1#![expect(missing_docs)]
8#![forbid(unsafe_code)]
9
10mod cli_args;
11mod crash_dump;
12mod kvp;
13mod meshworker;
14mod pidfile;
15mod repl;
16mod serial_io;
17mod storage_builder;
18mod tracing_init;
19mod ttrpc;
20mod vm_controller;
21
22pub use cli_args::Options;
25use console_relay::ConsoleLaunchOptions;
26
27use crate::cli_args::SecureBootTemplateCli;
28use anyhow::Context;
29use anyhow::bail;
30use chipset_resources::battery::HostBatteryUpdate;
31use cli_args::DiskCliKind;
32use cli_args::EfiDiagnosticsLogLevelCli;
33use cli_args::EndpointConfigCli;
34use cli_args::GuestPowerAction;
35use cli_args::NicConfigCli;
36use cli_args::ProvisionVmgs;
37use cli_args::SerialConfigCli;
38use cli_args::UefiConsoleModeCli;
39use cli_args::VirtioBusCli;
40use cli_args::VmgsCli;
41use crash_dump::spawn_dump_handler;
42use cxl_spec::test::CxlTestDeviceHandle;
43use disk_backend_resources::DelayDiskHandle;
44use disk_backend_resources::DiskLayerDescription;
45use disk_backend_resources::layer::DiskLayerHandle;
46use disk_backend_resources::layer::RamDiskLayerHandle;
47use disk_backend_resources::layer::SqliteAutoCacheDiskLayerHandle;
48use disk_backend_resources::layer::SqliteDiskLayerHandle;
49use floppy_resources::FloppyDiskConfig;
50use framebuffer::FRAMEBUFFER_SIZE;
51use framebuffer::FramebufferAccess;
52use futures::AsyncReadExt;
53use futures::AsyncWrite;
54use futures::StreamExt;
55use futures::executor::block_on;
56use futures::io::AllowStdIo;
57use gdma_resources::GdmaDeviceHandle;
58use gdma_resources::VportDefinition;
59use guid::Guid;
60use input_core::MultiplexedInputHandle;
61use inspect::InspectMut;
62use io::Read;
63use mesh::CancelContext;
64use mesh::CellUpdater;
65use mesh::rpc::RpcSend;
66use meshworker::VmmMesh;
67use net_backend_resources::mac_address::MacAddress;
68use nvme_resources::NvmeControllerRequest;
69use openvmm_defs::config::Config;
70use openvmm_defs::config::DEFAULT_PCAT_BOOT_ORDER;
71use openvmm_defs::config::DeviceVtl;
72use openvmm_defs::config::EfiDiagnosticsLogLevelType;
73use openvmm_defs::config::HypervisorConfig;
74use openvmm_defs::config::LateMapVtl0MemoryPolicy;
75use openvmm_defs::config::LoadMode;
76use openvmm_defs::config::MemoryConfig;
77use openvmm_defs::config::NumaDistance;
78use openvmm_defs::config::NumaNode;
79use openvmm_defs::config::NumaTopology;
80use openvmm_defs::config::PcieDeviceConfig;
81use openvmm_defs::config::PcieMmioRangeConfig;
82use openvmm_defs::config::PcieRootComplexConfig;
83use openvmm_defs::config::PcieRootPortConfig;
84use openvmm_defs::config::PcieSwitchConfig;
85use openvmm_defs::config::ProcessorTopologyConfig;
86use openvmm_defs::config::RootComplexCxlConfig;
87use openvmm_defs::config::SerialInformation;
88use openvmm_defs::config::VirtioBus;
89use openvmm_defs::config::VmbusConfig;
90use openvmm_defs::config::VpAssignment;
91use openvmm_defs::config::VpciDeviceConfig;
92use openvmm_defs::config::Vtl2Config;
93use openvmm_defs::rpc::VmRpc;
94use openvmm_defs::worker::VM_WORKER;
95use openvmm_defs::worker::VmWorkerParameters;
96use openvmm_helpers::disk::OpenDiskOptions;
97use openvmm_helpers::disk::create_disk_type;
98use openvmm_helpers::disk::open_disk_type;
99use pal_async::DefaultDriver;
100use pal_async::DefaultPool;
101use pal_async::socket::PolledSocket;
102use pal_async::task::Spawn;
103use pal_async::task::Task;
104use serial_16550_resources::ComPort;
105use serial_core::resources::DisconnectedSerialBackendHandle;
106use sparse_mmap::alloc_shared_memory;
107use std::cell::RefCell;
108use std::collections::BTreeMap;
109use std::fmt::Write as _;
110use std::future::pending;
111use std::io;
112#[cfg(unix)]
113use std::io::IsTerminal;
114use std::io::Write;
115use std::net::TcpListener;
116use std::path::Path;
117use std::path::PathBuf;
118use std::sync::Arc;
119use std::thread;
120use std::time::Duration;
121use storvsp_resources::ScsiControllerRequest;
122use tpm_resources::TpmDeviceHandle;
123use tpm_resources::TpmRegisterLayout;
124use uidevices_resources::SynthKeyboardHandle;
125use uidevices_resources::SynthMouseHandle;
126use uidevices_resources::SynthVideoHandle;
127use video_core::SharedFramebufferHandle;
128use virtio_resources::VirtioPciDeviceHandle;
129use vm_manifest_builder::BaseChipsetType;
130use vm_manifest_builder::MachineArch;
131use vm_manifest_builder::VmChipsetResult;
132use vm_manifest_builder::VmManifestBuilder;
133use vm_resource::IntoResource;
134use vm_resource::Resource;
135use vm_resource::kind::DiskHandleKind;
136use vm_resource::kind::DiskLayerHandleKind;
137use vm_resource::kind::NetEndpointHandleKind;
138use vm_resource::kind::VirtioDeviceHandle;
139use vm_resource::kind::VmbusDeviceHandleKind;
140use vmbus_serial_resources::VmbusSerialDeviceHandle;
141use vmbus_serial_resources::VmbusSerialPort;
142use vmcore::non_volatile_store::resources::EphemeralNonVolatileStoreHandle;
143use vmgs_resources::GuestStateEncryptionPolicy;
144use vmgs_resources::VmgsDisk;
145use vmgs_resources::VmgsFileHandle;
146use vmgs_resources::VmgsResource;
147use vmotherboard::ChipsetDeviceHandle;
148use vnc_worker_defs::VncParameters;
149
150pub fn openvmm_main() {
151 #[cfg(unix)]
154 let orig_termios = io::stderr().is_terminal().then(term::get_termios);
155
156 let mut pidfile_guard: Option<pidfile::Pidfile> = None;
157 let exit_code = match do_main(&mut pidfile_guard) {
158 Ok(code) => code,
159 Err(err) => {
160 eprintln!("fatal error: {:?}", err);
161 1
162 }
163 };
164
165 #[cfg(unix)]
167 if let Some(orig_termios) = orig_termios {
168 term::set_termios(orig_termios);
169 }
170
171 drop(pidfile_guard);
174
175 let _ = io::stdout().flush();
181 pal::process::terminate(exit_code);
182}
183
184#[derive(Default)]
185struct VmResources {
186 console_in: Option<Box<dyn AsyncWrite + Send + Unpin>>,
187 framebuffer_access: Option<FramebufferAccess>,
