libkrun: support external kernels on aarch64

slp · slp · commit 07a2ebe4fb01 · 2025-02-18T20:08:38.000+01:00
Introduce initial support for external kernels by dealing with the
easier case: raw images on aarch64.

This commit adds a new function, "krun_set_kernel", which receives a
path to the external kernel.

Future commits will add support for more image formats and x86_64.

Signed-off-by: Sergio Lopez &lt;slp@redhat.com&gt;
diff --git a/include/libkrun.h b/include/libkrun.h
@@ -403,6 +403,19 @@ int32_t krun_set_exec(uint32_t ctx_id,
                       const char *const argv[],
                       const char *const envp[]);
 
+/**
+ * Sets the path to the kernel to be loaded in the microVM.
+ *
+ * Arguments:
+ *  "ctx_id"    - the configuration context ID.
+ *  "kernel_path" - the path to the kernel, relative to the host's filesystem.
+ *
+ * Returns:
+ *  Zero on success or a negative error number on failure.
+ */
+int32_t krun_set_kernel(uint32_t ctx_id,
+                        const char *kernel_path);
+
 /**
  * Sets environment variables to be configured in the context of the executable.
  *
diff --git a/src/libkrun/src/lib.rs b/src/libkrun/src/lib.rs
@@ -8,7 +8,9 @@ use std::env;
 use std::ffi::CStr;
 #[cfg(target_os = "linux")]
 use std::ffi::CString;
-#[cfg(target_os = "linux")]
+#[cfg(all(target_arch = "aarch64", not(feature = "efi")))]
+use std::fs::File;
+#[cfg(not(feature = "efi"))]
 use std::os::fd::AsRawFd;
 use std::os::fd::RawFd;
 use std::path::PathBuf;
@@ -55,10 +57,10 @@ const MAX_ARGS: usize = 4096;
 
 // krunfw library name for each context
 #[cfg(all(target_os = "linux", not(feature = "amd-sev")))]
-const KRUNKW_NAME: &str = "libkrunfw.so.4";
+const KRUNFW_NAME: &str = "libkrunfw.so.4";
 #[cfg(all(target_os = "linux", feature = "amd-sev"))]
 const KRUNFW_NAME: &str = "libkrunfw-sev.so.4";
-#[cfg(target_os = "macos")]
+#[cfg(all(target_os = "macos", not(feature = "efi")))]
 const KRUNFW_NAME: &str = "libkrunfw.4.dylib";
 
 // Path to the init binary to be executed inside the VM.
@@ -106,6 +108,8 @@ struct ContextConfig {
     gpu_shm_size: Option<usize>,
     enable_snd: bool,
     console_output: Option<PathBuf>,
+    #[cfg(not(feature = "efi"))]
+    external_kernel: bool,
 }
 
 impl ContextConfig {
@@ -1029,6 +1033,77 @@ fn create_virtio_net(ctx_cfg: &mut ContextConfig, backend: VirtioNetBackend) {
         .expect("Failed to create network interface");
 }
 
+#[cfg(any(target_arch = "x86_64", feature = "tee", feature = "efi"))]
+#[allow(clippy::format_collect)]
+#[allow(clippy::missing_safety_doc)]
+#[no_mangle]
+pub unsafe extern "C" fn krun_set_kernel(_ctx_id: u32, _c_kernel_path: *const c_char) -> i32 {
+    -libc::EOPNOTSUPP
+}
+
+#[cfg(all(target_arch = "aarch64", not(feature = "efi")))]
+#[allow(clippy::format_collect)]
+#[allow(clippy::missing_safety_doc)]
+#[no_mangle]
+pub unsafe extern "C" fn krun_set_kernel(ctx_id: u32, c_kernel_path: *const c_char) -> i32 {
+    let kernel_path = match CStr::from_ptr(c_kernel_path).to_str() {
+        Ok(path) => path,
+        Err(e) => {
+            error!("Error parsing kernel_path: {:?}", e);
+            return -libc::EINVAL;
+        }
+    };
+
+    let file = match File::options().read(true).write(false).open(kernel_path) {
+        Ok(file) => file,
+        Err(err) => {
+            error!("Error opening external kernel: {err}");
+            return -libc::EINVAL;
+        }
+    };
+
+    let kernel_size = file.metadata().unwrap().len();
+
+    let kernel_host_addr = unsafe {
+        libc::mmap(
+            std::ptr::null_mut(),
+            kernel_size as usize,
+            libc::PROT_READ,
+            libc::MAP_SHARED,
+            file.as_raw_fd(),
+            0_i64,
+        )
+    };
+    if kernel_host_addr == libc::MAP_FAILED {
+        error!("Can't load kernel into process map");
+        return -libc::EINVAL;
+    }
+
+    let kernel_bundle = KernelBundle {
+        host_addr: kernel_host_addr as u64,
+        guest_addr: 0x8000_0000,
+        entry_addr: 0x8000_0000,
+        size: kernel_size as usize,
+    };
+
+    match CTX_MAP.lock().unwrap().entry(ctx_id) {
+        Entry::Occupied(mut ctx_cfg) => {
+            let ctx_cfg = ctx_cfg.get_mut();
+            if ctx_cfg.external_kernel {
+                error!("An extenal kernel was already configured");
+                return -libc::EINVAL;
+            } else {
+                ctx_cfg.external_kernel = true;
+            }
+            ctx_cfg.vmr.set_kernel_bundle(kernel_bundle).unwrap()
+        }
+        Entry::Vacant(_) => return -libc::ENOENT,
+    }
+
+    KRUN_SUCCESS
+}
+
+#[cfg(not(feature = "efi"))]
 unsafe fn load_krunfw_payload(
     krunfw: &libloading::Library,
     vmr: &mut VmResources,
@@ -1072,15 +1147,15 @@ unsafe fn load_krunfw_payload(
             host_addr: qboot_host_addr as u64,
             size: qboot_size,
         };
-        ctx_cfg.vmr.set_qboot_bundle(qboot_bundle).unwrap();
+        vmr.set_qboot_bundle(qboot_bundle).unwrap();
 
