openhcl_boot/rt.rs
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55
// Copyright (c) Microsoft Corporation.
// Licensed under the MIT License.
//! Architecture-independent runtime support.
// This must match the hardcoded value set at the entry point in the asm.
pub(crate) const STACK_SIZE: usize = 32768;
pub(crate) const STACK_COOKIE: u32 = 0x30405060;
#[repr(C, align(16))]
pub struct Stack([u8; STACK_SIZE]);
pub static mut STACK: Stack = Stack([0; STACK_SIZE]);
/// Validate the stack cookie is still present. Panics if overwritten.
pub fn verify_stack_cookie() {
// SAFETY: It's possible we've overrun the stack at this point if any
// previous stack frame was too large. But, we know the pointer is valid and
// never came from a rust reference, and we're about to crash if the value
// is bogus.
unsafe {
let stack_ptr = core::ptr::addr_of!(STACK).cast::<u32>();
if core::ptr::read(stack_ptr) != STACK_COOKIE {
panic!("Stack was overrun - check for large variables");
}
}
}
/// The entry point.
///
/// X64: The relative offset for shim parameters are passed in the rsi register.
/// rax contains the base address of where the shim was loaded at.
///
/// ARM64: The relative offset for shim parameters are passed in the x1 register.
/// x2 contains the base address of where the shim was loaded at.
///
/// # Safety
///
/// The caller must ensure that the passed shim_params_offset is the correct offset
/// from the shim base to the shim parameters.
#[cfg_attr(not(minimal_rt), expect(dead_code))]
pub unsafe extern "C" fn start(_: usize, shim_params_offset: isize) -> ! {
crate::shim_main(shim_params_offset)
}
#[cfg(minimal_rt)]
mod instead_of_builtins {
#[panic_handler]
fn panic(panic: &core::panic::PanicInfo<'_>) -> ! {
crate::boot_logger::log!("{panic}");
// The stack is identity mapped.
minimal_rt::enlightened_panic::report(panic, |va| Some(va as usize));
minimal_rt::arch::fault();
}
}