Gitiles
Code Review Sign In
gerrit.omnirom.org / android_packages_modules_Virtualization / 4f4f5eb3e009260544b939648a6bf7a41e262bdc / . / pvmfw / src / main.rs
blob: efd3e7c051e21ff155418e27fd77e7fe7856d057 [file] [log] [blame]
Andrew Walbran68a8c162022-03-07 15:38:42 +0000[diff] [blame]1// Copyright 2022, The Android Open Source Project
2//
3// Licensed under the Apache License, Version 2.0 (the "License");
4// you may not use this file except in compliance with the License.
5// You may obtain a copy of the License at
6//
7// http://www.apache.org/licenses/LICENSE-2.0
8//
9// Unless required by applicable law or agreed to in writing, software
10// distributed under the License is distributed on an "AS IS" BASIS,
11// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12// See the License for the specific language governing permissions and
13// limitations under the License.
14
15//! pVM firmware.
16
17#![no_main]
18#![no_std]
Pierre-Clément Tosifc531152022-10-20 12:22:23 +0100[diff] [blame]19#![feature(default_alloc_error_handler)]
Pierre-Clément Tosi20b60962022-10-17 13:35:27 +0100[diff] [blame]20#![feature(ptr_const_cast)] // Stabilized in 1.65.0
Andrew Walbran68a8c162022-03-07 15:38:42 +0000[diff] [blame]21
Pierre-Clément Tosi4ef75222022-10-26 17:40:50 +0100[diff] [blame]22mod avb;
Pierre-Clément Tosi20b60962022-10-17 13:35:27 +0100[diff] [blame]23mod config;
Pierre-Clément Tosi4f4f5eb2022-12-08 14:31:42 +0000[diff] [blame^]24mod dice;
Pierre-Clément Tosi5bbfca52022-10-21 12:14:35 +0100[diff] [blame]25mod entry;
Andrew Walbrandfb73372022-04-21 10:52:27 +0000[diff] [blame]26mod exceptions;
Pierre-Clément Tosia0934c12022-11-25 20:54:11 +0000[diff] [blame]27mod fdt;
Pierre-Clément Tosifc531152022-10-20 12:22:23 +0100[diff] [blame]28mod heap;
Pierre-Clément Tosida4440a2022-08-22 18:06:32 +0100[diff] [blame]29mod helpers;
Andrew Walbranba47d1d2022-12-14 15:21:44 +0000[diff] [blame]30mod hvc;
Pierre-Clément Tosia0934c12022-11-25 20:54:11 +0000[diff] [blame]31mod memory;
Pierre-Clément Tosi072969b2022-10-19 17:32:24 +0100[diff] [blame]32mod mmio_guard;
Pierre-Clément Tosia8a4a202022-11-03 14:16:46 +0000[diff] [blame]33mod mmu;
Andrew Walbran19690632022-12-07 16:41:30 +0000[diff] [blame]34mod pci;
Pierre-Clément Tosida4440a2022-08-22 18:06:32 +0100[diff] [blame]35mod smccc;
Andrew Walbran68a8c162022-03-07 15:38:42 +0000[diff] [blame]36
Andrew Walbrand1d03182022-12-09 18:20:01 +0000[diff] [blame]37use crate::{
Pierre-Clément Tosi2d652982023-01-09 19:30:17 +0000[diff] [blame]38 avb::PUBLIC_KEY,
Pierre-Clément Tosi4f4f5eb2022-12-08 14:31:42 +0000[diff] [blame^]39 dice::derive_next_bcc,
Andrew Walbrand1d03182022-12-09 18:20:01 +0000[diff] [blame]40 entry::RebootReason,
Pierre-Clément Tosi4f4f5eb2022-12-08 14:31:42 +0000[diff] [blame^]41 helpers::GUEST_PAGE_SIZE,
Andrew Walbrand1d03182022-12-09 18:20:01 +0000[diff] [blame]42 memory::MemoryTracker,
Andrew Walbran730375d2022-12-21 14:04:34 +0000[diff] [blame]43 pci::{find_virtio_devices, map_mmio},
Andrew Walbrand1d03182022-12-09 18:20:01 +0000[diff] [blame]44};
Pierre-Clément Tosi4f4f5eb2022-12-08 14:31:42 +0000[diff] [blame^]45use ::dice::bcc;
Andrew Walbran730375d2022-12-21 14:04:34 +0000[diff] [blame]46use fdtpci::{PciError, PciInfo};
Andrew Walbran19690632022-12-07 16:41:30 +0000[diff] [blame]47use libfdt::Fdt;
Pierre-Clément Tosi8edf72e2022-12-06 16:02:57 +0000[diff] [blame]48use log::{debug, error, info, trace};
Pierre-Clément Tosi2d652982023-01-09 19:30:17 +0000[diff] [blame]49use pvmfw_avb::verify_payload;
Andrew Walbran68a8c162022-03-07 15:38:42 +0000[diff] [blame]50
Pierre-Clément Tosi4f4f5eb2022-12-08 14:31:42 +0000[diff] [blame^]51const NEXT_BCC_SIZE: usize = GUEST_PAGE_SIZE;
52
Alice Wang28cbcf12022-12-01 07:58:28 +0000[diff] [blame]53fn main(
Andrew Walbran19690632022-12-07 16:41:30 +0000[diff] [blame]54 fdt: &Fdt,
Alice Wang28cbcf12022-12-01 07:58:28 +0000[diff] [blame]55 signed_kernel: &[u8],
56 ramdisk: Option<&[u8]>,
Pierre-Clément Tosi8edf72e2022-12-06 16:02:57 +0000[diff] [blame]57 bcc: &bcc::Handover,
Andrew Walbran19690632022-12-07 16:41:30 +0000[diff] [blame]58 memory: &mut MemoryTracker,
Alice Wang0a688d22022-12-02 09:48:41 +0000[diff] [blame]59) -> Result<(), RebootReason> {
Pierre-Clément Tosi37105a62022-10-18 12:21:48 +0100[diff] [blame]60 info!("pVM firmware");
Pierre-Clément Tosia0934c12022-11-25 20:54:11 +0000[diff] [blame]61 debug!("FDT: {:?}", fdt as *const libfdt::Fdt);
62 debug!("Signed kernel: {:?} ({:#x} bytes)", signed_kernel.as_ptr(), signed_kernel.len());
Alice Wanga78279c2022-12-16 12:41:19 +0000[diff] [blame]63 debug!("AVB public key: addr={:?}, size={:#x} ({1})", PUBLIC_KEY.as_ptr(), PUBLIC_KEY.len());
Pierre-Clément Tosia0934c12022-11-25 20:54:11 +0000[diff] [blame]64 if let Some(rd) = ramdisk {
65 debug!("Ramdisk: {:?} ({:#x} bytes)", rd.as_ptr(), rd.len());
66 } else {
67 debug!("Ramdisk: None");
68 }
Pierre-Clément Tosi8edf72e2022-12-06 16:02:57 +0000[diff] [blame]69 trace!("BCC: {bcc:x?}");
Andrew Walbran19690632022-12-07 16:41:30 +0000[diff] [blame]70
71 // Set up PCI bus for VirtIO devices.