188 shutdown_ic: Option<mesh::Sender<hyperv_ic_resources::shutdown::ShutdownRpc>>,
189 kvp_ic: Option<mesh::Sender<hyperv_ic_resources::kvp::KvpConnectRpc>>,
190 scsi_rpc: Option<mesh::Sender<ScsiControllerRequest>>,
191 nvme_vtl2_rpc: Option<mesh::Sender<NvmeControllerRequest>>,
192 ged_rpc: Option<mesh::Sender<get_resources::ged::GuestEmulationRequest>>,
193 vtl2_settings: Option<vtl2_settings_proto::Vtl2Settings>,
194 dirty_rect_recv: Option<mesh::Receiver<Vec<video_core::DirtyRect>>>,
196 #[cfg(windows)]
197 switch_ports: Vec<vmswitch::kernel::SwitchPort>,
198}
199
200struct ConsoleState<'a> {
201 device: &'a str,
202 input: Box<dyn AsyncWrite + Unpin + Send>,
203}
204
205fn build_switch_list(all_switches: &[cli_args::GenericPcieSwitchCli]) -> Vec<PcieSwitchConfig> {
210 all_switches
211 .iter()
212 .map(|switch_cli| PcieSwitchConfig {
213 name: switch_cli.name.clone(),
214 num_downstream_ports: switch_cli.num_downstream_ports,
215 parent_port: switch_cli.port_name.clone(),
216 hotplug: switch_cli.hotplug,
217 acs_capabilities_supported: switch_cli.acs_capabilities_supported,
218 })
219 .collect()
220}
221
222async fn vm_config_from_command_line(
223 spawner: impl Spawn,
224 mesh: &VmmMesh,
225 opt: &Options,
226) -> anyhow::Result<(Config, VmResources)> {
227 let (_, serial_driver) = DefaultPool::spawn_on_thread("serial");
228 serial_driver.spawn("leak", pending::<()>()).detach();
230
231 let openhcl_vtl = if opt.vtl2 {
232 DeviceVtl::Vtl2
233 } else {
234 DeviceVtl::Vtl0
235 };
236
237 let console_state: RefCell<Option<ConsoleState<'_>>> = RefCell::new(None);
238 let setup_serial = |name: &str, cli_cfg, device| -> anyhow::Result<_> {
239 Ok(match cli_cfg {
240 SerialConfigCli::Console => {
241 if let Some(console_state) = console_state.borrow().as_ref() {
242 bail!("console already set by {}", console_state.device);
243 }
244 let (config, serial) = serial_io::anonymous_serial_pair(&serial_driver)?;
245 let (serial_read, serial_write) = AsyncReadExt::split(serial);
246 *console_state.borrow_mut() = Some(ConsoleState {
247 device,
248 input: Box::new(serial_write),
249 });
250 thread::Builder::new()
251 .name(name.to_owned())
252 .spawn(move || {
253 let _ = block_on(futures::io::copy(
254 serial_read,
255 &mut AllowStdIo::new(term::raw_stdout()),
256 ));
257 })
258 .unwrap();
259 Some(config)
260 }
261 SerialConfigCli::Stderr => {
262 let (config, serial) = serial_io::anonymous_serial_pair(&serial_driver)?;
263 thread::Builder::new()
264 .name(name.to_owned())
265 .spawn(move || {
266 let _ = block_on(futures::io::copy(
267 serial,
268 &mut AllowStdIo::new(term::raw_stderr()),
269 ));
270 })
271 .unwrap();
272 Some(config)
273 }
274 SerialConfigCli::File(path) => {
275 let (config, serial) = serial_io::anonymous_serial_pair(&serial_driver)?;
276 let file = fs_err::File::create(path).context("failed to create file")?;
277
278 thread::Builder::new()
279 .name(name.to_owned())
280 .spawn(move || {
281 let _ = block_on(futures::io::copy(serial, &mut AllowStdIo::new(file)));
282 })
283 .unwrap();
284 Some(config)
285 }
286 SerialConfigCli::None => None,
287 SerialConfigCli::Pipe(path) => {
288 Some(serial_io::bind_serial(&path).context("failed to bind serial")?)
289 }
290 SerialConfigCli::Tcp(addr) => {
291 Some(serial_io::bind_tcp_serial(&addr).context("failed to bind serial")?)
292 }
293 SerialConfigCli::NewConsole(app, window_title) => {
294 let path = console_relay::random_console_path();
295 let config =
296 serial_io::bind_serial(&path).context("failed to bind console serial")?;
297 let window_title =
298 window_title.unwrap_or_else(|| name.to_uppercase() + " [OpenVMM]");
299
300 console_relay::launch_console(
301 app.or_else(openvmm_terminal_app).as_deref(),
302 &path,
303 ConsoleLaunchOptions {
304 window_title: Some(window_title),
305 },
306 )
307 .context("failed to launch console")?;
308
309 Some(config)
310 }
311 })
312 };
313
314 let mut vmbus_devices = Vec::new();
315
316 let serial0_cfg = setup_serial(
317 "com1",
318 opt.com1.clone().unwrap_or(SerialConfigCli::Console),
319 if cfg!(guest_arch = "x86_64") {
320 "ttyS0"
321 } else {
322 "ttyAMA0"
323 },
324 )?;
325 let serial1_cfg = setup_serial(
326 "com2",
327 opt.com2.clone().unwrap_or(SerialConfigCli::None),
328 if cfg!(guest_arch = "x86_64") {
329 "ttyS1"
330 } else {
331 "ttyAMA1"
332 },
333 )?;
334 let serial2_cfg = setup_serial(
335 "com3",
336 opt.com3.clone().unwrap_or(SerialConfigCli::None),
337 if cfg!(guest_arch = "x86_64") {
338 "ttyS2"
339 } else {
340 "ttyAMA2"
341 },
342 )?;
343 let serial3_cfg = setup_serial(
344 "com4",
345 opt.com4.clone().unwrap_or(SerialConfigCli::None),
346 if cfg!(guest_arch = "x86_64") {
347 "ttyS3"
348 } else {
349 "ttyAMA3"
350 },
351 )?;
352 let with_vmbus_com1_serial = if let Some(vmbus_com1_cfg) = setup_serial(
353 "vmbus_com1",
354 opt.vmbus_com1_serial
355 .clone()
356 .unwrap_or(SerialConfigCli::None),
357 "vmbus_com1",
358 )? {
359 vmbus_devices.push((
360 openhcl_vtl,
361 VmbusSerialDeviceHandle {
362 port: VmbusSerialPort::Com1,
363 backend: vmbus_com1_cfg,
364 }
365 .into_resource(),
366 ));
367 true
368 } else {
369 false
370 };
371 let with_vmbus_com2_serial = if let Some(vmbus_com2_cfg) = setup_serial(
372 "vmbus_com2",
373 opt.vmbus_com2_serial
374 .clone()
375 .unwrap_or(SerialConfigCli::None),
376 "vmbus_com2",
377 )? {
378 vmbus_devices.push((
379 openhcl_vtl,
380 VmbusSerialDeviceHandle {
381 port: VmbusSerialPort::Com2,
382 backend: vmbus_com2_cfg,
383 }
384 .into_resource(),
385 ));
386 true
387 } else {
388 false
389 };
390 let debugcon_cfg = setup_serial(
391 "debugcon",
392 opt.debugcon
393 .clone()
394 .map(|cfg| cfg.serial)
395 .unwrap_or(SerialConfigCli::None),
396 "debugcon",
397 )?;
398
399 let virtio_console_backend = if let Some(serial_cfg) = opt.virtio_console.clone() {
400 setup_serial("virtio-console", serial_cfg, "hvc0")?
