2 * SPDX-License-Identifier: BSD-2-Clause-FreeBSD
4 * Copyright (c) 2011 NetApp, Inc.
7 * Redistribution and use in source and binary forms, with or without
8 * modification, are permitted provided that the following conditions
10 * 1. Redistributions of source code must retain the above copyright
11 * notice, this list of conditions and the following disclaimer.
12 * 2. Redistributions in binary form must reproduce the above copyright
13 * notice, this list of conditions and the following disclaimer in the
14 * documentation and/or other materials provided with the distribution.
16 * THIS SOFTWARE IS PROVIDED BY NETAPP, INC ``AS IS'' AND
17 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
18 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
19 * ARE DISCLAIMED. IN NO EVENT SHALL NETAPP, INC OR CONTRIBUTORS BE LIABLE
20 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
21 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
22 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
23 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
24 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
25 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
31 #include <sys/cdefs.h>
32 __FBSDID("$FreeBSD$");
34 #include <sys/param.h>
35 #include <sys/systm.h>
36 #include <sys/kernel.h>
37 #include <sys/module.h>
38 #include <sys/sysctl.h>
39 #include <sys/malloc.h>
42 #include <sys/mutex.h>
44 #include <sys/rwlock.h>
45 #include <sys/sched.h>
47 #include <sys/systm.h>
50 #include <vm/vm_object.h>
51 #include <vm/vm_page.h>
53 #include <vm/vm_map.h>
54 #include <vm/vm_extern.h>
55 #include <vm/vm_param.h>
57 #include <machine/cpu.h>
58 #include <machine/pcb.h>
59 #include <machine/smp.h>
61 #include <x86/apicreg.h>
63 #include <machine/vmm.h>
64 #include <machine/vmm_dev.h>
65 #include <machine/vmm_instruction_emul.h>
67 #include "vmm_ioport.h"
80 #include "vmm_lapic.h"
89 * (a) allocated when vcpu is created
90 * (i) initialized when vcpu is created and when it is reinitialized
91 * (o) initialized the first time the vcpu is created
92 * (x) initialized before use
95 struct mtx mtx; /* (o) protects 'state' and 'hostcpu' */
96 enum vcpu_state state; /* (o) vcpu state */
97 int hostcpu; /* (o) vcpu's host cpu */
98 int reqidle; /* (i) request vcpu to idle */
99 struct vlapic *vlapic; /* (i) APIC device model */
100 enum x2apic_state x2apic_state; /* (i) APIC mode */
101 uint64_t exitintinfo; /* (i) events pending at VM exit */
102 int nmi_pending; /* (i) NMI pending */
103 int extint_pending; /* (i) INTR pending */
104 int exception_pending; /* (i) exception pending */
105 int exc_vector; /* (x) exception collateral */
106 int exc_errcode_valid;
107 uint32_t exc_errcode;
108 struct savefpu *guestfpu; /* (a,i) guest fpu state */
109 uint64_t guest_xcr0; /* (i) guest %xcr0 register */
110 void *stats; /* (a,i) statistics */
111 struct vm_exit exitinfo; /* (x) exit reason and collateral */
112 uint64_t nextrip; /* (x) next instruction to execute */
115 #define vcpu_lock_initialized(v) mtx_initialized(&((v)->mtx))
116 #define vcpu_lock_init(v) mtx_init(&((v)->mtx), "vcpu lock", 0, MTX_SPIN)
117 #define vcpu_lock(v) mtx_lock_spin(&((v)->mtx))
118 #define vcpu_unlock(v) mtx_unlock_spin(&((v)->mtx))
119 #define vcpu_assert_locked(v) mtx_assert(&((v)->mtx), MA_OWNED)
124 struct vm_object *object;
126 #define VM_MAX_MEMSEGS 3
136 #define VM_MAX_MEMMAPS 4
140 * (o) initialized the first time the VM is created
141 * (i) initialized when VM is created and when it is reinitialized
142 * (x) initialized before use
145 void *cookie; /* (i) cpu-specific data */
146 void *iommu; /* (x) iommu-specific data */
147 struct vhpet *vhpet; /* (i) virtual HPET */
148 struct vioapic *vioapic; /* (i) virtual ioapic */
149 struct vatpic *vatpic; /* (i) virtual atpic */
150 struct vatpit *vatpit; /* (i) virtual atpit */
151 struct vpmtmr *vpmtmr; /* (i) virtual ACPI PM timer */
152 struct vrtc *vrtc; /* (o) virtual RTC */
153 volatile cpuset_t active_cpus; /* (i) active vcpus */
154 int suspend; /* (i) stop VM execution */
155 volatile cpuset_t suspended_cpus; /* (i) suspended vcpus */
156 volatile cpuset_t halted_cpus; /* (x) cpus in a hard halt */
157 cpuset_t rendezvous_req_cpus; /* (x) rendezvous requested */
158 cpuset_t rendezvous_done_cpus; /* (x) rendezvous finished */
159 void *rendezvous_arg; /* (x) rendezvous func/arg */
160 vm_rendezvous_func_t rendezvous_func;
161 struct mtx rendezvous_mtx; /* (o) rendezvous lock */
162 struct mem_map mem_maps[VM_MAX_MEMMAPS]; /* (i) guest address space */
163 struct mem_seg mem_segs[VM_MAX_MEMSEGS]; /* (o) guest memory regions */
164 struct vmspace *vmspace; /* (o) guest's address space */
165 char name[VM_MAX_NAMELEN]; /* (o) virtual machine name */
166 struct vcpu vcpu[VM_MAXCPU]; /* (i) guest vcpus */
169 static int vmm_initialized;
171 static struct vmm_ops *ops;
172 #define VMM_INIT(num) (ops != NULL ? (*ops->init)(num) : 0)
173 #define VMM_CLEANUP() (ops != NULL ? (*ops->cleanup)() : 0)
174 #define VMM_RESUME() (ops != NULL ? (*ops->resume)() : 0)
176 #define VMINIT(vm, pmap) (ops != NULL ? (*ops->vminit)(vm, pmap): NULL)
177 #define VMRUN(vmi, vcpu, rip, pmap, evinfo) \
178 (ops != NULL ? (*ops->vmrun)(vmi, vcpu, rip, pmap, evinfo) : ENXIO)
179 #define VMCLEANUP(vmi) (ops != NULL ? (*ops->vmcleanup)(vmi) : NULL)
180 #define VMSPACE_ALLOC(min, max) \
181 (ops != NULL ? (*ops->vmspace_alloc)(min, max) : NULL)
182 #define VMSPACE_FREE(vmspace) \
183 (ops != NULL ? (*ops->vmspace_free)(vmspace) : ENXIO)
184 #define VMGETREG(vmi, vcpu, num, retval) \
185 (ops != NULL ? (*ops->vmgetreg)(vmi, vcpu, num, retval) : ENXIO)
186 #define VMSETREG(vmi, vcpu, num, val) \
187 (ops != NULL ? (*ops->vmsetreg)(vmi, vcpu, num, val) : ENXIO)
188 #define VMGETDESC(vmi, vcpu, num, desc) \
189 (ops != NULL ? (*ops->vmgetdesc)(vmi, vcpu, num, desc) : ENXIO)
190 #define VMSETDESC(vmi, vcpu, num, desc) \
191 (ops != NULL ? (*ops->vmsetdesc)(vmi, vcpu, num, desc) : ENXIO)
192 #define VMGETCAP(vmi, vcpu, num, retval) \
193 (ops != NULL ? (*ops->vmgetcap)(vmi, vcpu, num, retval) : ENXIO)
194 #define VMSETCAP(vmi, vcpu, num, val) \
195 (ops != NULL ? (*ops->vmsetcap)(vmi, vcpu, num, val) : ENXIO)
196 #define VLAPIC_INIT(vmi, vcpu) \
197 (ops != NULL ? (*ops->vlapic_init)(vmi, vcpu) : NULL)
198 #define VLAPIC_CLEANUP(vmi, vlapic) \
199 (ops != NULL ? (*ops->vlapic_cleanup)(vmi, vlapic) : NULL)
201 #define fpu_start_emulating() load_cr0(rcr0() | CR0_TS)
202 #define fpu_stop_emulating() clts()
204 static MALLOC_DEFINE(M_VM, "vm", "vm");
207 static VMM_STAT(VCPU_TOTAL_RUNTIME, "vcpu total runtime");
209 SYSCTL_NODE(_hw, OID_AUTO, vmm, CTLFLAG_RW, NULL, NULL);
212 * Halt the guest if all vcpus are executing a HLT instruction with
213 * interrupts disabled.
