{lib,arch,plat}: Redo syscall ctx's and swapgs logic
#1346
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
github-actions
bot
added
arch/arm
arch/arm64
arch/x86_64
area/arch
mogasergiu
added a commit
to mogasergiu/unikraft
that referenced
this pull request
Mar 4, 2024
mogasergiu
added a commit
to mogasergiu/unikraft
that referenced
this pull request
Mar 5, 2024
mogasergiu
added a commit
to mogasergiu/unikraft
that referenced
this pull request
Mar 5, 2024
mogasergiu
force-pushed
the
smoga/#1346/redo_syscall_ctxs
branch
from
c9dddeb
to
3d9cd61
Compare
mogasergiu
force-pushed
the
smoga/#1346/redo_syscall_ctxs
branch
from
45c9a27
to
4da8c3e
Compare
mogasergiu
force-pushed
the
smoga/#1346/redo_syscall_ctxs
branch
2 times, most recently
from
22cf957
to
802e89f
Compare
skuenzer
reviewed
May 25, 2024
mogasergiu
force-pushed
the
smoga/#1346/redo_syscall_ctxs
branch
3 times, most recently
from
a107b9e
to
e27551c
Compare
mogasergiu
force-pushed
the
smoga/#1346/redo_syscall_ctxs
branch
from
e27551c
to
8c92c37
Compare
skuenzer
approved these changes
May 26, 2024
There was a problem hiding this comment.
Thanks a lot for your work. As discussed, we will later restructure libcontext and your additions to it with plat rearch and the lcpu library in particular.
Reviewed-by: Simon Kuenzer simon.kuenzer@unikraft.io
@michpappas I am handing over to you.
4 tasks
To make git bisecting and rebasing significantly easier and avoid builds breaking across commits, this whole set of changes shall be introduced under one single all encompassing commit. Following the introduction of the concept of auxiliary stack pointers, swapgs, `struct uk_syscall_ctx` and `struct ukarch_sysregs`, a number of things have emerged: - the aforemenetioned structs are very generic so they should be moved under libcontext (arch/) - swapgs introduces a significant inconsistency between ARM64 and x86_64 as we never know during an exception the state of MSR_GS_BASE/MSR_KERNEL_GS_BASE - auxiliary stack pointers have increased flexibility as every thread and LCPU can have one and have private data stored in there than may be accessed anytime, dependency free Thus, this commit does the following: 1. Move/rename aforementioned structured to libcontext and document them - lib/syscall_shim/arch/x86_64/sysregs.c -> arch/x86/sysctx.c - lib/syscall_shim/arch/x86_64include/arch/sysregs.h -> arch/x86/x86_64include/uk/asm/sysctx.h - s/struct ukarch_sysregs/struct ukarch_sysctx/ (and all related defs) - struct uk_syscall_ctx from lib/syscall_shim/include/uk/syscall.h to include/uk/arch/ctx.h as struct ukarch_execenv - s/struct uk_syscall_ctx/struct ukarch_execenv/ (and all related defs) - actually comment these functions - re-adjust all places that make use of such definitions 2. Get rid of the `swapgs`, architecture specific holdback by exploiting the flexibility of auxiliary stacks through the introduction of a new always existing contrl block at their top end: - introduce `struct ukarch_auxspcb` under libcontext - add Unikraft system context as field to it so that we always have and know Unikraft TLS (and LCPU in case ox x86_64) in a dependency free and assumption free manner - add a current frame pointer field: since the auxspscb will be part of the auxiliary stack, we need to know the safe place where we can start using the auxiliary stack area as a stack (this is also helpful in cases where we need to nest on the auxstack) -for the aforementione fields/structs, init/getter/setter functions have been added and documented - now the `swapgs` pair will only be done very early during system call entry (and only there, not on clone child exit anymore either) just enough so that we, first things first, switch to auxstack and push auxsp so that on entry to C handler we will know that we must do a call to `ukarch_sysctx_load` on the Unikraft sysctx we can get from the pushed auxsp (another benefit of this is we get rid of MSR read/writes) IMPORTANT NOTE: Additionally, some minor fixes have been made: - Do not switch stack pointer to execenv pointer (previously known as uk_syscall_ctx) during execenv loading as this implies that functions such as `ukarch_ectx_load` or `ukarch_sysctx_load` would reuse the space after the execenv as stack. While this is safe if the execenv was passed through the stack, is definetely not safe if it was passed through something like a heap buffer