401 } else {
402 None
403 };
404
405 let mut resources = VmResources::default();
406 let mut console_str = "";
407 if let Some(ConsoleState { device, input }) = console_state.into_inner() {
408 resources.console_in = Some(input);
409 console_str = device;
410 }
411
412 if opt.shared_memory {
413 tracing::warn!("--shared-memory/-M flag has no effect and will be removed");
414 }
415 if opt.deprecated_prefetch {
416 tracing::warn!("--prefetch is deprecated; use --memory prefetch=on");
417 }
418 if opt.deprecated_private_memory {
419 tracing::warn!("--private-memory is deprecated; use --memory shared=off");
420 }
421 if opt.deprecated_thp {
422 tracing::warn!("--thp is deprecated; use --memory shared=off,thp=on");
423 }
424 if opt.deprecated_memory_backing_file.is_some() {
425 tracing::warn!("--memory-backing-file is deprecated; use --memory file=<path>");
426 }
427
428 opt.validate_memory_options()?;
429
430 const MAX_PROCESSOR_COUNT: u32 = 1024;
431
432 if opt.processors == 0 || opt.processors > MAX_PROCESSOR_COUNT {
433 bail!("invalid proc count: {}", opt.processors);
434 }
435
436 if opt.scsi_sub_channels > (MAX_PROCESSOR_COUNT - 1) as u16 {
439 bail!(
440 "invalid SCSI sub-channel count: requested {}, max {}",
441 opt.scsi_sub_channels,
442 MAX_PROCESSOR_COUNT - 1
443 );
444 }
445
446 let with_get = opt.get || (opt.vtl2 && !opt.no_get);
447
448 let mut storage = storage_builder::StorageBuilder::new(with_get.then_some(openhcl_vtl));
449
450 for ctrl in &opt.nvme_pci {
453 let transport = match &ctrl.transport {
454 cli_args::NvmeControllerTransport::Pcie(port) => {
455 storage_builder::NvmeControllerTransport::Pcie(port.clone())
456 }
457 cli_args::NvmeControllerTransport::Vpci(guid) => {
458 let guid = guid.unwrap_or_else(|| storage_builder::deterministic_guid(&ctrl.id));
459 storage_builder::NvmeControllerTransport::Vpci(guid)
460 }
461 };
462 storage.add_nvme_controller(ctrl.id.clone(), ctrl.vtl, transport, None)?;
463 }
464
465 for ctrl in &opt.vmbus_scsi {
466 let instance_id = storage_builder::deterministic_guid(&ctrl.id);
467 storage.add_scsi_controller(ctrl.id.clone(), ctrl.vtl, instance_id, ctrl.sub_channels)?;
468 }
469
470 for ctrl in &opt.openhcl_controller {
471 let controller_type = match ctrl.controller_type {
472 cli_args::OpenhclControllerType::Scsi => storage_builder::OpenhclControllerType::Scsi,
473 cli_args::OpenhclControllerType::Nvme => storage_builder::OpenhclControllerType::Nvme,
474 };
475 let instance_id = ctrl
476 .guid
477 .unwrap_or_else(|| storage_builder::deterministic_guid(&ctrl.id));
478 storage.add_openhcl_controller(ctrl.id.clone(), controller_type, instance_id)?;
479 }
480
481 for &cli_args::DiskCli {
482 vtl,
483 ref kind,
484 read_only,
485 is_dvd,
486 underhill,
487 ref pcie_port,
488 ref controller,
489 nsid,
490 lun,
491 ref relay,
492 } in &opt.disk
493 {
494 if controller.is_none() && underhill.is_none() && relay.is_none() {
495 tracing::warn!(
496 "--disk without `on` is deprecated; \
497 use --vmbus-scsi and --disk on=<name> instead"
498 );
499 }
500
501 let relay_target = relay
502 .as_ref()
503 .map(|(name, loc)| storage_builder::RelayTarget {
504 controller: name.clone(),
505 location: *loc,
506 });
507
508 let target = if let Some(name) = controller {
509 if pcie_port.is_some() {
510 anyhow::bail!("`on` is incompatible with `pcie_port` on `--disk`");
511 }
512 storage_builder::DiskLocation::Named {
513 controller: name.clone(),
514 nsid,
515 lun,
516 }
517 } else if pcie_port.is_some() {
518 anyhow::bail!("`--disk` is incompatible with `pcie_port` without `controller`");
519 } else {
520 storage_builder::DiskLocation::Scsi(None)
521 };
522
523 storage
524 .add(
525 vtl,
526 underhill,
527 relay_target,
528 target,
529 kind,
530 is_dvd,
531 read_only,
532 )
533 .await?;
534 }
535
536 for &cli_args::IdeDiskCli {
537 ref kind,
538 read_only,
539 channel,
540 device,
541 is_dvd,
542 } in &opt.ide
543 {
544 storage
545 .add(
546 DeviceVtl::Vtl0,
547 None,
548 None,
549 storage_builder::DiskLocation::Ide(channel, device),
550 kind,
551 is_dvd,
552 read_only,
553 )
554 .await?;
555 }
556
557 if !opt.nvme.is_empty() {
558 tracing::warn!("--nvme is deprecated; use --nvme-pci and --disk on=<name> instead");
559
560 let mut registered_ports = std::collections::BTreeSet::new();
562 for disk in &opt.nvme {
563 if let Some(port) = &disk.pcie_port {
564 if registered_ports.insert(port.clone()) {
565 storage.add_nvme_controller(
566 port.clone(),
567 DeviceVtl::Vtl0,
568 storage_builder::NvmeControllerTransport::Pcie(port.clone()),
569 None,
570 ).with_context(|| format!(
571 "legacy --nvme flag conflicts with an explicit controller named '{port}'; \
572 use --nvme-pci and --disk on=<name> instead"
573 ))?;
574 }
575 }
576 }
577 }
578
579 for &cli_args::DiskCli {
580 vtl,
581 ref kind,
582 read_only,
583 is_dvd,
584 underhill,
585 ref pcie_port,
586 controller: _,
587 nsid: _,
588 lun: _,
589 relay: _,
590 } in &opt.nvme
591 {
592 let target = if let Some(port) = pcie_port {
593 storage_builder::DiskLocation::Named {
594 controller: port.clone(),
595 nsid: None,
596 lun: None,
597 }
598 } else {
599 storage_builder::DiskLocation::Nvme(None)
600 };
601 storage
602 .add(vtl, underhill, None, target, kind, is_dvd, read_only)
603 .await?;
604 }
605
606 for &cli_args::DiskCli {
607 vtl,
608 ref kind,
609 read_only,
610 is_dvd,
611 ref underhill,
612 ref pcie_port,
613 controller: _,
614 nsid: _,
615 lun: _,
616 relay: _,
617 } in &opt.virtio_blk
618 {
619 if underhill.is_some() {
620 anyhow::bail!("underhill not supported with virtio-blk");
621 }
622 storage
623 .add(
624 vtl,
625 None,
626 None,
627 storage_builder::DiskLocation::VirtioBlk(pcie_port.clone()),
628 kind,
629 is_dvd,
630 read_only,
631 )
632 .await?;
633 }
634
635 let mut floppy_disks = Vec::new();
636 for disk in &opt.floppy {
637 let &cli_args::FloppyDiskCli {
638 ref kind,
639 read_only,
640 } = disk;
641 floppy_disks.push(FloppyDiskConfig {
642 disk_type: disk_open(kind, read_only).await?,
643 read_only,
644 });
645 }
646
647 let mut vpci_mana_nics = [(); 3].map(|()| None);
648 let mut pcie_mana_nics = BTreeMap::<String, GdmaDeviceHandle>::new();
649 let mut underhill_nics = Vec::new();
650 let mut vpci_devices = Vec::new();
651
652 let mut nic_index = 0;
653 for cli_cfg in &opt.net {
654 if cli_cfg.pcie_port.is_some() {
655 anyhow::bail!("`--net` does not support PCIe");
656 }
657 let vport = parse_endpoint(cli_cfg, &mut nic_index, &mut resources)?;
658 if cli_cfg.underhill {
659 if !opt.no_alias_map {
660 anyhow::bail!("must specify --no-alias-map to offer NICs to VTL2");
661 }