         let mut initrd_size: usize = 0;
         let initrd_host_addr = unsafe { krunfw_get_initrd(&mut initrd_size as *mut usize) };
         let initrd_bundle = InitrdBundle {
             host_addr: initrd_host_addr as u64,
             size: initrd_size,
         };
-        ctx_cfg.vmr.set_initrd_bundle(initrd_bundle).unwrap();
+        vmr.set_initrd_bundle(initrd_bundle).unwrap();
     }
 
     Ok(())
@@ -1110,18 +1185,24 @@ pub extern "C" fn krun_start_enter(ctx_id: u32) -> i32 {
         None => return -libc::ENOENT,
     };
 
-    // The reference to the dynamically loaded library must be kept alive.
-    let krunfw = match unsafe { libloading::Library::new(KRUNKW_NAME) } {
-        Ok(lib) => lib,
-        Err(err) => {
-            eprintln!("Can't load libkrunfw: {err}");
+    #[cfg(not(feature = "efi"))]
+    let _krunfw = if !ctx_cfg.external_kernel {
+        // The reference to the dynamically loaded library must be kept alive.
+        let krunfw = match unsafe { libloading::Library::new(KRUNFW_NAME) } {
+            Ok(lib) => lib,
+            Err(err) => {
+                eprintln!("Can't load libkrunfw: {err}");
+                return -libc::ENOENT;
+            }
+        };
+        if let Err(err) = unsafe { load_krunfw_payload(&krunfw, &mut ctx_cfg.vmr) } {
+            eprintln!("Can't load libkrunfw symbols: {err}");
             return -libc::ENOENT;
         }
+        Some(krunfw)
+    } else {
+        None
     };
-    if let Err(err) = unsafe { load_krunfw_payload(&krunfw, &mut ctx_cfg.vmr) } {
-        eprintln!("Can't load libkrunfw symbols: {err}");
-        return -libc::ENOENT;
-    }
 
     #[cfg(feature = "blk")]
     for block_cfg in ctx_cfg.get_block_cfg() {
diff --git a/src/vmm/src/resources.rs b/src/vmm/src/resources.rs
@@ -199,10 +199,6 @@ impl VmResources {
             return Err(KernelBundleError::InvalidGuestAddress);
         }
 
-        if kernel_bundle.size & (page_size - 1) != 0 {
-            return Err(KernelBundleError::InvalidSize);
-        }
-
         self.kernel_bundle = Some(kernel_bundle);
         Ok(())
     }

Original file line number	Diff line number	Diff line change
`@@ -199,10 +199,6 @@ impl VmResources {`
`199`	`199`	`return Err(KernelBundleError::InvalidGuestAddress);`
`200`	`200`	`}`
`201`	`201`
`202`		`- if kernel_bundle.size & (page_size - 1) != 0 {`
`203`		`- return Err(KernelBundleError::InvalidSize);`
`204`		`- }`
`205`		`-`
`206`	`202`	`self.kernel_bundle = Some(kernel_bundle);`
`207`	`203`	`Ok(())`
`208`	`204`	`}`