that may be bounded to the execenv size by the caller. Instead, use one of the callee-saved registers - Set IRQ flag of the pushed flags of the caller during system call early assembly entry (both native and binary for both architectures) so that we don't have to explicitly set it during something like clone child creation. This also reflects the reality better as no syscall caller will have IRQ's disabled. - Do not use spsr_el1, esr_el1 and elr_el1 during native system call assembly prologue (UK_SYSCALL_EXECENV_PROLOGUE_DEFINE) on Arm, as they are invalid because there is no actual SVC/exception happening. Instead, try to emulate it by manually building sane values for them on the created execenv to replicate an actual SVC while benefitting from not dealing with the performance impacting flow of actually taking a SVC. Signed-off-by: Sergiu Moga <sergiu@unikraft.io>
Some macros of `essentials.h` can be used in assembly sources as well, while others not so much. Allow one to safely include and use the former by adding assembly guards in the header for the macros in question Signed-off-by: Sergiu Moga <sergiu@unikraft.io>
Move the Linux ABI defined syscall architecture specific calling convention definitions to `uk/bits/`. Signed-off-by: Sergiu Moga <sergiu@unikraft.io>
Include `legacy_syscall.h` header as if it is part of the inclusion search path, which it is indeed. Signed-off-by: Sergiu Moga <sergiu@unikraft.io>
mogasergiu
force-pushed
the
smoga/#1346/redo_syscall_ctxs
branch
from
8c92c37
to
0e82448
Compare
|
With all @razvand's tests passing, Approved-by: Michalis Pappas michalis@unikraft.io |
unikraft-bot
pushed a commit
that referenced
this pull request
May 31, 2024
To make git bisecting and rebasing significantly easier and avoid builds breaking across commits, this whole set of changes shall be introduced under one single all encompassing commit. Following the introduction of the concept of auxiliary stack pointers, swapgs, `struct uk_syscall_ctx` and `struct ukarch_sysregs`, a number of things have emerged: - the aforemenetioned structs are very generic so they should be moved under libcontext (arch/) - swapgs introduces a significant inconsistency between ARM64 and x86_64 as we never know during an exception the state of MSR_GS_BASE/MSR_KERNEL_GS_BASE - auxiliary stack pointers have increased flexibility as every thread and LCPU can have one and have private data stored in there than may be accessed anytime, dependency free Thus, this commit does the following: 1. Move/rename aforementioned structured to libcontext and document them - lib/syscall_shim/arch/x86_64/sysregs.c -> arch/x86/sysctx.c - lib/syscall_shim/arch/x86_64include/arch/sysregs.h -> arch/x86/x86_64include/uk/asm/sysctx.h - s/struct ukarch_sysregs/struct ukarch_sysctx/ (and all related defs) - struct uk_syscall_ctx from lib/syscall_shim/include/uk/syscall.h to include/uk/arch/ctx.h as struct ukarch_execenv - s/struct uk_syscall_ctx/struct ukarch_execenv/ (and all related defs) - actually comment these functions - re-adjust all places that make use of such definitions 2. Get rid of the `swapgs`, architecture specific holdback by exploiting the flexibility of auxiliary stacks through the introduction of a new always existing contrl block at their top end: - introduce `struct ukarch_auxspcb` under libcontext - add Unikraft system context as field to it so that we always have and know Unikraft TLS (and LCPU in case ox x86_64) in a dependency free and assumption free manner - add a current frame pointer field: since the auxspscb will be part of the auxiliary stack, we need to know the safe place where we can start using the auxiliary stack area as a stack (this is also helpful in cases where we need to nest on the auxstack) -for the aforementione fields/structs, init/getter/setter functions have been added and documented - now the `swapgs` pair will only be done very early during system call entry (and only there, not on clone child exit anymore either) just enough so that we, first things first, switch to auxstack and push auxsp so that on entry to C handler we will know that we must do a call to `ukarch_sysctx_load` on the Unikraft sysctx we can get from the pushed auxsp (another benefit of this is we get rid of MSR read/writes) IMPORTANT NOTE: Additionally, some minor fixes have been made: - Do not switch stack pointer to execenv pointer (previously