662 let mana = vpci_mana_nics[openhcl_vtl as usize].get_or_insert_with(|| {
663 let vpci_instance_id = Guid::new_random();
664 underhill_nics.push(vtl2_settings_proto::NicDeviceLegacy {
665 instance_id: vpci_instance_id.to_string(),
666 subordinate_instance_id: None,
667 max_sub_channels: None,
668 });
669 (vpci_instance_id, GdmaDeviceHandle { vports: Vec::new() })
670 });
671 mana.1.vports.push(VportDefinition {
672 mac_address: vport.mac_address,
673 endpoint: vport.endpoint,
674 });
675 } else {
676 vmbus_devices.push(vport.into_netvsp_handle());
677 }
678 }
679
680 if opt.nic {
681 let nic_config = parse_endpoint(
682 &NicConfigCli {
683 vtl: DeviceVtl::Vtl0,
684 endpoint: EndpointConfigCli::Consomme {
685 cidr: None,
686 host_fwd: Vec::new(),
687 },
688 max_queues: None,
689 underhill: false,
690 pcie_port: None,
691 },
692 &mut nic_index,
693 &mut resources,
694 )?;
695 vmbus_devices.push(nic_config.into_netvsp_handle());
696 }
697
698 let mut pcie_devices = Vec::new();
701 for (index, cli_cfg) in opt.pcie_remote.iter().enumerate() {
702 tracing::info!(
703 port_name = %cli_cfg.port_name,
704 socket_addr = ?cli_cfg.socket_addr,
705 "instantiating PCIe remote device"
706 );
707
708 const PCIE_REMOTE_BASE_INSTANCE_ID: Guid =
710 guid::guid!("28ed784d-c059-429f-9d9a-46bea02562c0");
711 let instance_id = Guid {
712 data1: index as u32,
713 ..PCIE_REMOTE_BASE_INSTANCE_ID
714 };
715
716 pcie_devices.push(PcieDeviceConfig {
717 port_name: cli_cfg.port_name.clone(),
718 resource: pcie_remote_resources::PcieRemoteHandle {
719 instance_id,
720 socket_addr: cli_cfg.socket_addr.clone(),
721 hu: cli_cfg.hu,
722 controller: cli_cfg.controller,
723 }
724 .into_resource(),
725 });
726 }
727
728 #[cfg(windows)]
729 let mut kernel_vmnics = Vec::new();
730 #[cfg(windows)]
731 for (index, switch_id) in opt.kernel_vmnic.iter().enumerate() {
732 let mut mac_address = [0x00, 0x15, 0x5D, 0, 0, 0];
734 getrandom::fill(&mut mac_address[3..]).expect("rng failure");
735
736 const BASE_INSTANCE_ID: Guid = guid::guid!("00000000-435d-11ee-9f59-00155d5016fc");
738 let instance_id = Guid {
739 data1: index as u32,
740 ..BASE_INSTANCE_ID
741 };
742
743 let switch_id = if switch_id == "default" {
744 None
745 } else {
746 Some(switch_id.as_str())
747 };
748 let (port_id, port) = new_switch_port(switch_id)?;
749 resources.switch_ports.push(port);
750
751 kernel_vmnics.push(openvmm_defs::config::KernelVmNicConfig {
752 instance_id,
753 mac_address: mac_address.into(),
754 switch_port_id: port_id,
755 });
756 }
757
758 for vport in &opt.mana {
759 let vport = parse_endpoint(vport, &mut nic_index, &mut resources)?;
760 let vport_array = match (vport.vtl as usize, vport.pcie_port) {
761 (vtl, None) => {
762 &mut vpci_mana_nics[vtl]
763 .get_or_insert_with(|| {
764 (Guid::new_random(), GdmaDeviceHandle { vports: Vec::new() })
765 })
766 .1
767 .vports
768 }
769 (0, Some(pcie_port)) => {
770 &mut pcie_mana_nics
771 .entry(pcie_port)
772 .or_insert(GdmaDeviceHandle { vports: Vec::new() })
773 .vports
774 }
775 _ => anyhow::bail!("PCIe NICs only supported to VTL0"),
776 };
777 vport_array.push(VportDefinition {
778 mac_address: vport.mac_address,
779 endpoint: vport.endpoint,
780 });
781 }
782
783 vpci_devices.extend(
784 vpci_mana_nics
785 .into_iter()
786 .enumerate()
787 .filter_map(|(vtl, nic)| {
788 nic.map(|(instance_id, handle)| VpciDeviceConfig {
789 vtl: match vtl {
790 0 => DeviceVtl::Vtl0,
791 1 => DeviceVtl::Vtl1,
792 2 => DeviceVtl::Vtl2,
793 _ => unreachable!(),
794 },
795 instance_id,
796 resource: handle.into_resource(),
797 vnode: None,
798 })
799 }),
800 );
801
802 pcie_devices.extend(
803 pcie_mana_nics
804 .into_iter()
805 .map(|(pcie_port, handle)| PcieDeviceConfig {
806 port_name: pcie_port,
807 resource: handle.into_resource(),
808 }),
809 );
810
811 for cxl_test in &opt.cxl_test {
812 pcie_devices.push(PcieDeviceConfig {
813 port_name: cxl_test.pcie_port.clone(),
814 resource: CxlTestDeviceHandle {
815 hdm_size_bytes: cxl_test.hdm_size,
816 }
817 .into_resource(),
818 });
819 }
820
821 #[cfg(guest_arch = "aarch64")]
822 let arch = MachineArch::Aarch64;
823 #[cfg(guest_arch = "x86_64")]
824 let arch = MachineArch::X86_64;
825
826 let mut pcie_root_complexes = Vec::new();
827 for (i, rc_cli) in opt.pcie_root_complex.iter().enumerate() {
828 let ports: Vec<PcieRootPortConfig> = opt
829 .pcie_root_port
830 .iter()
831 .filter(|port_cli| port_cli.root_complex_name == rc_cli.name)
832 .map(|port_cli| PcieRootPortConfig {
833 name: port_cli.name.clone(),
834 hotplug: port_cli.hotplug,
835 acs_capabilities_supported: port_cli.acs_capabilities_supported,
836 cxl: port_cli.cxl,
837 })
838 .collect();
839
840 const ONE_MB: u64 = 1024 * 1024;
841 let low_mmio_size = (rc_cli.low_mmio as u64).next_multiple_of(ONE_MB);
843 let high_mmio_size = rc_cli
844 .high_mmio
845 .checked_next_multiple_of(ONE_MB)
846 .context("high mmio rounding error")?;
847
848 let cxl_port_count = ports.iter().filter(|port| port.cxl).count() as u64;
850
851 let cxl = if cxl_port_count != 0 {
852 Some(RootComplexCxlConfig {
853 hdm_size: rc_cli.hdm,
854 hdm_window_restrictions: rc_cli.hdm_window_restrictions.bits(),
855 })
856 } else {
857 None
858 };
859 pcie_root_complexes.push(PcieRootComplexConfig {
860 index: i as u32,
861 name: rc_cli.name.clone(),
862 segment: rc_cli.segment,
863 start_bus: rc_cli.start_bus,
864 end_bus: rc_cli.end_bus,
865 low_mmio: if let Some(base) = rc_cli.low_mmio_base {
866 PcieMmioRangeConfig::Fixed(
867 memory_range::MemoryRange::try_new(base..base.wrapping_add(low_mmio_size))
868 .context("invalid low MMIO range")?,
869 )
870 } else {
871 PcieMmioRangeConfig::Dynamic {
872 size: low_mmio_size,
873 }
874 },
875 high_mmio: if let Some(base) = rc_cli.high_mmio_base {
876 PcieMmioRangeConfig::Fixed(
877 memory_range::MemoryRange::try_new(base..base.wrapping_add(high_mmio_size))
878 .context("invalid high MMIO range")?,
879 )
880 } else {
881 PcieMmioRangeConfig::Dynamic {
882 size: high_mmio_size,
883 }
884 },
885 cxl,
886 ports,
887 #[cfg(guest_arch = "aarch64")]
888 iommu: opt
889 .smmu
890 .iter()
891 .any(|s| s == &rc_cli.name)
892 .then_some(openvmm_defs::config::PcieIommuConfig::Smmu),
893 #[cfg(guest_arch = "x86_64")]
894 iommu: opt
895 .amd_iommu
896 .iter()
897 .any(|s| s == &rc_cli.name)
898 .then_some(openvmm_defs::config::PcieIommuConfig::AmdVi),
899 vnode: rc_cli.vnode,
900 preserve_bars: rc_cli.preserve_bars,
901 });
902 }
903
904 #[cfg(guest_arch = "aarch64")]
906 for name in &opt.smmu {
907 anyhow::ensure!(
908 pcie_root_complexes.iter().any(|rc| rc.name == *name),
909 "--smmu refers to unknown root complex '{name}'"
910 );
911 }
912 #[cfg(guest_arch = "x86_64")]
