| /* |
| * Copyright 2018 The Hafnium Authors. |
| * |
| * Use of this source code is governed by a BSD-style |
| * license that can be found in the LICENSE file or at |
| * https://opensource.org/licenses/BSD-3-Clause. |
| */ |
| |
| #pragma once |
| |
| #include <stdatomic.h> |
| |
| #include "hf/arch/types.h" |
| |
| #include "hf/cpu.h" |
| #include "hf/list.h" |
| #include "hf/mm.h" |
| #include "hf/mpool.h" |
| |
| #include "vmapi/hf/ffa.h" |
| |
| #define MAX_SMCS 32 |
| #define LOG_BUFFER_SIZE 256 |
| |
| /** |
| * The state of an RX buffer. |
| * |
| * EMPTY is the initial state. The follow state transitions are possible: |
| * * EMPTY => RECEIVED: message sent to the VM. |
| * * RECEIVED => READ: secondary VM returns from FFA_MSG_WAIT or |
| * FFA_MSG_POLL, or primary VM returns from FFA_RUN with an FFA_MSG_SEND |
| * where the receiver is itself. |
| * * READ => EMPTY: VM called FFA_RX_RELEASE. |
| */ |
| enum mailbox_state { |
| /** There is no message in the mailbox. */ |
| MAILBOX_STATE_EMPTY, |
| |
| /** There is a message in the mailbox that is waiting for a reader. */ |
| MAILBOX_STATE_RECEIVED, |
| |
| /** There is a message in the mailbox that has been read. */ |
| MAILBOX_STATE_READ, |
| }; |
| |
| struct wait_entry { |
| /** The VM that is waiting for a mailbox to become writable. */ |
| struct vm *waiting_vm; |
| |
| /** |
| * Links used to add entry to a VM's waiter_list. This is protected by |
| * the notifying VM's lock. |
| */ |
| struct list_entry wait_links; |
| |
| /** |
| * Links used to add entry to a VM's ready_list. This is protected by |
| * the waiting VM's lock. |
| */ |
| struct list_entry ready_links; |
| }; |
| |
| struct mailbox { |
| enum mailbox_state state; |
| void *recv; |
| const void *send; |
| |
| /** The ID of the VM which sent the message currently in `recv`. */ |
| ffa_vm_id_t recv_sender; |
| |
| /** The size of the message currently in `recv`. */ |
| uint32_t recv_size; |
| |
| /** |
| * The FF-A function ID to use to deliver the message currently in |
| * `recv`. |
| */ |
| uint32_t recv_func; |
| |
| /** |
| * List of wait_entry structs representing VMs that want to be notified |
| * when the mailbox becomes writable. Once the mailbox does become |
| * writable, the entry is removed from this list and added to the |
| * waiting VM's ready_list. |
| */ |
| struct list_entry waiter_list; |
| |
| /** |
| * List of wait_entry structs representing VMs whose mailboxes became |
| * writable since the owner of the mailbox registers for notification. |
| */ |
| struct list_entry ready_list; |
| }; |
| |
| struct smc_whitelist { |
| uint32_t smcs[MAX_SMCS]; |
| uint16_t smc_count; |
| bool permissive; |
| }; |
| |
| struct vm { |
| ffa_vm_id_t id; |
| struct ffa_uuid uuid; |
| struct smc_whitelist smc_whitelist; |
| |
| /** See api.c for the partial ordering on locks. */ |
| struct spinlock lock; |
| ffa_vcpu_count_t vcpu_count; |
| struct vcpu vcpus[MAX_CPUS]; |
| struct mm_ptable ptable; |
| struct mailbox mailbox; |
| char log_buffer[LOG_BUFFER_SIZE]; |
| uint16_t log_buffer_length; |
| |
| /** |
| * Wait entries to be used when waiting on other VM mailboxes. See |
| * comments on `struct wait_entry` for the lock discipline of these. |
| */ |
| struct wait_entry wait_entries[MAX_VMS]; |
| |
| atomic_bool aborting; |
| |
| /** |
| * Booting parameters (FF-A SP partitions). |
| */ |
| bool initialized; |
| uint16_t boot_order; |
| bool supports_managed_exit; |
| struct vm *next_boot; |
| |
| /** |
| * Secondary entry point supplied by FFA_SECONDARY_EP_REGISTER used |
| * for cold and warm boot of SP execution contexts. |
| */ |
| ipaddr_t secondary_ep; |
| |
| /** Arch-specific VM information. */ |
| struct arch_vm arch; |
| }; |
| |
| /** Encapsulates a VM whose lock is held. */ |
| struct vm_locked { |
| struct vm *vm; |
| }; |
| |
| /** Container for two vm_locked structures */ |
| struct two_vm_locked { |
| struct vm_locked vm1; |
| struct vm_locked vm2; |
| }; |
| |
| struct vm *vm_init(ffa_vm_id_t id, ffa_vcpu_count_t vcpu_count, |
| struct mpool *ppool); |
| bool vm_init_next(ffa_vcpu_count_t vcpu_count, struct mpool *ppool, |
| struct vm **new_vm); |
| ffa_vm_count_t vm_get_count(void); |
| struct vm *vm_find(ffa_vm_id_t id); |
| struct vm *vm_find_index(uint16_t index); |
| struct vm_locked vm_lock(struct vm *vm); |
| struct two_vm_locked vm_lock_both(struct vm *vm1, struct vm *vm2); |
| void vm_unlock(struct vm_locked *locked); |
| struct vcpu *vm_get_vcpu(struct vm *vm, ffa_vcpu_index_t vcpu_index); |
| struct wait_entry *vm_get_wait_entry(struct vm *vm, ffa_vm_id_t for_vm); |
| ffa_vm_id_t vm_id_for_wait_entry(struct vm *vm, struct wait_entry *entry); |
| bool vm_id_is_current_world(ffa_vm_id_t vm_id); |
| |
| bool vm_identity_map(struct vm_locked vm_locked, paddr_t begin, paddr_t end, |
| uint32_t mode, struct mpool *ppool, ipaddr_t *ipa); |
| bool vm_identity_prepare(struct vm_locked vm_locked, paddr_t begin, paddr_t end, |
| uint32_t mode, struct mpool *ppool); |
| void vm_identity_commit(struct vm_locked vm_locked, paddr_t begin, paddr_t end, |
| uint32_t mode, struct mpool *ppool, ipaddr_t *ipa); |
| bool vm_unmap(struct vm_locked vm_locked, paddr_t begin, paddr_t end, |
| struct mpool *ppool); |
| bool vm_unmap_hypervisor(struct vm_locked vm_locked, struct mpool *ppool); |
| |
| void vm_update_boot(struct vm *vm); |
| struct vm *vm_get_first_boot(void); |