known as uk_syscall_ctx) during execenv loading as this implies that functions such as `ukarch_ectx_load` or `ukarch_sysctx_load` would reuse the space after the execenv as stack. While this is safe if the execenv was passed through the stack, is definetely not safe if it was passed through something like a heap buffer that may be bounded to the execenv size by the caller. Instead, use one of the callee-saved registers - Set IRQ flag of the pushed flags of the caller during system call early assembly entry (both native and binary for both architectures) so that we don't have to explicitly set it during something like clone child creation. This also reflects the reality better as no syscall caller will have IRQ's disabled. - Do not use spsr_el1, esr_el1 and elr_el1 during native system call assembly prologue (UK_SYSCALL_EXECENV_PROLOGUE_DEFINE) on Arm, as they are invalid because there is no actual SVC/exception happening. Instead, try to emulate it by manually building sane values for them on the created execenv to replicate an actual SVC while benefitting from not dealing with the performance impacting flow of actually taking a SVC. Signed-off-by: Sergiu Moga <sergiu@unikraft.io> Approved-by: Michalis Pappas <michalis@unikraft.io> Reviewed-by: Simon Kuenzer <simon.kuenzer@unikraft.io> GitHub-Closes: #1346
unikraft-bot
pushed a commit
that referenced
this pull request
May 31, 2024
Some macros of `essentials.h` can be used in assembly sources as well, while others not so much. Allow one to safely include and use the former by adding assembly guards in the header for the macros in question Signed-off-by: Sergiu Moga <sergiu@unikraft.io> Approved-by: Michalis Pappas <michalis@unikraft.io> Reviewed-by: Simon Kuenzer <simon.kuenzer@unikraft.io> GitHub-Closes: #1346
unikraft-bot
pushed a commit
that referenced
this pull request
May 31, 2024
Move the Linux ABI defined syscall architecture specific calling convention definitions to `uk/bits/`. Signed-off-by: Sergiu Moga <sergiu@unikraft.io> Approved-by: Michalis Pappas <michalis@unikraft.io> Reviewed-by: Simon Kuenzer <simon.kuenzer@unikraft.io> GitHub-Closes: #1346
unikraft-bot
pushed a commit
that referenced
this pull request
May 31, 2024
Include `legacy_syscall.h` header as if it is part of the inclusion search path, which it is indeed. Signed-off-by: Sergiu Moga <sergiu@unikraft.io> Approved-by: Michalis Pappas <michalis@unikraft.io> Reviewed-by: Simon Kuenzer <simon.kuenzer@unikraft.io> GitHub-Closes: #1346
unikraft-bot
added
ci/merged
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Prerequisite checklist
checkpatch.ukon your commit series before opening this PR;Base target
x86_64or N/A]kvm,xenor N/A]app-python3or N/A]Additional configuration
Description of changes
To make git bisecting and rebasing significantly easier and avoid
builds breaking across commits, this whole set of changes shall be
introduced under one single all encompassing commit.
Following the introduction of the concept of auxiliary stack pointers,
swapgs,
struct uk_syscall_ctxandstruct ukarch_sysregs, a numberof things have emerged:
under libcontext (arch/)
as we never know during an exception the state of
MSR_GS_BASE/MSR_KERNEL_GS_BASE
and LCPU can have one and have private data stored in there than may
be accessed anytime, dependency free
Thus, this commit does the following:
include/uk/arch/ctx.h as struct ukarch_execenv
swapgs, architecture specific holdback by exploitingthe flexibility of auxiliary stacks through the introduction of a new
always existing contrl block at their top end:
struct ukarch_auxspcbunder libcontextknow Unikraft TLS (and LCPU in case ox x86_64) in a dependency free
and assumption free manner
the auxiliary stack, we need to know the safe place where we can start
using the auxiliary stack area as a stack (this is also helpful in cases
where we need to nest on the auxstack)
-for the aforementione fields/structs, init/getter/setter functions have
been added and documented
swapgspair will only be done very early during system callentry (and only there, not on clone child exit anymore either) just
enough so that we, first things first, switch to auxstack and push auxsp
so that on entry to C handler we will know that we must do a call to
ukarch_sysctx_loadon the Unikraft sysctx we can get from the pushedauxsp (another benefit of this is we get rid of MSR read/writes)