215 static int halt_detection_enabled = 1;
216 SYSCTL_INT(_hw_vmm, OID_AUTO, halt_detection, CTLFLAG_RDTUN,
217 &halt_detection_enabled, 0,
218 "Halt VM if all vcpus execute HLT with interrupts disabled");
220 static int vmm_ipinum;
221 SYSCTL_INT(_hw_vmm, OID_AUTO, ipinum, CTLFLAG_RD, &vmm_ipinum, 0,
222 "IPI vector used for vcpu notifications");
224 static int trace_guest_exceptions;
225 SYSCTL_INT(_hw_vmm, OID_AUTO, trace_guest_exceptions, CTLFLAG_RDTUN,
226 &trace_guest_exceptions, 0,
227 "Trap into hypervisor on all guest exceptions and reflect them back");
229 static void vm_free_memmap(struct vm *vm, int ident);
230 static bool sysmem_mapping(struct vm *vm, struct mem_map *mm);
231 static void vcpu_notify_event_locked(struct vcpu *vcpu, bool lapic_intr);
235 vcpu_state2str(enum vcpu_state state)
254 vcpu_cleanup(struct vm *vm, int i, bool destroy)
256 struct vcpu *vcpu = &vm->vcpu[i];
258 VLAPIC_CLEANUP(vm->cookie, vcpu->vlapic);
260 vmm_stat_free(vcpu->stats);
261 fpu_save_area_free(vcpu->guestfpu);
266 vcpu_init(struct vm *vm, int vcpu_id, bool create)
270 KASSERT(vcpu_id >= 0 && vcpu_id < VM_MAXCPU,
271 ("vcpu_init: invalid vcpu %d", vcpu_id));
273 vcpu = &vm->vcpu[vcpu_id];
276 KASSERT(!vcpu_lock_initialized(vcpu), ("vcpu %d already "
277 "initialized", vcpu_id));
278 vcpu_lock_init(vcpu);
279 vcpu->state = VCPU_IDLE;
280 vcpu->hostcpu = NOCPU;
281 vcpu->guestfpu = fpu_save_area_alloc();
282 vcpu->stats = vmm_stat_alloc();
285 vcpu->vlapic = VLAPIC_INIT(vm->cookie, vcpu_id);
286 vm_set_x2apic_state(vm, vcpu_id, X2APIC_DISABLED);
288 vcpu->exitintinfo = 0;
289 vcpu->nmi_pending = 0;
290 vcpu->extint_pending = 0;
291 vcpu->exception_pending = 0;
292 vcpu->guest_xcr0 = XFEATURE_ENABLED_X87;
293 fpu_save_area_reset(vcpu->guestfpu);
294 vmm_stat_init(vcpu->stats);
298 vcpu_trace_exceptions(struct vm *vm, int vcpuid)
301 return (trace_guest_exceptions);
305 vm_exitinfo(struct vm *vm, int cpuid)
309 if (cpuid < 0 || cpuid >= VM_MAXCPU)
310 panic("vm_exitinfo: invalid cpuid %d", cpuid);
312 vcpu = &vm->vcpu[cpuid];
314 return (&vcpu->exitinfo);
328 vmm_host_state_init();
330 vmm_ipinum = lapic_ipi_alloc(&IDTVEC(justreturn));
332 vmm_ipinum = IPI_AST;
334 error = vmm_mem_init();
339 ops = &vmm_ops_intel;
340 else if (vmm_is_amd())
345 vmm_resume_p = vmm_resume;
347 return (VMM_INIT(vmm_ipinum));
351 vmm_handler(module_t mod, int what, void *arg)
363 error = vmmdev_cleanup();
367 if (vmm_ipinum != IPI_AST)
368 lapic_ipi_free(vmm_ipinum);
369 error = VMM_CLEANUP();
371 * Something bad happened - prevent new
372 * VMs from being created
385 static moduledata_t vmm_kmod = {
392 * vmm initialization has the following dependencies:
394 * - VT-x initialization requires smp_rendezvous() and therefore must happen
395 * after SMP is fully functional (after SI_SUB_SMP).
397 DECLARE_MODULE(vmm, vmm_kmod, SI_SUB_SMP + 1, SI_ORDER_ANY);
398 MODULE_VERSION(vmm, 1);
401 vm_init(struct vm *vm, bool create)
405 vm->cookie = VMINIT(vm, vmspace_pmap(vm->vmspace));
407 vm->vioapic = vioapic_init(vm);
408 vm->vhpet = vhpet_init(vm);
409 vm->vatpic = vatpic_init(vm);
410 vm->vatpit = vatpit_init(vm);
411 vm->vpmtmr = vpmtmr_init(vm);
413 vm->vrtc = vrtc_init(vm);
415 CPU_ZERO(&vm->active_cpus);
418 CPU_ZERO(&vm->suspended_cpus);
420 for (i = 0; i < VM_MAXCPU; i++)
421 vcpu_init(vm, i, create);
425 vm_create(const char *name, struct vm **retvm)
428 struct vmspace *vmspace;
431 * If vmm.ko could not be successfully initialized then don't attempt
432 * to create the virtual machine.
434 if (!vmm_initialized)
437 if (name == NULL || strlen(name) >= VM_MAX_NAMELEN)
440 vmspace = VMSPACE_ALLOC(0, VM_MAXUSER_ADDRESS);
444 vm = malloc(sizeof(struct vm), M_VM, M_WAITOK | M_ZERO);
445 strcpy(vm->name, name);
446 vm->vmspace = vmspace;
447 mtx_init(&vm->rendezvous_mtx, "vm rendezvous lock", 0, MTX_DEF);
456 vm_cleanup(struct vm *vm, bool destroy)
461 ppt_unassign_all(vm);
463 if (vm->iommu != NULL)
464 iommu_destroy_domain(vm->iommu);
467 vrtc_cleanup(vm->vrtc);
469 vrtc_reset(vm->vrtc);
470 vpmtmr_cleanup(vm->vpmtmr);
471 vatpit_cleanup(vm->vatpit);
472 vhpet_cleanup(vm->vhpet);
473 vatpic_cleanup(vm->vatpic);
474 vioapic_cleanup(vm->vioapic);
476 for (i = 0; i < VM_MAXCPU; i++)
477 vcpu_cleanup(vm, i, destroy);
479 VMCLEANUP(vm->cookie);
482 * System memory is removed from the guest address space only when
483 * the VM is destroyed. This is because the mapping remains the same
486 * Device memory can be relocated by the guest (e.g. using PCI BARs)
487 * so those mappings are removed on a VM reset.
489 for (i = 0; i < VM_MAX_MEMMAPS; i++) {
490 mm = &vm->mem_maps[i];
491 if (destroy || !sysmem_mapping(vm, mm))
492 vm_free_memmap(vm, i);
496 for (i = 0; i < VM_MAX_MEMSEGS; i++)
497 vm_free_memseg(vm, i);
499 VMSPACE_FREE(vm->vmspace);
505 vm_destroy(struct vm *vm)
507 vm_cleanup(vm, true);
512 vm_reinit(struct vm *vm)
517 * A virtual machine can be reset only if all vcpus are suspended.
519 if (CPU_CMP(&vm->suspended_cpus, &vm->active_cpus) == 0) {
520 vm_cleanup(vm, false);
531 vm_name(struct vm *vm)
537 vm_map_mmio(struct vm *vm, vm_paddr_t gpa, size_t len, vm_paddr_t hpa)
541 if ((obj = vmm_mmio_alloc(vm->vmspace, gpa, len, hpa)) == NULL)
548 vm_unmap_mmio(struct vm *vm, vm_paddr_t gpa, size_t len)
551 vmm_mmio_free(vm->vmspace, gpa, len);
556 * Return 'true' if 'gpa' is allocated in the guest address space.
558 * This function is called in the context of a running vcpu which acts as
559 * an implicit lock on 'vm->mem_maps[]'.