913 for name in &opt.amd_iommu {
914 anyhow::ensure!(
915 pcie_root_complexes.iter().any(|rc| rc.name == *name),
916 "--amd-iommu refers to unknown root complex '{name}'"
917 );
918 }
919
920 let pcie_switches = build_switch_list(&opt.pcie_switch);
921
922 #[cfg(target_os = "linux")]
923 let vfio_pcie_devices: Vec<PcieDeviceConfig> = {
924 use std::collections::HashMap;
925 use vm_resource::IntoResource;
926
927 let mut iommu_map: HashMap<String, std::fs::File> = HashMap::new();
929 for iommu_cli in &opt.iommu {
930 anyhow::ensure!(
931 !iommu_map.contains_key(&iommu_cli.id),
932 "duplicate --iommu id={}",
933 iommu_cli.id
934 );
935 let file = std::fs::OpenOptions::new()
936 .read(true)
937 .write(true)
938 .open("/dev/iommu")
939 .context("failed to open /dev/iommu (is iommufd available?)")?;
940 iommu_map.insert(iommu_cli.id.clone(), file);
941 }
942
943 opt.vfio
944 .iter()
945 .map(|cli_cfg| {
946 let sysfs_path = Path::new("/sys/bus/pci/devices").join(&cli_cfg.pci_id);
947
948 if let Some(iommu_id) = &cli_cfg.iommu {
949 let iommufd = iommu_map.get(iommu_id).with_context(|| {
951 format!(
952 "--vfio device {} references iommu={iommu_id}, \
953 but no --iommu id={iommu_id} was specified",
954 cli_cfg.pci_id
955 )
956 })?;
957 let iommufd = iommufd.try_clone().with_context(|| {
962 format!("failed to dup iommufd fd for iommu={iommu_id}")
963 })?;
964
965 let vfio_dev_dir = sysfs_path.join("vfio-dev");
967 let entry = std::fs::read_dir(&vfio_dev_dir)
968 .with_context(|| {
969 format!(
970 "failed to read {}: is {} bound to vfio-pci?",
971 vfio_dev_dir.display(),
972 cli_cfg.pci_id
973 )
974 })?
975 .next()
976 .context("no vfio-dev entry found")?
977 .context("failed to read vfio-dev entry")?;
978 let dev_path = Path::new("/dev/vfio/devices").join(entry.file_name());
979 let cdev = std::fs::OpenOptions::new()
980 .read(true)
981 .write(true)
982 .open(&dev_path)
983 .with_context(|| format!("failed to open {}", dev_path.display()))?;
984
985 Ok(PcieDeviceConfig {
986 port_name: cli_cfg.port_name.clone(),
987 resource: vfio_assigned_device_resources::VfioCdevDeviceHandle {
988 pci_id: cli_cfg.pci_id.clone(),
989 cdev,
990 iommufd,
991 iommu_id: iommu_id.clone(),
992 bar_pt: cli_cfg.bar_pt,
993 }
994 .into_resource(),
995 })
996 } else {
997 let iommu_group_link = std::fs::read_link(sysfs_path.join("iommu_group"))
999 .with_context(|| {
1000 format!("failed to read IOMMU group for {}", cli_cfg.pci_id)
1001 })?;
1002 let group_id: u64 = iommu_group_link
1003 .file_name()
1004 .and_then(|s| s.to_str())
1005 .context("invalid iommu_group symlink")?
1006 .parse()
1007 .context("failed to parse IOMMU group ID")?;
1008 let group = std::fs::OpenOptions::new()
1009 .read(true)
1010 .write(true)
1011 .open(format!("/dev/vfio/{group_id}"))
1012 .with_context(|| format!("failed to open /dev/vfio/{group_id}"))?;
1013
1014 Ok(PcieDeviceConfig {
1015 port_name: cli_cfg.port_name.clone(),
1016 resource: vfio_assigned_device_resources::VfioDeviceHandle {
1017 pci_id: cli_cfg.pci_id.clone(),
1018 group,
1019 bar_pt: cli_cfg.bar_pt,
1020 }
1021 .into_resource(),
1022 })
1023 }
1024 })
1025 .collect::<anyhow::Result<Vec<_>>>()?
1026 };
1027
1028 #[cfg(windows)]
1029 let vpci_resources: Vec<_> = opt
1030 .device
1031 .iter()
1032 .map(|path| -> anyhow::Result<_> {
1033 Ok(virt_whp::device::DeviceHandle(
1034 whp::VpciResource::new(
1035 None,
1036 Default::default(),
1037 &whp::VpciResourceDescriptor::Sriov(path, 0, 0),
1038 )
1039 .with_context(|| format!("opening PCI device {}", path))?,
1040 ))
1041 })
1042 .collect::<Result<_, _>>()?;
1043
1044 #[cfg(windows)]
1046 let vmbusproxy_handle = if !kernel_vmnics.is_empty() {
1047 Some(vmbus_proxy::ProxyHandle::new().context("failed to open vmbusproxy handle")?)
1048 } else {
1049 None
1050 };
1051
1052 let framebuffer = if opt.gfx || opt.vtl2_gfx || opt.vnc.vnc || opt.pcat {
1053 let vram = alloc_shared_memory(FRAMEBUFFER_SIZE, "vram")?;
1054 let (fb, fba) =
1055 framebuffer::framebuffer(vram, FRAMEBUFFER_SIZE, 0).context("creating framebuffer")?;
1056 resources.framebuffer_access = Some(fba);
1057 Some(fb)
1058 } else {
1059 None
1060 };
1061
1062 let load_mode;
1063 let with_hv;
1064
1065 let any_serial_configured = serial0_cfg.is_some()
1066 || serial1_cfg.is_some()
1067 || serial2_cfg.is_some()
1068 || serial3_cfg.is_some();
1069
1070 let has_com3 = serial2_cfg.is_some();
1071
1072 let mut chipset = VmManifestBuilder::new(
1073 if opt.igvm.is_some() {
1074 BaseChipsetType::HclHost
1075 } else if opt.pcat {
1076 BaseChipsetType::HypervGen1
1077 } else if opt.uefi {
1078 BaseChipsetType::HypervGen2Uefi
1079 } else if opt.hv {
1080 BaseChipsetType::HyperVGen2LinuxDirect
1081 } else {
1082 BaseChipsetType::UnenlightenedLinuxDirect
1083 },
1084 arch,
1085 );
1086
1087 if framebuffer.is_some() {
1088 chipset = chipset.with_framebuffer();
1089 }
1090 if opt.guest_watchdog {
1091 chipset = chipset.with_guest_watchdog();
1092 }
1093 if any_serial_configured {
1094 chipset = chipset.with_serial([serial0_cfg, serial1_cfg, serial2_cfg, serial3_cfg]);
1095 }
1096 if opt.battery {
1097 let (tx, rx) = mesh::channel();
1098 tx.send(HostBatteryUpdate::default_present());
1099 chipset = chipset.with_battery(rx);
1100 }
1101 if opt.no_vmbus {
1102 chipset = chipset.without_vmbus();
1103 }
1104 if let Some(cfg) = &opt.debugcon {
1105 chipset = chipset.with_debugcon(
1106 debugcon_cfg.unwrap_or_else(|| DisconnectedSerialBackendHandle.into_resource()),
1107 cfg.port,
1108 );
1109 }
1110
1111 let custom_uefi_vars = {
1112 use firmware_uefi_custom_vars::CustomVars;
1113
1114 let base_vars = match opt.secure_boot_template {
1117 Some(template) => match (arch, template) {
1118 (MachineArch::X86_64, SecureBootTemplateCli::Windows) => {
1119 hyperv_secure_boot_templates::x64::microsoft_windows()
1120 }
1121 (MachineArch::X86_64, SecureBootTemplateCli::UefiCa) => {
1122 hyperv_secure_boot_templates::x64::microsoft_uefi_ca()
1123 }
1124 (MachineArch::Aarch64, SecureBootTemplateCli::Windows) => {
1125 hyperv_secure_boot_templates::aarch64::microsoft_windows()
1126 }
1127 (MachineArch::Aarch64, SecureBootTemplateCli::UefiCa) => {
1128 hyperv_secure_boot_templates::aarch64::microsoft_uefi_ca()
1129 }
1130 },
1131 None => CustomVars::default(),
1132 };
1133
1134 let custom_uefi_json_data = match &opt.custom_uefi_json {
1137 Some(file) => Some(fs_err::read(file).context("opening custom uefi json file")?),
1138 None => None,
1139 };
1140
1141 match custom_uefi_json_data {
1143 Some(data) => {
1144 let delta = hyperv_uefi_custom_vars_json::load_delta_from_json(&data)?;
1145 base_vars.apply_delta(delta)?
