm",
     # syscall interface definitions
     "syscall",
+    # init process
+    "init",
+    # device model application
+    "dm",
 ]
 
 
@@ -46,6 +50,7 @@ tdx-tdcall = "0.2.1"
 uuid = "1.6.1"
 # Add the derive feature by default because all crates use it.
 zerocopy = { version = "0.8.2", features = ["alloc", "derive"] }
+buddy_system_allocator = "0.10.0"
 
 # other repos
 packit = { git = "https://github.com/coconut-svsm/packit", version = "0.1.1" }

diff --git a/Makefile b/Makefile
@@ -44,6 +44,8 @@ IGVMBUILDER = "target/x86_64-unknown-linux-gnu/${TARGET_PATH}/igvmbuilder"
 IGVMBIN = bin/igvmbld
 IGVMMEASURE = "target/x86_64-unknown-linux-gnu/${TARGET_PATH}/igvmmeasure"
 IGVMMEASUREBIN = bin/igvmmeasure
+INITELF = "target/x86_64-unknown-none/${TARGET_PATH}/init"
+DMELF = "target/x86_64-unknown-none/${TARGET_PATH}/dm"
 
 RUSTDOC_OUTPUT = target/x86_64-unknown-none/doc
 DOC_SITE = target/x86_64-unknown-none/site
@@ -135,6 +137,16 @@ bin/test-kernel.elf: bin
 	LINK_TEST=1 cargo +nightly test ${CARGO_ARGS} ${SVSM_ARGS_TEST} -p svsm --config 'target.x86_64-unknown-none.runner=["sh", "-c", "cp $$0 ../${TEST_KERNEL_ELF}"]'
 	objcopy -O elf64-x86-64 --strip-unneeded ${TEST_KERNEL_ELF} bin/test-kernel.elf
 
+bin/init: bin
+	cargo build --manifest-path init/Cargo.toml ${CARGO_ARGS} --bin init
+	objcopy -O elf64-x86-64 --strip-unneeded ${INITELF} $@
+
+bin/dm: bin
+	cargo build --manifest-path dm/Cargo.toml ${CARGO_ARGS} --bin dm
+	objcopy -O elf64-x86-64 --strip-unneeded ${DMELF} $@
+
+user: bin/init bin/dm
+
 ${FS_BIN}: bin
 ifneq ($(FS_FILE), none)
 	cp -f $(FS_FILE) ${FS_BIN}
@@ -176,7 +188,7 @@ bin/svsm-test.bin: bin/stage1-test
 
 clippy:
 	cargo clippy --workspace --all-features --exclude svsm-fuzz --exclude igvmbuilder --exclude igvmmeasure -- -D warnings
-	cargo clippy --workspace --all-features --exclude svsm-fuzz --exclude svsm --target=x86_64-unknown-linux-gnu -- -D warnings
+	cargo clippy --workspace --all-features --exclude svsm-fuzz --exclude svsm --exclude init --exclude dm --target=x86_64-unknown-linux-gnu -- -D warnings
 	RUSTFLAGS="--cfg fuzzing" cargo clippy --package svsm-fuzz --all-features --target=x86_64-unknown-linux-gnu -- -D warnings
 	cargo clippy --workspace --all-features --tests --target=x86_64-unknown-linux-gnu -- -D warnings
 