562 vm_mem_allocated(struct vm *vm, int vcpuid, vm_paddr_t gpa)
569 state = vcpu_get_state(vm, vcpuid, &hostcpu);
570 KASSERT(state == VCPU_RUNNING && hostcpu == curcpu,
571 ("%s: invalid vcpu state %d/%d", __func__, state, hostcpu));
574 for (i = 0; i < VM_MAX_MEMMAPS; i++) {
575 mm = &vm->mem_maps[i];
576 if (mm->len != 0 && gpa >= mm->gpa && gpa < mm->gpa + mm->len)
577 return (true); /* 'gpa' is sysmem or devmem */
580 if (ppt_is_mmio(vm, gpa))
581 return (true); /* 'gpa' is pci passthru mmio */
587 vm_alloc_memseg(struct vm *vm, int ident, size_t len, bool sysmem)
592 if (ident < 0 || ident >= VM_MAX_MEMSEGS)
595 if (len == 0 || (len & PAGE_MASK))
598 seg = &vm->mem_segs[ident];
599 if (seg->object != NULL) {
600 if (seg->len == len && seg->sysmem == sysmem)
606 obj = vm_object_allocate(OBJT_DEFAULT, len >> PAGE_SHIFT);
612 seg->sysmem = sysmem;
617 vm_get_memseg(struct vm *vm, int ident, size_t *len, bool *sysmem,
622 if (ident < 0 || ident >= VM_MAX_MEMSEGS)
625 seg = &vm->mem_segs[ident];
629 *sysmem = seg->sysmem;
631 *objptr = seg->object;
636 vm_free_memseg(struct vm *vm, int ident)
640 KASSERT(ident >= 0 && ident < VM_MAX_MEMSEGS,
641 ("%s: invalid memseg ident %d", __func__, ident));
643 seg = &vm->mem_segs[ident];
644 if (seg->object != NULL) {
645 vm_object_deallocate(seg->object);
646 bzero(seg, sizeof(struct mem_seg));
651 vm_mmap_memseg(struct vm *vm, vm_paddr_t gpa, int segid, vm_ooffset_t first,
652 size_t len, int prot, int flags)
655 struct mem_map *m, *map;
659 if (prot == 0 || (prot & ~(VM_PROT_ALL)) != 0)
662 if (flags & ~VM_MEMMAP_F_WIRED)
665 if (segid < 0 || segid >= VM_MAX_MEMSEGS)
668 seg = &vm->mem_segs[segid];
669 if (seg->object == NULL)
673 if (first < 0 || first >= last || last > seg->len)
676 if ((gpa | first | last) & PAGE_MASK)
680 for (i = 0; i < VM_MAX_MEMMAPS; i++) {
681 m = &vm->mem_maps[i];
691 error = vm_map_find(&vm->vmspace->vm_map, seg->object, first, &gpa,
692 len, 0, VMFS_NO_SPACE, prot, prot, 0);
693 if (error != KERN_SUCCESS)
696 vm_object_reference(seg->object);
698 if (flags & VM_MEMMAP_F_WIRED) {
699 error = vm_map_wire(&vm->vmspace->vm_map, gpa, gpa + len,
700 VM_MAP_WIRE_USER | VM_MAP_WIRE_NOHOLES);
701 if (error != KERN_SUCCESS) {
702 vm_map_remove(&vm->vmspace->vm_map, gpa, gpa + len);
717 vm_mmap_getnext(struct vm *vm, vm_paddr_t *gpa, int *segid,
718 vm_ooffset_t *segoff, size_t *len, int *prot, int *flags)
720 struct mem_map *mm, *mmnext;
724 for (i = 0; i < VM_MAX_MEMMAPS; i++) {
725 mm = &vm->mem_maps[i];
726 if (mm->len == 0 || mm->gpa < *gpa)
728 if (mmnext == NULL || mm->gpa < mmnext->gpa)
732 if (mmnext != NULL) {
735 *segid = mmnext->segid;
737 *segoff = mmnext->segoff;
741 *prot = mmnext->prot;
743 *flags = mmnext->flags;
751 vm_free_memmap(struct vm *vm, int ident)
756 mm = &vm->mem_maps[ident];
758 error = vm_map_remove(&vm->vmspace->vm_map, mm->gpa,
760 KASSERT(error == KERN_SUCCESS, ("%s: vm_map_remove error %d",
762 bzero(mm, sizeof(struct mem_map));
767 sysmem_mapping(struct vm *vm, struct mem_map *mm)
770 if (mm->len != 0 && vm->mem_segs[mm->segid].sysmem)
777 sysmem_maxaddr(struct vm *vm)
784 for (i = 0; i < VM_MAX_MEMMAPS; i++) {
785 mm = &vm->mem_maps[i];
786 if (sysmem_mapping(vm, mm)) {
787 if (maxaddr < mm->gpa + mm->len)
788 maxaddr = mm->gpa + mm->len;
795 vm_iommu_modify(struct vm *vm, boolean_t map)
800 void *vp, *cookie, *host_domain;
803 host_domain = iommu_host_domain();
805 for (i = 0; i < VM_MAX_MEMMAPS; i++) {
806 mm = &vm->mem_maps[i];
807 if (!sysmem_mapping(vm, mm))
811 KASSERT((mm->flags & VM_MEMMAP_F_IOMMU) == 0,
812 ("iommu map found invalid memmap %#lx/%#lx/%#x",
813 mm->gpa, mm->len, mm->flags));
814 if ((mm->flags & VM_MEMMAP_F_WIRED) == 0)
816 mm->flags |= VM_MEMMAP_F_IOMMU;
818 if ((mm->flags & VM_MEMMAP_F_IOMMU) == 0)
820 mm->flags &= ~VM_MEMMAP_F_IOMMU;
821 KASSERT((mm->flags & VM_MEMMAP_F_WIRED) != 0,
822 ("iommu unmap found invalid memmap %#lx/%#lx/%#x",
823 mm->gpa, mm->len, mm->flags));
827 while (gpa < mm->gpa + mm->len) {
828 vp = vm_gpa_hold(vm, -1, gpa, PAGE_SIZE, VM_PROT_WRITE,
830 KASSERT(vp != NULL, ("vm(%s) could not map gpa %#lx",
833 vm_gpa_release(cookie);
835 hpa = DMAP_TO_PHYS((uintptr_t)vp);
837 iommu_create_mapping(vm->iommu, gpa, hpa, sz);
838 iommu_remove_mapping(host_domain, hpa, sz);
840 iommu_remove_mapping(vm->iommu, gpa, sz);
841 iommu_create_mapping(host_domain, hpa, hpa, sz);
849 * Invalidate the cached translations associated with the domain
850 * from which pages were removed.
853 iommu_invalidate_tlb(host_domain);
855 iommu_invalidate_tlb(vm->iommu);
858 #define vm_iommu_unmap(vm) vm_iommu_modify((vm), FALSE)
859 #define vm_iommu_map(vm) vm_iommu_modify((vm), TRUE)
862 vm_unassign_pptdev(struct vm *vm, int bus, int slot, int func)
866 error = ppt_unassign_device(vm, bus, slot, func);
870 if (ppt_assigned_devices(vm) == 0)
877 vm_assign_pptdev(struct vm *vm, int bus, int slot, int func)
882 /* Set up the IOMMU to do the 'gpa' to 'hpa' translation */
883 if (ppt_assigned_devices(vm) == 0) {
884 KASSERT(vm->iommu == NULL,
885 ("vm_assign_pptdev: iommu must be NULL"));
886 maxaddr = sysmem_maxaddr(vm);
887 vm->iommu = iommu_create_domain(maxaddr);
888 if (vm->iommu == NULL)
893 error = ppt_assign_device(vm, bus, slot, func);
898 vm_gpa_hold(struct vm *vm, int vcpuid, vm_paddr_t gpa, size_t len, int reqprot,
901 int i, count, pageoff;
906 * All vcpus are frozen by ioctls that modify the memory map
907 * (e.g. VM_MMAP_MEMSEG). Therefore 'vm->memmap[]' stability is
908 * guaranteed if at least one vcpu is in the VCPU_FROZEN state.
911 KASSERT(vcpuid >= -1 && vcpuid < VM_MAXCPU, ("%s: invalid vcpuid %d",
913 for (i = 0; i < VM_MAXCPU; i++) {
914 if (vcpuid != -1 && vcpuid != i)
916 state = vcpu_get_state(vm, i, NULL);
917 KASSERT(state == VCPU_FROZEN, ("%s: invalid vcpu state %d",
921 pageoff = gpa & PAGE_MASK;
922 if (len > PAGE_SIZE - pageoff)
923 panic("vm_gpa_hold: invalid gpa/len: 0x%016lx/%lu", gpa, len);
926 for (i = 0; i < VM_MAX_MEMMAPS; i++) {
927 mm = &vm->mem_maps[i];
928 if (sysmem_mapping(vm, mm) && gpa >= mm->gpa &&
929 gpa < mm->gpa + mm->len) {
930 count = vm_fault_quick_hold_pages(&vm->vmspace->vm_map,
931 trunc_page(gpa), PAGE_SIZE, reqprot, &m, 1);
938 return ((void *)(PHYS_TO_DMAP(VM_PAGE_TO_PHYS(m)) + pageoff));
946 vm_gpa_release(void *cookie)
948 vm_page_t m = cookie;
956 vm_get_register(struct vm *vm, int vcpu, int reg, uint64_t *retval)
959 if (vcpu < 0 || vcpu >= VM_MAXCPU)
962 if (reg >= VM_REG_LAST)
965 return (VMGETREG(vm->cookie, vcpu, reg, retval));
969 vm_set_register(struct vm *vm, int vcpuid, int reg, uint64_t val)
974 if (vcpuid < 0 || vcpuid >= VM_MAXCPU)
977 if (reg >= VM_REG_LAST)
980 error = VMSETREG(vm->cookie, vcpuid, reg, val);
981 if (error || reg != VM_REG_GUEST_RIP)
984 /* Set 'nextrip' to match the value of %rip */
985 VCPU_CTR1(vm, vcpuid, "Setting nextrip to %#lx", val);
986 vcpu = &vm->vcpu[vcpuid];
992 is_descriptor_table(int reg)
996 case VM_REG_GUEST_IDTR:
997 case VM_REG_GUEST_GDTR:
1005 is_segment_register(int reg)
1009 case VM_REG_GUEST_ES:
1010 case VM_REG_GUEST_CS:
1011 case VM_REG_GUEST_SS:
1012 case VM_REG_GUEST_DS:
1013 case VM_REG_GUEST_FS:
1014 case VM_REG_GUEST_GS:
1015 case VM_REG_GUEST_TR:
1016 case VM_REG_GUEST_LDTR:
1024 vm_get_seg_desc(struct vm *vm, int vcpu, int reg,
1025 struct seg_desc *desc)
1028 if (vcpu < 0 || vcpu >= VM_MAXCPU)
1031 if (!is_segment_register(reg) && !is_descriptor_table(reg))
1034 return (VMGETDESC(vm->cookie, vcpu, reg, desc));
1038 vm_set_seg_desc(struct vm *vm, int vcpu, int reg,
1039 struct seg_desc *desc)
1041 if (vcpu < 0 || vcpu >= VM_MAXCPU)
1044 if (!is_segment_register(reg) && !is_descriptor_table(reg))
1047 return (VMSETDESC(vm->cookie, vcpu, reg, desc));
1051 restore_guest_fpustate(struct vcpu *vcpu)
1054 /* flush host state to the pcb */
1057 /* restore guest FPU state */
1058 fpu_stop_emulating();
1059 fpurestore(vcpu->guestfpu);
1061 /* restore guest XCR0 if XSAVE is enabled in the host */
1062 if (rcr4() & CR4_XSAVE)
1063 load_xcr(0, vcpu->guest_xcr0);
1066 * The FPU is now "dirty" with the guest's state so turn on emulation
1067 * to trap any access to the FPU by the host.