1146 }
1147 None => base_vars,
1148 }
1149 };
1150
1151 let efi_diagnostics_log_level = match opt.efi_diagnostics_log_level.unwrap_or_default() {
1152 EfiDiagnosticsLogLevelCli::Default => EfiDiagnosticsLogLevelType::Default,
1153 EfiDiagnosticsLogLevelCli::Info => EfiDiagnosticsLogLevelType::Info,
1154 EfiDiagnosticsLogLevelCli::Full => EfiDiagnosticsLogLevelType::Full,
1155 };
1156
1157 if opt.uefi {
1158 let log_level = match efi_diagnostics_log_level {
1159 EfiDiagnosticsLogLevelType::Default => {
1160 firmware_uefi_resources::LogLevel::make_default()
1161 }
1162 EfiDiagnosticsLogLevelType::Info => firmware_uefi_resources::LogLevel::make_info(),
1163 EfiDiagnosticsLogLevelType::Full => firmware_uefi_resources::LogLevel::make_full(),
1164 };
1165 let nvram_storage = if opt.vmgs.is_some() {
1166 VmgsFileHandle::new(vmgs_format::FileId::BIOS_NVRAM, true).into_resource()
1167 } else {
1168 EphemeralNonVolatileStoreHandle.into_resource()
1169 };
1170 chipset = chipset.with_uefi(vm_manifest_builder::UefiManifest::new(
1171 arch,
1172 custom_uefi_vars.clone(),
1173 opt.secure_boot,
1174 log_level,
1175 None,
1176 nvram_storage,
1177 None,
1178 ));
1179 }
1180
1181 let bios_guid = Guid::new_random();
1183
1184 let layout_config = chipset.layout_config();
1185 let VmChipsetResult {
1186 chipset,
1187 mut chipset_devices,
1188 pci_chipset_devices,
1189 isa_dma_controller,
1190 capabilities,
1191 } = chipset
1192 .build()
1193 .context("failed to build chipset configuration")?;
1194
1195 if opt.restore_snapshot.is_some() {
1196 load_mode = LoadMode::None;
1199 with_hv = true;
1200 } else if let Some(path) = &opt.igvm {
1201 let file = fs_err::File::open(path)
1202 .context("failed to open igvm file")?
1203 .into();
1204 let cmdline = opt.cmdline.join(" ");
1205 with_hv = true;
1206
1207 load_mode = LoadMode::Igvm {
1208 file,
1209 cmdline,
1210 vtl2_base_address: opt.igvm_vtl2_relocation_type,
1211 com_serial: has_com3.then(|| SerialInformation {
1212 io_port: ComPort::Com3.io_port(),
1213 irq: ComPort::Com3.irq().into(),
1214 }),
1215 };
1216 } else if opt.pcat {
1217 if arch != MachineArch::X86_64 {
1219 anyhow::bail!("pcat not supported on this architecture");
1220 }
1221 with_hv = true;
1222
1223 let firmware = openvmm_pcat_locator::find_pcat_bios(opt.pcat_firmware.as_deref())?;
1224 load_mode = LoadMode::Pcat {
1225 firmware,
1226 boot_order: opt
1227 .pcat_boot_order
1228 .map(|x| x.0)
1229 .unwrap_or(DEFAULT_PCAT_BOOT_ORDER),
1230 };
1231 } else if opt.uefi {
1232 use openvmm_defs::config::UefiConsoleMode;
1233
1234 with_hv = true;
1235
1236 let firmware = fs_err::File::open(
1237 (opt.uefi_firmware.0)
1238 .as_ref()
1239 .context("must provide uefi firmware when booting with uefi")?,
1240 )
1241 .context("failed to open uefi firmware")?;
1242
1243 load_mode = LoadMode::Uefi {
1246 firmware: firmware.into(),
1247 enable_debugging: opt.uefi_debug,
1248 enable_memory_protections: opt.uefi_enable_memory_protections,
1249 disable_frontpage: opt.disable_frontpage,
1250 enable_tpm: opt.tpm,
1251 enable_battery: opt.battery,
1252 enable_serial: any_serial_configured,
1253 enable_vpci_boot: false,
1254 uefi_console_mode: opt.uefi_console_mode.map(|m| match m {
1255 UefiConsoleModeCli::Default => UefiConsoleMode::Default,
1256 UefiConsoleModeCli::Com1 => UefiConsoleMode::Com1,
1257 UefiConsoleModeCli::Com2 => UefiConsoleMode::Com2,
1258 UefiConsoleModeCli::None => UefiConsoleMode::None,
1259 }),
1260 default_boot_always_attempt: opt.default_boot_always_attempt,
1261 bios_guid,
1262 enable_vmbus: !opt.no_vmbus,
1263 force_dma_bounce: opt.uefi_force_dma_bounce,
1264 };
1265 } else {
1266 let mut cmdline = "panic=-1 debug".to_string();
1268
1269 with_hv = opt.hv;
1270 if with_hv && opt.pcie_root_complex.is_empty() {
1271 cmdline += " pci=off";
1272 }
1273
1274 if !console_str.is_empty() {
1275 let _ = write!(&mut cmdline, " console={}", console_str);
1276 }
1277
1278 if opt.gfx {
1279 cmdline += " console=tty";
1280 }
1281 for extra in &opt.cmdline {
1282 let _ = write!(&mut cmdline, " {}", extra);
1283 }
1284
1285 let kernel = fs_err::File::open(
1286 (opt.kernel.0)
1287 .as_ref()
1288 .context("must provide kernel when booting with linux direct")?,
1289 )
1290 .context("failed to open kernel")?;
1291 let initrd = (opt.initrd.0)
1292 .as_ref()
1293 .map(fs_err::File::open)
1294 .transpose()
1295 .context("failed to open initrd")?;
1296
1297 let custom_dsdt = match &opt.custom_dsdt {
1298 Some(path) => {
1299 let mut v = Vec::new();
1300 fs_err::File::open(path)
1301 .context("failed to open custom dsdt")?