@@ -189,4 +201,4 @@ clean:
 distclean: clean
 	$(MAKE) -C libmstpm $@
 
-.PHONY: test clean clippy bin/stage2.bin bin/svsm-kernel.elf bin/test-kernel.elf distclean
+.PHONY: test clean clippy bin/stage2.bin bin/svsm-kernel.elf bin/test-kernel.elf distclean user
diff --git a/dm/Cargo.toml b/dm/Cargo.toml
@@ -0,0 +1,15 @@
+[package]
+name = "dm"
+version = "0.1.0"
+edition = "2021"
+
+[[bin]]
+name = "dm"
+path = "src/main.rs"
+test = false
+
+[dependencies]
+syscall = { path = "../syscall" }
+
+[lints]
+workspace = true
diff --git a/dm/build.rs b/dm/build.rs
@@ -0,0 +1,6 @@
+// SPDX-License-Identifier: MIT OR Apache-2.0
+fn main() {
+    println!("cargo:rustc-link-arg-bin=dm=-nostdlib");
+    println!("cargo:rustc-link-arg-bin=dm=-no-pie");
+    println!("cargo:rustc-link-arg-bin=dm=-Tdm/dm.lds");
+}
diff --git a/dm/dm.lds b/dm/dm.lds
@@ -0,0 +1,37 @@
+/* Temporary WA until p_vaddr alignment issue is fixed in our ELF parser */
+
+OUTPUT_ARCH(i386:x86-64)
+
+PHDRS
+{
+	text PT_LOAD FLAGS(5);		/* Read + Execute */
+	rodata PT_LOAD FLAGS(4);	/* Read-only */
+	data PT_LOAD FLAGS(6);		/* Read + Write */
+	bss PT_LOAD FLAGS(6);		/* Read + Write */
+}
+
+SECTIONS
+{
+	.text : {
+		*(.text)
+		*(.text.*)
+	} :text
+	. = ALIGN(4096);
+	.rodata : {
+		*(.rodata)
+		*(.rodata.*)
+	} :rodata
+	. = ALIGN(4096);
+	.data : {
+		*(.data)
+		*(.data.*)
+	} :data
+	. = ALIGN(4096);
+	.bss : {
+		*(.bss) *(.bss.*)
+		. = ALIGN(4096);
+	} :bss
+	. = ALIGN(4096);
+}
+
+ENTRY(dm_start)
diff --git a/dm/src/main.rs b/dm/src/main.rs
@@ -0,0 +1,25 @@
+// SPDX-License-Identifier: MIT OR Apache-2.0
+//
+// Copyright (c) 2024 Intel Corporation.
+//
+// Author: Chuanxiao Dong <[email protected]>
+
+#![no_std]
+#![no_main]
+
+use core::panic::PanicInfo;
+use syscall::exit;
+
+fn dm_exit() -> ! {
+    exit(0);
+}
+
+#[no_mangle]
+pub extern "C" fn dm_start() -> ! {
+    dm_exit();
+}
+
+#[panic_handler]
+fn panic(_info: &PanicInfo<'_>) -> ! {
+    dm_exit();
+}
diff --git a/elf/src/program_header.rs b/elf/src/program_header.rs
@@ -116,6 +116,9 @@ impl Elf64Phdr {
             if !self.p_align.is_power_of_two() {
                 return Err(ElfError::InvalidAddressAlignment);
             }
+            // TODO: Due to a bug in the ELF parser, this function returns an error when p_vaddr is not
+            // aligned. But since spec doesn't guarantee that p_vaddr must be aligned, our ELF parser
+            // needs to be fixed. Current WA is to use a custom linker script to align p_vaddr.
             if self.p_vaddr & (self.p_align - 1) != 0 {
                 return Err(ElfError::UnalignedSegmentAddress);
             }