1069 fpu_start_emulating();
1073 save_guest_fpustate(struct vcpu *vcpu)
1076 if ((rcr0() & CR0_TS) == 0)
1077 panic("fpu emulation not enabled in host!");
1079 /* save guest XCR0 and restore host XCR0 */
1080 if (rcr4() & CR4_XSAVE) {
1081 vcpu->guest_xcr0 = rxcr(0);
1082 load_xcr(0, vmm_get_host_xcr0());
1085 /* save guest FPU state */
1086 fpu_stop_emulating();
1087 fpusave(vcpu->guestfpu);
1088 fpu_start_emulating();
1091 static VMM_STAT(VCPU_IDLE_TICKS, "number of ticks vcpu was idle");
1094 vcpu_set_state_locked(struct vm *vm, int vcpuid, enum vcpu_state newstate,
1100 vcpu = &vm->vcpu[vcpuid];
1101 vcpu_assert_locked(vcpu);
1104 * State transitions from the vmmdev_ioctl() must always begin from
1105 * the VCPU_IDLE state. This guarantees that there is only a single
1106 * ioctl() operating on a vcpu at any point.
1109 while (vcpu->state != VCPU_IDLE) {
1111 vcpu_notify_event_locked(vcpu, false);
1112 VCPU_CTR1(vm, vcpuid, "vcpu state change from %s to "
1113 "idle requested", vcpu_state2str(vcpu->state));
1114 msleep_spin(&vcpu->state, &vcpu->mtx, "vmstat", hz);
1117 KASSERT(vcpu->state != VCPU_IDLE, ("invalid transition from "
1118 "vcpu idle state"));
1121 if (vcpu->state == VCPU_RUNNING) {
1122 KASSERT(vcpu->hostcpu == curcpu, ("curcpu %d and hostcpu %d "
1123 "mismatch for running vcpu", curcpu, vcpu->hostcpu));
1125 KASSERT(vcpu->hostcpu == NOCPU, ("Invalid hostcpu %d for a "
1126 "vcpu that is not running", vcpu->hostcpu));
1130 * The following state transitions are allowed:
1131 * IDLE -> FROZEN -> IDLE
1132 * FROZEN -> RUNNING -> FROZEN
1133 * FROZEN -> SLEEPING -> FROZEN
1135 switch (vcpu->state) {
1139 error = (newstate != VCPU_FROZEN);
1142 error = (newstate == VCPU_FROZEN);
1152 VCPU_CTR2(vm, vcpuid, "vcpu state changed from %s to %s",
1153 vcpu_state2str(vcpu->state), vcpu_state2str(newstate));
1155 vcpu->state = newstate;
1156 if (newstate == VCPU_RUNNING)
1157 vcpu->hostcpu = curcpu;
1159 vcpu->hostcpu = NOCPU;
1161 if (newstate == VCPU_IDLE)
1162 wakeup(&vcpu->state);
1168 vcpu_require_state(struct vm *vm, int vcpuid, enum vcpu_state newstate)
1172 if ((error = vcpu_set_state(vm, vcpuid, newstate, false)) != 0)
1173 panic("Error %d setting state to %d\n", error, newstate);
1177 vcpu_require_state_locked(struct vm *vm, int vcpuid, enum vcpu_state newstate)
1181 if ((error = vcpu_set_state_locked(vm, vcpuid, newstate, false)) != 0)
1182 panic("Error %d setting state to %d", error, newstate);
1186 vm_set_rendezvous_func(struct vm *vm, vm_rendezvous_func_t func)
1189 KASSERT(mtx_owned(&vm->rendezvous_mtx), ("rendezvous_mtx not locked"));
1192 * Update 'rendezvous_func' and execute a write memory barrier to
1193 * ensure that it is visible across all host cpus. This is not needed
1194 * for correctness but it does ensure that all the vcpus will notice
1195 * that the rendezvous is requested immediately.
1197 vm->rendezvous_func = func;
1201 #define RENDEZVOUS_CTR0(vm, vcpuid, fmt) \
1204 VCPU_CTR0(vm, vcpuid, fmt); \
1210 vm_handle_rendezvous(struct vm *vm, int vcpuid)
1213 KASSERT(vcpuid == -1 || (vcpuid >= 0 && vcpuid < VM_MAXCPU),
1214 ("vm_handle_rendezvous: invalid vcpuid %d", vcpuid));
1216 mtx_lock(&vm->rendezvous_mtx);
1217 while (vm->rendezvous_func != NULL) {
1218 /* 'rendezvous_req_cpus' must be a subset of 'active_cpus' */
1219 CPU_AND(&vm->rendezvous_req_cpus, &vm->active_cpus);
1222 CPU_ISSET(vcpuid, &vm->rendezvous_req_cpus) &&
1223 !CPU_ISSET(vcpuid, &vm->rendezvous_done_cpus)) {
1224 VCPU_CTR0(vm, vcpuid, "Calling rendezvous func");
1225 (*vm->rendezvous_func)(vm, vcpuid, vm->rendezvous_arg);
1226 CPU_SET(vcpuid, &vm->rendezvous_done_cpus);
1228 if (CPU_CMP(&vm->rendezvous_req_cpus,
1229 &vm->rendezvous_done_cpus) == 0) {
1230 VCPU_CTR0(vm, vcpuid, "Rendezvous completed");
1231 vm_set_rendezvous_func(vm, NULL);
1232 wakeup(&vm->rendezvous_func);
1235 RENDEZVOUS_CTR0(vm, vcpuid, "Wait for rendezvous completion");
1236 mtx_sleep(&vm->rendezvous_func, &vm->rendezvous_mtx, 0,
1239 mtx_unlock(&vm->rendezvous_mtx);
1243 * Emulate a guest 'hlt' by sleeping until the vcpu is ready to run.
1246 vm_handle_hlt(struct vm *vm, int vcpuid, bool intr_disabled, bool *retu)
1250 int t, vcpu_halted, vm_halted;
1252 KASSERT(!CPU_ISSET(vcpuid, &vm->halted_cpus), ("vcpu already halted"));
1254 vcpu = &vm->vcpu[vcpuid];
1261 * Do a final check for pending NMI or interrupts before
1262 * really putting this thread to sleep. Also check for
1263 * software events that would cause this vcpu to wakeup.
1265 * These interrupts/events could have happened after the
1266 * vcpu returned from VMRUN() and before it acquired the
1269 if (vm->rendezvous_func != NULL || vm->suspend || vcpu->reqidle)
1271 if (vm_nmi_pending(vm, vcpuid))
1273 if (!intr_disabled) {
1274 if (vm_extint_pending(vm, vcpuid) ||
1275 vlapic_pending_intr(vcpu->vlapic, NULL)) {
1280 /* Don't go to sleep if the vcpu thread needs to yield */
1281 if (vcpu_should_yield(vm, vcpuid))
1285 * Some Linux guests implement "halt" by having all vcpus
1286 * execute HLT with interrupts disabled. 'halted_cpus' keeps
1287 * track of the vcpus that have entered this state. When all
1288 * vcpus enter the halted state the virtual machine is halted.
1290 if (intr_disabled) {
1292 VCPU_CTR0(vm, vcpuid, "Halted");
1293 if (!vcpu_halted && halt_detection_enabled) {
1295 CPU_SET_ATOMIC(vcpuid, &vm->halted_cpus);
1297 if (CPU_CMP(&vm->halted_cpus, &vm->active_cpus) == 0) {
1306 vcpu_require_state_locked(vm, vcpuid, VCPU_SLEEPING);
1308 * XXX msleep_spin() cannot be interrupted by signals so
1309 * wake up periodically to check pending signals.