1302 .read_to_end(&mut v)
1303 .context("failed to read custom dsdt")?;
1304 Some(v)
1305 }
1306 None => None,
1307 };
1308
1309 load_mode = LoadMode::Linux {
1310 kernel: kernel.into(),
1311 initrd: initrd.map(Into::into),
1312 cmdline,
1313 custom_dsdt,
1314 enable_serial: any_serial_configured,
1315 boot_mode: if opt.device_tree {
1316 openvmm_defs::config::LinuxDirectBootMode::DeviceTree
1317 } else {
1318 openvmm_defs::config::LinuxDirectBootMode::Acpi
1319 },
1320 };
1321 }
1322
1323 let mut vmgs = Some(if let Some(VmgsCli { kind, provision }) = &opt.vmgs {
1324 let disk = VmgsDisk {
1325 disk: disk_open(kind, false)
1326 .await
1327 .context("failed to open vmgs disk")?,
1328 encryption_policy: if opt.test_gsp_by_id {
1329 GuestStateEncryptionPolicy::GspById(true)
1330 } else {
1331 GuestStateEncryptionPolicy::None(true)
1332 },
1333 };
1334 match provision {
1335 ProvisionVmgs::OnEmpty => VmgsResource::Disk(disk),
1336 ProvisionVmgs::OnFailure => VmgsResource::ReprovisionOnFailure(disk),
1337 ProvisionVmgs::True => VmgsResource::Reprovision(disk),
1338 }
1339 } else {
1340 VmgsResource::Ephemeral
1341 });
1342
1343 if with_get && with_hv {
1344 let has_vtl0_nvme = storage.has_vtl0_nvme();
1345 let vtl2_settings = vtl2_settings_proto::Vtl2Settings {
1346 version: vtl2_settings_proto::vtl2_settings_base::Version::V1.into(),
1347 fixed: Some(Default::default()),
1348 dynamic: Some(vtl2_settings_proto::Vtl2SettingsDynamic {
1349 storage_controllers: storage.build_openhcl_settings(opt.vmbus_redirect),
1350 nic_devices: underhill_nics,
1351 }),
1352 namespace_settings: Vec::default(),
1353 };
1354
1355 resources.vtl2_settings = Some(vtl2_settings.clone());
1357
1358 let (send, guest_request_recv) = mesh::channel();
1359 resources.ged_rpc = Some(send);
1360
1361 let vmgs = vmgs.take().unwrap();
1362
1363 vmbus_devices.extend([
1364 (
1365 openhcl_vtl,
1366 get_resources::gel::GuestEmulationLogHandle.into_resource(),
1367 ),
1368 (
1369 openhcl_vtl,
1370 get_resources::ged::GuestEmulationDeviceHandle {
1371 firmware: if opt.pcat {
1372 get_resources::ged::GuestFirmwareConfig::Pcat {
1373 boot_order: opt
1374 .pcat_boot_order
1375 .map_or(DEFAULT_PCAT_BOOT_ORDER, |x| x.0)
1376 .map(|x| match x {
1377 openvmm_defs::config::PcatBootDevice::Floppy => {
1378 get_resources::ged::PcatBootDevice::Floppy
1379 }
1380 openvmm_defs::config::PcatBootDevice::HardDrive => {
1381 get_resources::ged::PcatBootDevice::HardDrive
1382 }
1383 openvmm_defs::config::PcatBootDevice::Optical => {
1384 get_resources::ged::PcatBootDevice::Optical
1385 }
1386 openvmm_defs::config::PcatBootDevice::Network => {
1387 get_resources::ged::PcatBootDevice::Network
1388 }
1389 }),
1390 }
1391 } else {
1392 use get_resources::ged::UefiConsoleMode;
1393
1394 get_resources::ged::GuestFirmwareConfig::Uefi {
1395 enable_vpci_boot: has_vtl0_nvme,
1396 firmware_debug: opt.uefi_debug,
1397 disable_frontpage: opt.disable_frontpage,
1398 console_mode: match opt.uefi_console_mode.unwrap_or(UefiConsoleModeCli::Default) {
1399 UefiConsoleModeCli::Default => UefiConsoleMode::Default,
1400 UefiConsoleModeCli::Com1 => UefiConsoleMode::COM1,
1401 UefiConsoleModeCli::Com2 => UefiConsoleMode::COM2,
1402 UefiConsoleModeCli::None => UefiConsoleMode::None,
1403 },
1404 default_boot_always_attempt: opt.default_boot_always_attempt,
1405 }
1406 },
1407 com1: with_vmbus_com1_serial,
1408 com2: with_vmbus_com2_serial,
1409 serial_tx_only: opt.serial_tx_only,
1410 vtl2_settings: Some(prost::Message::encode_to_vec(&vtl2_settings)),
1411 vmbus_redirection: opt.vmbus_redirect,
1412 vmgs,
1413 framebuffer: opt
1414 .vtl2_gfx
1415 .then(|| SharedFramebufferHandle.into_resource()),
1416 guest_request_recv,
1417 enable_tpm: opt.tpm,
1418 firmware_event_send: None,
1419 secure_boot_enabled: opt.secure_boot,
1420 secure_boot_template: match opt.secure_boot_template {
1421 Some(SecureBootTemplateCli::Windows) => {
1422 get_resources::ged::GuestSecureBootTemplateType::MicrosoftWindows
1423 },
1424 Some(SecureBootTemplateCli::UefiCa) => {
1425 get_resources::ged::GuestSecureBootTemplateType::MicrosoftUefiCertificateAuthority
1426 }
1427 None => {
1428 get_resources::ged::GuestSecureBootTemplateType::None
1429 },
1430 },
1431 enable_battery: opt.battery,
1432 no_persistent_secrets: true,
1433 igvm_attest_test_config: None,
1434 test_gsp_by_id: opt.test_gsp_by_id,
1435 efi_diagnostics_log_level: {
1436 match opt.efi_diagnostics_log_level.unwrap_or_default() {
1437 EfiDiagnosticsLogLevelCli::Default => get_resources::ged::EfiDiagnosticsLogLevelType::Default,
1438 EfiDiagnosticsLogLevelCli::Info => get_resources::ged::EfiDiagnosticsLogLevelType::Info,
1439 EfiDiagnosticsLogLevelCli::Full => get_resources::ged::EfiDiagnosticsLogLevelType::Full,
1440 }
1441 },
1442 force_dma_bounce_enabled: opt.uefi_force_dma_bounce,
1443 }
1444 .into_resource(),
1445 ),
1446 ]);
1447 }
1448
1449 if opt.tpm && !opt.vtl2 {
1450 let register_layout = if cfg!(guest_arch = "x86_64") {
1451 TpmRegisterLayout::IoPort
1452 } else {
1453 TpmRegisterLayout::Mmio
1454 };
1455
1456 let (ppi_store, nvram_store) = if opt.vmgs.is_some() {
1457 (
1458 VmgsFileHandle::new(vmgs_format::FileId::TPM_PPI, true).into_resource(),
1459 VmgsFileHandle::new(vmgs_format::FileId::TPM_NVRAM, true).into_resource(),
1460 )
1461 } else {
1462 (
1463 EphemeralNonVolatileStoreHandle.into_resource(),
1464 EphemeralNonVolatileStoreHandle.into_resource(),
1465 )
1466 };
1467
1468 chipset_devices.push(ChipsetDeviceHandle {
1469 name: "tpm".to_string(),
1470 resource: chipset_device_worker_defs::RemoteChipsetDeviceHandle {
1471 device: TpmDeviceHandle {
1472 ppi_store,
1473 nvram_store,
1474 nvram_size: None,
1475 refresh_tpm_seeds: false,
1476 ak_cert_type: tpm_resources::TpmAkCertTypeResource::None,
1477 register_layout,
1478 guest_secret_key: None,
1479 logger: None,
1480 is_confidential_vm: false,
1481 bios_guid,
1482 }
1483 .into_resource(),
1484 worker_host: mesh.make_host("tpm", None).await?,
1485 }
1486 .into_resource(),
1487 });
1488 }
1489
1490 let vga_firmware = if opt.pcat {
1491 Some(openvmm_pcat_locator::find_svga_bios(
1492 opt.vga_firmware.as_deref(),
1493 )?)
