Page MenuHomeFreeBSD

xen/efi: introduce a PV interface for EFI run time services for dom0
ClosedPublic

Authored by royger on Feb 12 2021, 4:03 PM.
Tags
None
Referenced Files
F108464950: D28621.diff
Sat, Jan 25, 3:23 AM
Unknown Object (File)
Sat, Jan 18, 4:41 AM
Unknown Object (File)
Dec 13 2024, 2:16 PM
Unknown Object (File)
Dec 6 2024, 11:41 PM
Unknown Object (File)
Nov 29 2024, 6:21 PM
Unknown Object (File)
Nov 26 2024, 7:53 AM
Unknown Object (File)
Nov 22 2024, 6:55 PM
Unknown Object (File)
Sep 30 2024, 2:31 AM
Subscribers

Details

Summary

FreeBSD when running as a dom0 under Xen is not supposed to access the
run time services directly, and instead should proxy the calls through
Xen using an hypercall interface that exposes access to selected run
time services.

Implement the efirt interface on top of the Xen provided hypercalls.

Sponsored by: Citrix Systems R&D

Diff Detail

Repository
rG FreeBSD src repository
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

kevans added inline comments.
sys/dev/xen/efi/pvefi.c
237

If pvefi isn't being used (disabled or not dom0), this would seem to break stock efirt upon load/unload as we set efi_ops to the null-filled prev.

Looks reasonable, modulo kevan's comments

Thanks for the comment!

sys/dev/xen/efi/pvefi.c
237

I originally had the check above returning ENXIO, but changed it as I didn't know whether that would be reported as an error. I guess returning ENXIO from load will prevent unload attempts?

sys/dev/xen/efi/pvefi.c
237

Annoyingly enough, if you return ENXIO it will immediately be issued a MOD_UNLOAD anyways -- it's kind of a no-win situation. :-(

kib added inline comments.
sys/dev/xen/efi/pvefi.c
237

Can you please explain more how it breaks bare-metal efirt?

That said, I am not sure the prev business is useful at all.

sys/dev/xen/efi/pvefi.c
237

Noting how it's implemented from the other review, we end up with an empty ops vector if prev is still .bss (early return in MOD_LOAD path)

sys/dev/xen/efi/pvefi.c
237

It's likely not of much usage restoring active_efi_ops to prev on module unload, since you either use one of the two interfaces, but not both. I'm just doing it to prevent ending up with active_efi_ops == NULL which will trigger a page-fault.

  • Fix module unload.
  • Make module depend on efirt.
kib added inline comments.
sys/dev/xen/efi/pvefi.c
237

But if prev is NULL, it is still the situation with dandling pointers.
I would just drop the prev stuff, but I do not insist.

This revision is now accepted and ready to land.Feb 15 2021, 9:56 AM
sys/dev/xen/efi/pvefi.c
237

I just added a prev != NULL check in this last version before attempting to set active_efi_ops = prev in the unload case. I'm not sure what's the best way to deal with this, should we have a nop_efi_ops that has all pointers set to NULL in order to set it here on module unload if the module was in-use?

sys/dev/xen/efi/pvefi.c
237

nop_efi_ops is perhaps fine if the native vector is also in module with the same prev handling. But it is probably too much for useless scenarios.

sys/dev/xen/efi/pvefi.c
237

efirt module is also where active_efi_ops is defined, so if the module is unloaded so is the symbol itself, hence not sure it makes much sense to set it to nop_efi_ops anyway.