1311 msleep_spin(vcpu, &vcpu->mtx, wmesg, hz);
1312 vcpu_require_state_locked(vm, vcpuid, VCPU_FROZEN);
1313 vmm_stat_incr(vm, vcpuid, VCPU_IDLE_TICKS, ticks - t);
1317 CPU_CLR_ATOMIC(vcpuid, &vm->halted_cpus);
1322 vm_suspend(vm, VM_SUSPEND_HALT);
1328 vm_handle_paging(struct vm *vm, int vcpuid, bool *retu)
1333 struct vm_exit *vme;
1335 vcpu = &vm->vcpu[vcpuid];
1336 vme = &vcpu->exitinfo;
1338 KASSERT(vme->inst_length == 0, ("%s: invalid inst_length %d",
1339 __func__, vme->inst_length));
1341 ftype = vme->u.paging.fault_type;
1342 KASSERT(ftype == VM_PROT_READ ||
1343 ftype == VM_PROT_WRITE || ftype == VM_PROT_EXECUTE,
1344 ("vm_handle_paging: invalid fault_type %d", ftype));
1346 if (ftype == VM_PROT_READ || ftype == VM_PROT_WRITE) {
1347 rv = pmap_emulate_accessed_dirty(vmspace_pmap(vm->vmspace),
1348 vme->u.paging.gpa, ftype);
1350 VCPU_CTR2(vm, vcpuid, "%s bit emulation for gpa %#lx",
1351 ftype == VM_PROT_READ ? "accessed" : "dirty",
1357 map = &vm->vmspace->vm_map;
1358 rv = vm_fault(map, vme->u.paging.gpa, ftype, VM_FAULT_NORMAL);
1360 VCPU_CTR3(vm, vcpuid, "vm_handle_paging rv = %d, gpa = %#lx, "
1361 "ftype = %d", rv, vme->u.paging.gpa, ftype);
1363 if (rv != KERN_SUCCESS)
1370 vm_handle_inst_emul(struct vm *vm, int vcpuid, bool *retu)
1374 struct vm_exit *vme;
1375 uint64_t gla, gpa, cs_base;
1376 struct vm_guest_paging *paging;
1377 mem_region_read_t mread;
1378 mem_region_write_t mwrite;
1379 enum vm_cpu_mode cpu_mode;
1380 int cs_d, error, fault;
1382 vcpu = &vm->vcpu[vcpuid];
1383 vme = &vcpu->exitinfo;
1385 KASSERT(vme->inst_length == 0, ("%s: invalid inst_length %d",
1386 __func__, vme->inst_length));
1388 gla = vme->u.inst_emul.gla;
1389 gpa = vme->u.inst_emul.gpa;
1390 cs_base = vme->u.inst_emul.cs_base;
1391 cs_d = vme->u.inst_emul.cs_d;
1392 vie = &vme->u.inst_emul.vie;
1393 paging = &vme->u.inst_emul.paging;
1394 cpu_mode = paging->cpu_mode;
1396 VCPU_CTR1(vm, vcpuid, "inst_emul fault accessing gpa %#lx", gpa);
1398 /* Fetch, decode and emulate the faulting instruction */
1399 if (vie->num_valid == 0) {
1400 error = vmm_fetch_instruction(vm, vcpuid, paging, vme->rip +
1401 cs_base, VIE_INST_SIZE, vie, &fault);
1404 * The instruction bytes have already been copied into 'vie'
1411 if (vmm_decode_instruction(vm, vcpuid, gla, cpu_mode, cs_d, vie) != 0) {
1412 VCPU_CTR1(vm, vcpuid, "Error decoding instruction at %#lx",
1413 vme->rip + cs_base);
1414 *retu = true; /* dump instruction bytes in userspace */
1419 * Update 'nextrip' based on the length of the emulated instruction.
1421 vme->inst_length = vie->num_processed;
1422 vcpu->nextrip += vie->num_processed;
1423 VCPU_CTR1(vm, vcpuid, "nextrip updated to %#lx after instruction "
1424 "decoding", vcpu->nextrip);
1426 /* return to userland unless this is an in-kernel emulated device */
1427 if (gpa >= DEFAULT_APIC_BASE && gpa < DEFAULT_APIC_BASE + PAGE_SIZE) {
1428 mread = lapic_mmio_read;
1429 mwrite = lapic_mmio_write;
1430 } else if (gpa >= VIOAPIC_BASE && gpa < VIOAPIC_BASE + VIOAPIC_SIZE) {
1431 mread = vioapic_mmio_read;
1432 mwrite = vioapic_mmio_write;
1433 } else if (gpa >= VHPET_BASE && gpa < VHPET_BASE + VHPET_SIZE) {
1434 mread = vhpet_mmio_read;
1435 mwrite = vhpet_mmio_write;
1441 error = vmm_emulate_instruction(vm, vcpuid, gpa, vie, paging,
1442 mread, mwrite, retu);
1448 vm_handle_suspend(struct vm *vm, int vcpuid, bool *retu)
1454 vcpu = &vm->vcpu[vcpuid];
1456 CPU_SET_ATOMIC(vcpuid, &vm->suspended_cpus);
1459 * Wait until all 'active_cpus' have suspended themselves.
1461 * Since a VM may be suspended at any time including when one or
1462 * more vcpus are doing a rendezvous we need to call the rendezvous
1463 * handler while we are waiting to prevent a deadlock.
1467 if (CPU_CMP(&vm->suspended_cpus, &vm->active_cpus) == 0) {
1468 VCPU_CTR0(vm, vcpuid, "All vcpus suspended");
1472 if (vm->rendezvous_func == NULL) {
1473 VCPU_CTR0(vm, vcpuid, "Sleeping during suspend");
1474 vcpu_require_state_locked(vm, vcpuid, VCPU_SLEEPING);
1475 msleep_spin(vcpu, &vcpu->mtx, "vmsusp", hz);
1476 vcpu_require_state_locked(vm, vcpuid, VCPU_FROZEN);
1478 VCPU_CTR0(vm, vcpuid, "Rendezvous during suspend");
1480 vm_handle_rendezvous(vm, vcpuid);
1487 * Wakeup the other sleeping vcpus and return to userspace.
1489 for (i = 0; i < VM_MAXCPU; i++) {
1490 if (CPU_ISSET(i, &vm->suspended_cpus)) {
1491 vcpu_notify_event(vm, i, false);
1500 vm_handle_reqidle(struct vm *vm, int vcpuid, bool *retu)
1502 struct vcpu *vcpu = &vm->vcpu[vcpuid];
1505 KASSERT(vcpu->reqidle, ("invalid vcpu reqidle %d", vcpu->reqidle));
1513 vm_suspend(struct vm *vm, enum vm_suspend_how how)
1517 if (how <= VM_SUSPEND_NONE || how >= VM_SUSPEND_LAST)
1520 if (atomic_cmpset_int(&vm->suspend, 0, how) == 0) {
1521 VM_CTR2(vm, "virtual machine already suspended %d/%d",
1526 VM_CTR1(vm, "virtual machine successfully suspended %d", how);
1529 * Notify all active vcpus that they are now suspended.