Andrew Walbrand1d03182022-12-09 18:20:01 +0000[diff] [blame]72 let pci_info = PciInfo::from_fdt(fdt).map_err(handle_pci_error)?;
73 debug!("PCI: {:#x?}", pci_info);
Andrew Walbran730375d2022-12-21 14:04:34 +0000[diff] [blame]74 map_mmio(&pci_info, memory)?;
Andrew Walbrand1d03182022-12-09 18:20:01 +0000[diff] [blame]75 // Safety: This is the only place where we call make_pci_root, and this main function is only
76 // called once.
77 let mut pci_root = unsafe { pci_info.make_pci_root() };
Andrew Walbran0a8dac72022-12-21 13:49:06 +0000[diff] [blame]78 find_virtio_devices(&mut pci_root).map_err(handle_pci_error)?;
Andrew Walbran19690632022-12-07 16:41:30 +0000[diff] [blame]79
Pierre-Clément Tosi2d652982023-01-09 19:30:17 +0000[diff] [blame]80 verify_payload(signed_kernel, PUBLIC_KEY).map_err(|e| {
81 error!("Failed to verify the payload: {e}");
82 RebootReason::PayloadVerificationError
83 })?;
84
Pierre-Clément Tosi4f4f5eb2022-12-08 14:31:42 +0000[diff] [blame^]85 let mut scratch_bcc = [0; NEXT_BCC_SIZE];
86 let next_bcc = &mut scratch_bcc; // TODO(b/256827715): Pass result BCC to next stage.
87 let debug_mode = false; // TODO(b/256148034): Derive the DICE mode from the received initrd.
88 const HASH_SIZE: usize = 64;
89 let mut hashes = [0; HASH_SIZE * 2]; // TODO(b/256148034): Extract AvbHashDescriptor digests.
90 hashes[..HASH_SIZE].copy_from_slice(&::dice::hash(signed_kernel).map_err(|_| {
91 error!("Failed to hash the kernel");
92 RebootReason::InternalError
93 })?);
94 // Note: Using signed_kernel currently makes the DICE code input depend on its VBMeta fields.
95 let code_hash = if let Some(rd) = ramdisk {
96 hashes[HASH_SIZE..].copy_from_slice(&::dice::hash(rd).map_err(|_| {
97 error!("Failed to hash the ramdisk");
98 RebootReason::InternalError
99 })?);
100 &hashes[..]
101 } else {
102 &hashes[..HASH_SIZE]
103 };
104 let next_bcc_size =
105 derive_next_bcc(bcc, next_bcc, code_hash, debug_mode, PUBLIC_KEY).map_err(|e| {
106 error!("Failed to derive next-stage DICE secrets: {e:?}");
107 RebootReason::SecretDerivationError
108 })?;
109 trace!("Next BCC: {:x?}", bcc::Handover::new(&next_bcc[..next_bcc_size]));
110
Alice Wang4379c832022-12-05 15:50:20 +0000[diff] [blame]111 info!("Starting payload...");
Alice Wang28cbcf12022-12-01 07:58:28 +0000[diff] [blame]112 Ok(())
Pierre-Clément Tosi263ffd52022-10-05 20:27:50 +0100[diff] [blame]113}
Andrew Walbrand1d03182022-12-09 18:20:01 +0000[diff] [blame]114
115/// Logs the given PCI error and returns the appropriate `RebootReason`.
116fn handle_pci_error(e: PciError) -> RebootReason {
117 error!("{}", e);
118 match e {
119 PciError::FdtErrorPci(_)
120 | PciError::FdtNoPci
121 | PciError::FdtErrorReg(_)
122 | PciError::FdtMissingReg
123 | PciError::FdtRegEmpty
124 | PciError::FdtRegMissingSize
125 | PciError::CamWrongSize(_)
126 | PciError::FdtErrorRanges(_)
127 | PciError::FdtMissingRanges
128 | PciError::RangeAddressMismatch { .. }
129 | PciError::NoSuitableRange => RebootReason::InvalidFdt,
Andrew Walbrand1d03182022-12-09 18:20:01 +0000[diff] [blame]130 }
131}