diff --git a/init/Cargo.toml b/init/Cargo.toml
@@ -0,0 +1,16 @@
+[package]
+name = "init"
+version = "0.1.0"
+edition = "2021"
+
+[[bin]]
+name = "init"
+path = "src/main.rs"
+test = false
+
+[dependencies]
+syscall = { path = "../syscall" }
+buddy_system_allocator = { workspace = true }
+
+[lints]
+workspace = true
diff --git a/init/build.rs b/init/build.rs
@@ -0,0 +1,6 @@
+// SPDX-License-Identifier: MIT OR Apache-2.0
+fn main() {
+    println!("cargo:rustc-link-arg-bin=init=-nostdlib");
+    println!("cargo:rustc-link-arg-bin=init=-no-pie");
+    println!("cargo:rustc-link-arg-bin=init=-Tinit/init.lds");
+}
diff --git a/init/init.lds b/init/init.lds
@@ -0,0 +1,37 @@
+/* Temporary WA until p_vaddr alignment issue is fixed in our ELF parser */
+
+OUTPUT_ARCH(i386:x86-64)
+
+PHDRS
+{
+	text PT_LOAD FLAGS(5);		/* Read + Execute */
+	rodata PT_LOAD FLAGS(4);	/* Read-only */
+	data PT_LOAD FLAGS(6);		/* Read + Write */
+	bss PT_LOAD FLAGS(6);		/* Read + Write */
+}
+
+SECTIONS
+{
+	.text : {
+		*(.text)
+		*(.text.*)
+	} :text
+	. = ALIGN(4096);
+	.rodata : {
+		*(.rodata)
+		*(.rodata.*)
+	} : rodata
+	. = ALIGN(4096);
+	.data : {
+		*(.data)
+		*(.data.*)
+	} :data
+	. = ALIGN(4096);
+	.bss : {
+		*(.bss) *(.bss.*)
+		. = ALIGN(4096);
+	} :bss
+	. = ALIGN(4096);
+}
+
+ENTRY(init_start)
diff --git a/init/src/main.rs b/init/src/main.rs
@@ -0,0 +1,73 @@
+// SPDX-License-Identifier: MIT OR Apache-2.0
+//
+// Copyright (c) 2024 Intel Corporation.
+//
+// Author: Peter Fang <[email protected]>
+
+#![no_std]
+#![no_main]
+
+extern crate alloc;
+use alloc::ffi::CString;
+use alloc::string::String;
+use buddy_system_allocator::*;
+use core::ffi::CStr;
+use core::panic::PanicInfo;
+use syscall::{exec, exit, opendir, readdir, DirEnt, FileType, SysCallError};
+
+const HEAP_SIZE: usize = 64 * 1024;
+static mut HEAP: [u8; HEAP_SIZE] = [0; HEAP_SIZE];
+
+#[global_allocator]
+static HEAP_ALLOCATOR: LockedHeap<32> = LockedHeap::<32>::empty();
+
+#[no_mangle]
+pub extern "C" fn init_start() -> ! {
+    unsafe {
+        HEAP_ALLOCATOR
+            .lock()
+            .init(core::ptr::addr_of!(HEAP) as usize, HEAP_SIZE);
+    }
+
+    let bin = CString::new("/bin/").unwrap();
+    let Ok(obj) = opendir(&bin) else {
+        exit(0);
+    };
+    let mut dirents: [DirEnt; 8] = Default::default();
+    let mut binfile: Option<CString> = None;
+
+    loop {
+        let n = readdir(&obj, &mut dirents).unwrap();
+        if let Some(d) = dirents
+            .iter()
+            .take(n)
+            .find(|d| d.file_type == FileType::File)
+        {
+            binfile = Some(CString::from(
+                CStr::from_bytes_until_nul(&d.file_name).unwrap(),
+            ));
+            break;
+        }
+        if n < dirents.len() {
+            break;
+        }
+    }
+    let binfile = binfile.unwrap_or_else(|| exit(0));
+
+    let mut file = String::from(bin.as_c_str().to_str().unwrap());
+    file.push_str(binfile.as_c_str().to_str().unwrap());
+
+    let file = CString::new(file).unwrap();
+    let root = CString::new("/").unwrap();
+
+    match exec(&file, &root, 0) {
+        Ok(_) => exit(0),
+        Err(SysCallError::ENOTFOUND) => exit(1),
+        _ => panic!("{} launch failed", file.to_str().unwrap()),
+    };
+}
+
+#[panic_handler]
+fn panic(_info: &PanicInfo<'_>) -> ! {
+    exit(u32::MAX);
+}
diff --git a/kernel/src/cpu/idt/svsm.rs b/kernel/src/cpu/idt/svsm.rs
@@ -247,10 +247,14 @@ extern "C" fn ex_handler_system_call(
     };
 
     ctxt.regs.rax = match input {
-        SYS_HELLO => sys_hello(),
-        SYS_EXIT => sys_exit(),
-        _ => !0,
-    };
+        SYS_EXIT => sys_exit(ctxt.regs.rdi as u32),
+        SYS_EXEC => sys_exec(ctxt.regs.rdi, ctxt.regs.rsi, ctxt.regs.r8),
+        SYS_CLOSE => sys_close(ctxt.regs.rdi as u32),
+        SYS_OPENDIR => sys_opendir(ctxt.regs.rdi),
+        SYS_READDIR => sys_readdir(ctxt.regs.rdi as u32, ctxt.regs.rsi, ctxt.regs.r8),
+        _ => Err(SysCallError::EINVAL),
+    }
+    .map_or_else(|e| e as usize, |v| v as usize);
 }
 
 #[no_mangle]