1531 for (i = 0; i < VM_MAXCPU; i++) {
1532 if (CPU_ISSET(i, &vm->active_cpus))
1533 vcpu_notify_event(vm, i, false);
1540 vm_exit_suspended(struct vm *vm, int vcpuid, uint64_t rip)
1542 struct vm_exit *vmexit;
1544 KASSERT(vm->suspend > VM_SUSPEND_NONE && vm->suspend < VM_SUSPEND_LAST,
1545 ("vm_exit_suspended: invalid suspend type %d", vm->suspend));
1547 vmexit = vm_exitinfo(vm, vcpuid);
1549 vmexit->inst_length = 0;
1550 vmexit->exitcode = VM_EXITCODE_SUSPENDED;
1551 vmexit->u.suspended.how = vm->suspend;
1555 vm_exit_rendezvous(struct vm *vm, int vcpuid, uint64_t rip)
1557 struct vm_exit *vmexit;
1559 KASSERT(vm->rendezvous_func != NULL, ("rendezvous not in progress"));
1561 vmexit = vm_exitinfo(vm, vcpuid);
1563 vmexit->inst_length = 0;
1564 vmexit->exitcode = VM_EXITCODE_RENDEZVOUS;
1565 vmm_stat_incr(vm, vcpuid, VMEXIT_RENDEZVOUS, 1);
1569 vm_exit_reqidle(struct vm *vm, int vcpuid, uint64_t rip)
1571 struct vm_exit *vmexit;
1573 vmexit = vm_exitinfo(vm, vcpuid);
1575 vmexit->inst_length = 0;
1576 vmexit->exitcode = VM_EXITCODE_REQIDLE;
1577 vmm_stat_incr(vm, vcpuid, VMEXIT_REQIDLE, 1);
1581 vm_exit_astpending(struct vm *vm, int vcpuid, uint64_t rip)
1583 struct vm_exit *vmexit;
1585 vmexit = vm_exitinfo(vm, vcpuid);
1587 vmexit->inst_length = 0;
1588 vmexit->exitcode = VM_EXITCODE_BOGUS;
1589 vmm_stat_incr(vm, vcpuid, VMEXIT_ASTPENDING, 1);
1593 vm_run(struct vm *vm, struct vm_run *vmrun)
1595 struct vm_eventinfo evinfo;
1600 struct vm_exit *vme;
1601 bool retu, intr_disabled;
1604 vcpuid = vmrun->cpuid;
1606 if (vcpuid < 0 || vcpuid >= VM_MAXCPU)
1609 if (!CPU_ISSET(vcpuid, &vm->active_cpus))
1612 if (CPU_ISSET(vcpuid, &vm->suspended_cpus))
1615 pmap = vmspace_pmap(vm->vmspace);
1616 vcpu = &vm->vcpu[vcpuid];
1617 vme = &vcpu->exitinfo;
1618 evinfo.rptr = &vm->rendezvous_func;
1619 evinfo.sptr = &vm->suspend;
1620 evinfo.iptr = &vcpu->reqidle;
1624 KASSERT(!CPU_ISSET(curcpu, &pmap->pm_active),
1625 ("vm_run: absurd pm_active"));
1629 pcb = PCPU_GET(curpcb);
1630 set_pcb_flags(pcb, PCB_FULL_IRET);
1632 restore_guest_fpustate(vcpu);
1634 vcpu_require_state(vm, vcpuid, VCPU_RUNNING);
1635 error = VMRUN(vm->cookie, vcpuid, vcpu->nextrip, pmap, &evinfo);
1636 vcpu_require_state(vm, vcpuid, VCPU_FROZEN);
1638 save_guest_fpustate(vcpu);
1640 vmm_stat_incr(vm, vcpuid, VCPU_TOTAL_RUNTIME, rdtsc() - tscval);
1646 vcpu->nextrip = vme->rip + vme->inst_length;
1647 switch (vme->exitcode) {
1648 case VM_EXITCODE_REQIDLE:
1649 error = vm_handle_reqidle(vm, vcpuid, &retu);
1651 case VM_EXITCODE_SUSPENDED:
1652 error = vm_handle_suspend(vm, vcpuid, &retu);
1654 case VM_EXITCODE_IOAPIC_EOI:
1655 vioapic_process_eoi(vm, vcpuid,
1656 vme->u.ioapic_eoi.vector);
1658 case VM_EXITCODE_RENDEZVOUS:
1659 vm_handle_rendezvous(vm, vcpuid);
1662 case VM_EXITCODE_HLT:
1663 intr_disabled = ((vme->u.hlt.rflags & PSL_I) == 0);
1664 error = vm_handle_hlt(vm, vcpuid, intr_disabled, &retu);
1666 case VM_EXITCODE_PAGING:
1667 error = vm_handle_paging(vm, vcpuid, &retu);
1669 case VM_EXITCODE_INST_EMUL:
1670 error = vm_handle_inst_emul(vm, vcpuid, &retu);
1672 case VM_EXITCODE_INOUT:
1673 case VM_EXITCODE_INOUT_STR:
1674 error = vm_handle_inout(vm, vcpuid, vme, &retu);
1676 case VM_EXITCODE_MONITOR:
1677 case VM_EXITCODE_MWAIT:
1678 vm_inject_ud(vm, vcpuid);
1681 retu = true; /* handled in userland */
1686 if (error == 0 && retu == false)
1689 VCPU_CTR2(vm, vcpuid, "retu %d/%d", error, vme->exitcode);
1691 /* copy the exit information */
1692 bcopy(vme, &vmrun->vm_exit, sizeof(struct vm_exit));
1697 vm_restart_instruction(void *arg, int vcpuid)
1701 enum vcpu_state state;
1706 if (vcpuid < 0 || vcpuid >= VM_MAXCPU)
1709 vcpu = &vm->vcpu[vcpuid];
1710 state = vcpu_get_state(vm, vcpuid, NULL);
1711 if (state == VCPU_RUNNING) {
1713 * When a vcpu is "running" the next instruction is determined
1714 * by adding 'rip' and 'inst_length' in the vcpu's 'exitinfo'.
1715 * Thus setting 'inst_length' to zero will cause the current
1716 * instruction to be restarted.
1718 vcpu->exitinfo.inst_length = 0;
1719 VCPU_CTR1(vm, vcpuid, "restarting instruction at %#lx by "
1720 "setting inst_length to zero", vcpu->exitinfo.rip);
1721 } else if (state == VCPU_FROZEN) {
1723 * When a vcpu is "frozen" it is outside the critical section
1724 * around VMRUN() and 'nextrip' points to the next instruction.
1725 * Thus instruction restart is achieved by setting 'nextrip'
1726 * to the vcpu's %rip.
1728 error = vm_get_register(vm, vcpuid, VM_REG_GUEST_RIP, &rip);
1729 KASSERT(!error, ("%s: error %d getting rip", __func__, error));
1730 VCPU_CTR2(vm, vcpuid, "restarting instruction by updating "
1731 "nextrip from %#lx to %#lx", vcpu->nextrip, rip);
1732 vcpu->nextrip = rip;
1734 panic("%s: invalid state %d", __func__, state);
1740 vm_exit_intinfo(struct vm *vm, int vcpuid, uint64_t info)
1745 if (vcpuid < 0 || vcpuid >= VM_MAXCPU)
1748 vcpu = &vm->vcpu[vcpuid];
1750 if (info & VM_INTINFO_VALID) {
1751 type = info & VM_INTINFO_TYPE;
1752 vector = info & 0xff;
1753 if (type == VM_INTINFO_NMI && vector != IDT_NMI)
1755 if (type == VM_INTINFO_HWEXCEPTION && vector >= 32)
1757 if (info & VM_INTINFO_RSVD)
1762 VCPU_CTR2(vm, vcpuid, "%s: info1(%#lx)", __func__, info);
1763 vcpu->exitintinfo = info;
1773 #define IDT_VE 20 /* Virtualization Exception (Intel specific) */
1775 static enum exc_class
1776 exception_class(uint64_t info)
1780 KASSERT(info & VM_INTINFO_VALID, ("intinfo must be valid: %#lx", info));
1781 type = info & VM_INTINFO_TYPE;
1782 vector = info & 0xff;
1784 /* Table 6-4, "Interrupt and Exception Classes", Intel SDM, Vol 3 */
1786 case VM_INTINFO_HWINTR:
1787 case VM_INTINFO_SWINTR:
1788 case VM_INTINFO_NMI:
1789 return (EXC_BENIGN);
1792 * Hardware exception.
1794 * SVM and VT-x use identical type values to represent NMI,
1795 * hardware interrupt and software interrupt.
1797 * SVM uses type '3' for all exceptions. VT-x uses type '3'
1798 * for exceptions except #BP and #OF. #BP and #OF use a type
1799 * value of '5' or '6'. Therefore we don't check for explicit
1800 * values of 'type' to classify 'intinfo' into a hardware
1809 return (EXC_PAGEFAULT);
1815 return (EXC_CONTRIBUTORY);
1817 return (EXC_BENIGN);
1822 nested_fault(struct vm *vm, int vcpuid, uint64_t info1, uint64_t info2,
1825 enum exc_class exc1, exc2;
1828 KASSERT(info1 & VM_INTINFO_VALID, ("info1 %#lx is not valid", info1));
1829 KASSERT(info2 & VM_INTINFO_VALID, ("info2 %#lx is not valid", info2));
1832 * If an exception occurs while attempting to call the double-fault
1833 * handler the processor enters shutdown mode (aka triple fault).
1835 type1 = info1 & VM_INTINFO_TYPE;
1836 vector1 = info1 & 0xff;
1837 if (type1 == VM_INTINFO_HWEXCEPTION && vector1 == IDT_DF) {
1838 VCPU_CTR2(vm, vcpuid, "triple fault: info1(%#lx), info2(%#lx)",
1840 vm_suspend(vm, VM_SUSPEND_TRIPLEFAULT);
1846 * Table 6-5 "Conditions for Generating a Double Fault", Intel SDM, Vol3
1848 exc1 = exception_class(info1);
1849 exc2 = exception_class(info2);
1850 if ((exc1 == EXC_CONTRIBUTORY && exc2 == EXC_CONTRIBUTORY) ||
1851 (exc1 == EXC_PAGEFAULT && exc2 != EXC_BENIGN)) {
1852 /* Convert nested fault into a double fault. */
1854 *retinfo |= VM_INTINFO_VALID | VM_INTINFO_HWEXCEPTION;
1855 *retinfo |= VM_INTINFO_DEL_ERRCODE;
1857 /* Handle exceptions serially */
1864 vcpu_exception_intinfo(struct vcpu *vcpu)
1868 if (vcpu->exception_pending) {
1869 info = vcpu->exc_vector & 0xff;
1870 info |= VM_INTINFO_VALID | VM_INTINFO_HWEXCEPTION;
1871 if (vcpu->exc_errcode_valid) {
1872 info |= VM_INTINFO_DEL_ERRCODE;
1873 info |= (uint64_t)vcpu->exc_errcode << 32;
1880 vm_entry_intinfo(struct vm *vm, int vcpuid, uint64_t *retinfo)
1883 uint64_t info1, info2;
1886 KASSERT(vcpuid >= 0 && vcpuid < VM_MAXCPU, ("invalid vcpu %d", vcpuid));
1888 vcpu = &vm->vcpu[vcpuid];
1890 info1 = vcpu->exitintinfo;
1891 vcpu->exitintinfo = 0;
1894 if (vcpu->exception_pending) {
1895 info2 = vcpu_exception_intinfo(vcpu);
1896 vcpu->exception_pending = 0;
1897 VCPU_CTR2(vm, vcpuid, "Exception %d delivered: %#lx",
1898 vcpu->exc_vector, info2);
1901 if ((info1 & VM_INTINFO_VALID) && (info2 & VM_INTINFO_VALID)) {
1902 valid = nested_fault(vm, vcpuid, info1, info2, retinfo);
1903 } else if (info1 & VM_INTINFO_VALID) {
1906 } else if (info2 & VM_INTINFO_VALID) {
1914 VCPU_CTR4(vm, vcpuid, "%s: info1(%#lx), info2(%#lx), "
1915 "retinfo(%#lx)", __func__, info1, info2, *retinfo);
1922 vm_get_intinfo(struct vm *vm, int vcpuid, uint64_t *info1, uint64_t *info2)
1926 if (vcpuid < 0 || vcpuid >= VM_MAXCPU)
1929 vcpu = &vm->vcpu[vcpuid];
1930 *info1 = vcpu->exitintinfo;
1931 *info2 = vcpu_exception_intinfo(vcpu);
1936 vm_inject_exception(struct vm *vm, int vcpuid, int vector, int errcode_valid,
1937 uint32_t errcode, int restart_instruction)
1943 if (vcpuid < 0 || vcpuid >= VM_MAXCPU)
1946 if (vector < 0 || vector >= 32)
1950 * A double fault exception should never be injected directly into
1951 * the guest. It is a derived exception that results from specific
1952 * combinations of nested faults.
1954 if (vector == IDT_DF)
1957 vcpu = &vm->vcpu[vcpuid];
1959 if (vcpu->exception_pending) {
1960 VCPU_CTR2(vm, vcpuid, "Unable to inject exception %d due to "
1961 "pending exception %d", vector, vcpu->exc_vector);
1965 if (errcode_valid) {
1967 * Exceptions don't deliver an error code in real mode.
1969 error = vm_get_register(vm, vcpuid, VM_REG_GUEST_CR0, ®val);
1970 KASSERT(!error, ("%s: error %d getting CR0", __func__, error));
1971 if (!(regval & CR0_PE))
1976 * From section 26.6.1 "Interruptibility State" in Intel SDM:
1978 * Event blocking by "STI" or "MOV SS" is cleared after guest executes
1979 * one instruction or incurs an exception.
1981 error = vm_set_register(vm, vcpuid, VM_REG_GUEST_INTR_SHADOW, 0);
1982 KASSERT(error == 0, ("%s: error %d clearing interrupt shadow",
1985 if (restart_instruction)
1986 vm_restart_instruction(vm, vcpuid);
1988 vcpu->exception_pending = 1;
1989 vcpu->exc_vector = vector;
1990 vcpu->exc_errcode = errcode;
1991 vcpu->exc_errcode_valid = errcode_valid;
1992 VCPU_CTR1(vm, vcpuid, "Exception %d pending", vector);
1997 vm_inject_fault(void *vmarg, int vcpuid, int vector, int errcode_valid,
2001 int error, restart_instruction;
2004 restart_instruction = 1;
2006 error = vm_inject_exception(vm, vcpuid, vector, errcode_valid,
2007 errcode, restart_instruction);
2008 KASSERT(error == 0, ("vm_inject_exception error %d", error));
2012 vm_inject_pf(void *vmarg, int vcpuid, int error_code, uint64_t cr2)
2018 VCPU_CTR2(vm, vcpuid, "Injecting page fault: error_code %#x, cr2 %#lx",
2021 error = vm_set_register(vm, vcpuid, VM_REG_GUEST_CR2, cr2);
2022 KASSERT(error == 0, ("vm_set_register(cr2) error %d", error));
2024 vm_inject_fault(vm, vcpuid, IDT_PF, 1, error_code);
2027 static VMM_STAT(VCPU_NMI_COUNT, "number of NMIs delivered to vcpu");
2030 vm_inject_nmi(struct vm *vm, int vcpuid)
2034 if (vcpuid < 0 || vcpuid >= VM_MAXCPU)
2037 vcpu = &vm->vcpu[vcpuid];
2039 vcpu->nmi_pending = 1;
2040 vcpu_notify_event(vm, vcpuid, false);
2045 vm_nmi_pending(struct vm *vm, int vcpuid)
2049 if (vcpuid < 0 || vcpuid >= VM_MAXCPU)
2050 panic("vm_nmi_pending: invalid vcpuid %d", vcpuid);
2052 vcpu = &vm->vcpu[vcpuid];
2054 return (vcpu->nmi_pending);
2058 vm_nmi_clear(struct vm *vm, int vcpuid)
2062 if (vcpuid < 0 || vcpuid >= VM_MAXCPU)
2063 panic("vm_nmi_pending: invalid vcpuid %d", vcpuid);
2065 vcpu = &vm->vcpu[vcpuid];
2067 if (vcpu->nmi_pending == 0)
2068 panic("vm_nmi_clear: inconsistent nmi_pending state");
2070 vcpu->nmi_pending = 0;
2071 vmm_stat_incr(vm, vcpuid, VCPU_NMI_COUNT, 1);
2074 static VMM_STAT(VCPU_EXTINT_COUNT, "number of ExtINTs delivered to vcpu");
2077 vm_inject_extint(struct vm *vm, int vcpuid)
2081 if (vcpuid < 0 || vcpuid >= VM_MAXCPU)
2084 vcpu = &vm->vcpu[vcpuid];
2086 vcpu->extint_pending = 1;
2087 vcpu_notify_event(vm, vcpuid, false);
2092 vm_extint_pending(struct vm *vm, int vcpuid)
2096 if (vcpuid < 0 || vcpuid >= VM_MAXCPU)
2097 panic("vm_extint_pending: invalid vcpuid %d", vcpuid);
2099 vcpu = &vm->vcpu[vcpuid];
2101 return (vcpu->extint_pending);
2105 vm_extint_clear(struct vm *vm, int vcpuid)
2109 if (vcpuid < 0 || vcpuid >= VM_MAXCPU)
2110 panic("vm_extint_pending: invalid vcpuid %d", vcpuid);
2112 vcpu = &vm->vcpu[vcpuid];
2114 if (vcpu->extint_pending == 0)
2115 panic("vm_extint_clear: inconsistent extint_pending state");
2117 vcpu->extint_pending = 0;
2118 vmm_stat_incr(vm, vcpuid, VCPU_EXTINT_COUNT, 1);
2122 vm_get_capability(struct vm *vm, int vcpu, int type, int *retval)
2124 if (vcpu < 0 || vcpu >= VM_MAXCPU)
2127 if (type < 0 || type >= VM_CAP_MAX)
2130 return (VMGETCAP(vm->cookie, vcpu, type, retval));
2134 vm_set_capability(struct vm *vm, int vcpu, int type, int val)
2136 if (vcpu < 0 || vcpu >= VM_MAXCPU)
2139 if (type < 0 || type >= VM_CAP_MAX)
2142 return (VMSETCAP(vm->cookie, vcpu, type, val));
2146 vm_lapic(struct vm *vm, int cpu)
2148 return (vm->vcpu[cpu].vlapic);
2152 vm_ioapic(struct vm *vm)
2155 return (vm->vioapic);
2159 vm_hpet(struct vm *vm)
2166 vmm_is_pptdev(int bus, int slot, int func)
2170 char *val, *cp, *cp2;
2174 * The length of an environment variable is limited to 128 bytes which
2175 * puts an upper limit on the number of passthru devices that may be
2176 * specified using a single environment variable.
2178 * Work around this by scanning multiple environment variable
2179 * names instead of a single one - yuck!
2181 const char *names[] = { "pptdevs", "pptdevs2", "pptdevs3", NULL };
2183 /* set pptdevs="1/2/3 4/5/6 7/8/9 10/11/12" */
2185 for (i = 0; names[i] != NULL && !found; i++) {
2186 cp = val = kern_getenv(names[i]);
2187 while (cp != NULL && *cp != '\0') {
2188 if ((cp2 = strchr(cp, ' ')) != NULL)
2191 n = sscanf(cp, "%d/%d/%d", &b, &s, &f);
2192 if (n == 3 && bus == b && slot == s && func == f) {
2208 vm_iommu_domain(struct vm *vm)
2215 vcpu_set_state(struct vm *vm, int vcpuid, enum vcpu_state newstate,
2221 if (vcpuid < 0 || vcpuid >= VM_MAXCPU)
2222 panic("vm_set_run_state: invalid vcpuid %d", vcpuid);
2224 vcpu = &vm->vcpu[vcpuid];
2227 error = vcpu_set_state_locked(vm, vcpuid, newstate, from_idle);
2234 vcpu_get_state(struct vm *vm, int vcpuid, int *hostcpu)
2237 enum vcpu_state state;
2239 if (vcpuid < 0 || vcpuid >= VM_MAXCPU)
2240 panic("vm_get_run_state: invalid vcpuid %d", vcpuid);
2242 vcpu = &vm->vcpu[vcpuid];
2245 state = vcpu->state;
2246 if (hostcpu != NULL)
2247 *hostcpu = vcpu->hostcpu;
2254 vm_activate_cpu(struct vm *vm, int vcpuid)
2257 if (vcpuid < 0 || vcpuid >= VM_MAXCPU)
2260 if (CPU_ISSET(vcpuid, &vm->active_cpus))
2263 VCPU_CTR0(vm, vcpuid, "activated");
2264 CPU_SET_ATOMIC(vcpuid, &vm->active_cpus);
2269 vm_active_cpus(struct vm *vm)
2272 return (vm->active_cpus);
2276 vm_suspended_cpus(struct vm *vm)
2279 return (vm->suspended_cpus);
2283 vcpu_stats(struct vm *vm, int vcpuid)
2286 return (vm->vcpu[vcpuid].stats);
2290 vm_get_x2apic_state(struct vm *vm, int vcpuid, enum x2apic_state *state)
2292 if (vcpuid < 0 || vcpuid >= VM_MAXCPU)
2295 *state = vm->vcpu[vcpuid].x2apic_state;
2301 vm_set_x2apic_state(struct vm *vm, int vcpuid, enum x2apic_state state)
2303 if (vcpuid < 0 || vcpuid >= VM_MAXCPU)
2306 if (state >= X2APIC_STATE_LAST)
2309 vm->vcpu[vcpuid].x2apic_state = state;
2311 vlapic_set_x2apic_state(vm, vcpuid, state);
2317 * This function is called to ensure that a vcpu "sees" a pending event
2318 * as soon as possible:
2319 * - If the vcpu thread is sleeping then it is woken up.
2320 * - If the vcpu is running on a different host_cpu then an IPI will be directed
2321 * to the host_cpu to cause the vcpu to trap into the hypervisor.
2324 vcpu_notify_event_locked(struct vcpu *vcpu, bool lapic_intr)
2328 hostcpu = vcpu->hostcpu;
2329 if (vcpu->state == VCPU_RUNNING) {
2330 KASSERT(hostcpu != NOCPU, ("vcpu running on invalid hostcpu"));
2331 if (hostcpu != curcpu) {
2333 vlapic_post_intr(vcpu->vlapic, hostcpu,
2336 ipi_cpu(hostcpu, vmm_ipinum);
2340 * If the 'vcpu' is running on 'curcpu' then it must
2341 * be sending a notification to itself (e.g. SELF_IPI).
2342 * The pending event will be picked up when the vcpu
2343 * transitions back to guest context.
2347 KASSERT(hostcpu == NOCPU, ("vcpu state %d not consistent "
2348 "with hostcpu %d", vcpu->state, hostcpu));
2349 if (vcpu->state == VCPU_SLEEPING)
2355 vcpu_notify_event(struct vm *vm, int vcpuid, bool lapic_intr)
2357 struct vcpu *vcpu = &vm->vcpu[vcpuid];
2360 vcpu_notify_event_locked(vcpu, lapic_intr);
2365 vm_get_vmspace(struct vm *vm)
2368 return (vm->vmspace);
2372 vm_apicid2vcpuid(struct vm *vm, int apicid)
2375 * XXX apic id is assumed to be numerically identical to vcpu id
2381 vm_smp_rendezvous(struct vm *vm, int vcpuid, cpuset_t dest,
2382 vm_rendezvous_func_t func, void *arg)
2387 * Enforce that this function is called without any locks
2389 WITNESS_WARN(WARN_PANIC, NULL, "vm_smp_rendezvous");
2390 KASSERT(vcpuid == -1 || (vcpuid >= 0 && vcpuid < VM_MAXCPU),
2391 ("vm_smp_rendezvous: invalid vcpuid %d", vcpuid));
2394 mtx_lock(&vm->rendezvous_mtx);
2395 if (vm->rendezvous_func != NULL) {
2397 * If a rendezvous is already in progress then we need to
2398 * call the rendezvous handler in case this 'vcpuid' is one
2399 * of the targets of the rendezvous.
2401 RENDEZVOUS_CTR0(vm, vcpuid, "Rendezvous already in progress");
2402 mtx_unlock(&vm->rendezvous_mtx);
2403 vm_handle_rendezvous(vm, vcpuid);
2406 KASSERT(vm->rendezvous_func == NULL, ("vm_smp_rendezvous: previous "
2407 "rendezvous is still in progress"));
2409 RENDEZVOUS_CTR0(vm, vcpuid, "Initiating rendezvous");
2410 vm->rendezvous_req_cpus = dest;
2411 CPU_ZERO(&vm->rendezvous_done_cpus);
2412 vm->rendezvous_arg = arg;
2413 vm_set_rendezvous_func(vm, func);
2414 mtx_unlock(&vm->rendezvous_mtx);
2417 * Wake up any sleeping vcpus and trigger a VM-exit in any running
2418 * vcpus so they handle the rendezvous as soon as possible.
2420 for (i = 0; i < VM_MAXCPU; i++) {
2421 if (CPU_ISSET(i, &dest))
2422 vcpu_notify_event(vm, i, false);
2425 vm_handle_rendezvous(vm, vcpuid);
2429 vm_atpic(struct vm *vm)
2431 return (vm->vatpic);
2435 vm_atpit(struct vm *vm)
2437 return (vm->vatpit);
2441 vm_pmtmr(struct vm *vm)
2444 return (vm->vpmtmr);
2448 vm_rtc(struct vm *vm)
2455 vm_segment_name(int seg)
2457 static enum vm_reg_name seg_names[] = {
2466 KASSERT(seg >= 0 && seg < nitems(seg_names),
2467 ("%s: invalid segment encoding %d", __func__, seg));
2468 return (seg_names[seg]);
2472 vm_copy_teardown(struct vm *vm, int vcpuid, struct vm_copyinfo *copyinfo,
2477 for (idx = 0; idx < num_copyinfo; idx++) {
2478 if (copyinfo[idx].cookie != NULL)
2479 vm_gpa_release(copyinfo[idx].cookie);
2481 bzero(copyinfo, num_copyinfo * sizeof(struct vm_copyinfo));
2485 vm_copy_setup(struct vm *vm, int vcpuid, struct vm_guest_paging *paging,
2486 uint64_t gla, size_t len, int prot, struct vm_copyinfo *copyinfo,
2487 int num_copyinfo, int *fault)
2489 int error, idx, nused;
2490 size_t n, off, remaining;
2494 bzero(copyinfo, sizeof(struct vm_copyinfo) * num_copyinfo);
2498 while (remaining > 0) {
2499 KASSERT(nused < num_copyinfo, ("insufficient vm_copyinfo"));
2500 error = vm_gla2gpa(vm, vcpuid, paging, gla, prot, &gpa, fault);
2501 if (error || *fault)
2503 off = gpa & PAGE_MASK;
2504 n = min(remaining, PAGE_SIZE - off);
2505 copyinfo[nused].gpa = gpa;
2506 copyinfo[nused].len = n;
2512 for (idx = 0; idx < nused; idx++) {
2513 hva = vm_gpa_hold(vm, vcpuid, copyinfo[idx].gpa,
2514 copyinfo[idx].len, prot, &cookie);
2517 copyinfo[idx].hva = hva;
2518 copyinfo[idx].cookie = cookie;
2522 vm_copy_teardown(vm, vcpuid, copyinfo, num_copyinfo);
2531 vm_copyin(struct vm *vm, int vcpuid, struct vm_copyinfo *copyinfo, void *kaddr,
2540 bcopy(copyinfo[idx].hva, dst, copyinfo[idx].len);
2541 len -= copyinfo[idx].len;
2542 dst += copyinfo[idx].len;
2548 vm_copyout(struct vm *vm, int vcpuid, const void *kaddr,
2549 struct vm_copyinfo *copyinfo, size_t len)
2557 bcopy(src, copyinfo[idx].hva, copyinfo[idx].len);
2558 len -= copyinfo[idx].len;
2559 src += copyinfo[idx].len;
2565 * Return the amount of in-use and wired memory for the VM. Since
2566 * these are global stats, only return the values with for vCPU 0
2568 VMM_STAT_DECLARE(VMM_MEM_RESIDENT);
2569 VMM_STAT_DECLARE(VMM_MEM_WIRED);
2572 vm_get_rescnt(struct vm *vm, int vcpu, struct vmm_stat_type *stat)
2576 vmm_stat_set(vm, vcpu, VMM_MEM_RESIDENT,
2577 PAGE_SIZE * vmspace_resident_count(vm->vmspace));
2582 vm_get_wiredcnt(struct vm *vm, int vcpu, struct vmm_stat_type *stat)
2586 vmm_stat_set(vm, vcpu, VMM_MEM_WIRED,
2587 PAGE_SIZE * pmap_wired_count(vmspace_pmap(vm->vmspace)));
2591 VMM_STAT_FUNC(VMM_MEM_RESIDENT, "Resident memory", vm_get_rescnt);
2592 VMM_STAT_FUNC(VMM_MEM_WIRED, "Wired memory", vm_get_wiredcnt);
projects / FreeBSD / FreeBSD.git / blob