1494 } else {
1495 None
1496 };
1497
1498 if opt.gfx {
1499 let (dirt_send, dirt_recv) = mesh::channel();
1501 resources.dirty_rect_recv = Some(dirt_recv);
1502
1503 vmbus_devices.extend([
1504 (
1505 DeviceVtl::Vtl0,
1506 SynthVideoHandle {
1507 framebuffer: SharedFramebufferHandle.into_resource(),
1508 dirt_send: Some(dirt_send),
1509 }
1510 .into_resource(),
1511 ),
1512 (
1513 DeviceVtl::Vtl0,
1514 SynthKeyboardHandle {
1515 source: MultiplexedInputHandle {
1516 elevation: 1,
1518 }
1519 .into_resource(),
1520 }
1521 .into_resource(),
1522 ),
1523 (
1524 DeviceVtl::Vtl0,
1525 SynthMouseHandle {
1526 source: MultiplexedInputHandle {
1527 elevation: 1,
1529 }
1530 .into_resource(),
1531 }
1532 .into_resource(),
1533 ),
1534 ]);
1535 }
1536
1537 let vsock_listener = |path: Option<&str>| -> anyhow::Result<_> {
1538 if let Some(path) = path {
1539 cleanup_socket(path.as_ref());
1540 let listener = unix_socket::UnixListener::bind(path)
1541 .with_context(|| format!("failed to bind to hybrid vsock path: {}", path))?;
1542 Ok(Some(listener))
1543 } else {
1544 Ok(None)
1545 }
1546 };
1547
1548 let vtl0_vsock_listener = vsock_listener(opt.vmbus_vsock_path.as_deref())?;
1549 let vtl2_vsock_listener = vsock_listener(opt.vmbus_vtl2_vsock_path.as_deref())?;
1550
1551 if let Some(path) = &opt.openhcl_dump_path {
1552 let (resource, task) = spawn_dump_handler(&spawner, path.clone(), None);
1553 task.detach();
1554 vmbus_devices.push((openhcl_vtl, resource));
1555 }
1556
1557 #[cfg(guest_arch = "aarch64")]
1558 let topology_arch = openvmm_defs::config::ArchTopologyConfig::Aarch64(
1559 openvmm_defs::config::Aarch64TopologyConfig {
1560 gic_config: None,
1562 pmu_gsiv: openvmm_defs::config::PmuGsivConfig::Platform,
1563 gic_msi: match opt.gic_msi {
1564 cli_args::GicMsiCli::Auto => openvmm_defs::config::GicMsiConfig::Auto,
1565 cli_args::GicMsiCli::Its => openvmm_defs::config::GicMsiConfig::Its,
1566 cli_args::GicMsiCli::V2m => {
1567 openvmm_defs::config::GicMsiConfig::V2m { spi_count: None }
1568 }
1569 },
1570 },
1571 );
1572 #[cfg(guest_arch = "x86_64")]
1573 let topology_arch =
1574 openvmm_defs::config::ArchTopologyConfig::X86(openvmm_defs::config::X86TopologyConfig {
1575 apic_id_offset: opt.apic_id_offset,
1576 x2apic: opt.x2apic,
1577 });
1578
1579 let with_isolation = if let Some(isolation) = &opt.isolation {
1580 if !opt.vtl2 {
1582 anyhow::bail!("isolation is only currently supported with vtl2");
1583 }
1584
1585 if !opt.no_alias_map {
1587 anyhow::bail!("alias map not supported with isolation");
1588 }
1589
1590 match isolation {
1591 cli_args::IsolationCli::Vbs => Some(openvmm_defs::config::IsolationType::Vbs),
1592 }
1593 } else {
1594 None
1595 };
1596
1597 if with_hv && !opt.no_vmbus {
1598 let (shutdown_send, shutdown_recv) = mesh::channel();
1599 resources.shutdown_ic = Some(shutdown_send);
1600 let (kvp_send, kvp_recv) = mesh::channel();
1601 resources.kvp_ic = Some(kvp_send);
1602 vmbus_devices.extend(
1603 [
1604 hyperv_ic_resources::shutdown::ShutdownIcHandle {
1605 recv: shutdown_recv,
1606 }
1607 .into_resource(),
1608 hyperv_ic_resources::kvp::KvpIcHandle { recv: kvp_recv }.into_resource(),
1609 hyperv_ic_resources::timesync::TimesyncIcHandle.into_resource(),
1610 ]
1611 .map(|r| (DeviceVtl::Vtl0, r)),
1612 );
1613 }
1614
1615 if let Some(hive_path) = &opt.imc {
1616 let file = fs_err::File::open(hive_path).context("failed to open imc hive")?;
1617 vmbus_devices.push((
1618 DeviceVtl::Vtl0,
1619 vmbfs_resources::VmbfsImcDeviceHandle { file: file.into() }.into_resource(),
1620 ));
1621 }
1622
1623 let mut virtio_devices = Vec::new();
1624 let mut add_virtio_device = |bus, resource: Resource<VirtioDeviceHandle>| {
1625 let bus = match bus {
1626 VirtioBusCli::Auto => {
1627 if with_hv && (cfg!(windows) || cfg!(target_os = "macos")) {
1630 None
1631 } else {
1632 Some(VirtioBus::Pci)
1633 }
1634 }
1635 VirtioBusCli::Mmio => Some(VirtioBus::Mmio),
1636 VirtioBusCli::Pci => Some(VirtioBus::Pci),
1637 VirtioBusCli::Vpci => None,
1638 };
1639 if let Some(bus) = bus {
1640 virtio_devices.push((bus, resource));
1641 } else {
1642 vpci_devices.push(VpciDeviceConfig {
1643 vtl: DeviceVtl::Vtl0,
1644 instance_id: Guid::new_random(),
1645 resource: VirtioPciDeviceHandle(resource).into_resource(),
1646 vnode: None,
1647 });
1648 }
1649 };
1650
1651 for cli_cfg in &opt.virtio_net {
1652 if cli_cfg.underhill {
1653 anyhow::bail!("use --net uh:[...] to add underhill NICs")
1654 }
1655 let vport = parse_endpoint(cli_cfg, &mut nic_index, &mut resources)?;
1656 let resource = virtio_resources::net::VirtioNetHandle {
1657 max_queues: vport.max_queues,
1658 mac_address: vport.mac_address,
1659 endpoint: vport.endpoint,
1660 }
1661 .into_resource();
1662 if let Some(pcie_port) = &cli_cfg.pcie_port {
1663 pcie_devices.push(PcieDeviceConfig {
1664 port_name: pcie_port.clone(),
1665 resource: VirtioPciDeviceHandle(resource).into_resource(),
1666 });
1667 } else {
1668 add_virtio_device(VirtioBusCli::Auto, resource);
1669 }
1670 }
1671
1672 for args in &opt.virtio_fs {
1673 let resource: Resource<VirtioDeviceHandle> = virtio_resources::fs::VirtioFsHandle {
1674 tag: args.tag.clone(),
1675 fs: virtio_resources::fs::VirtioFsBackend::HostFs {
1676 root_path: args.path.clone(),
1677 mount_options: args.options.clone(),
1678 },
1679 }
1680 .into_resource();
1681 if let Some(pcie_port) = &args.pcie_port {
1682 pcie_devices.push(PcieDeviceConfig {
1683 port_name: pcie_port.clone(),
1684 resource: VirtioPciDeviceHandle(resource).into_resource(),
1685 });
1686 } else {
1687 add_virtio_device(opt.virtio_fs_bus, resource);
1688 }
1689 }
1690
1691 for args in &opt.virtio_fs_shmem {
1692 let resource: Resource<VirtioDeviceHandle> = virtio_resources::fs::VirtioFsHandle {
1693 tag: args.tag.clone(),
1694 fs: virtio_resources::fs::VirtioFsBackend::SectionFs {
1695 root_path: args.path.clone(),
1696 },
1697 }
1698 .into_resource();
1699 if let Some(pcie_port) = &args.pcie_port {
1700 pcie_devices.push(PcieDeviceConfig {
1701 port_name: pcie_port.clone(),
1702 resource: VirtioPciDeviceHandle(resource).into_resource(),
1703 });
1704 } else {
1705 add_virtio_device(opt.virtio_fs_bus, resource);
1706 }
1707 }
1708
1709 for args in &opt.virtio_9p {
1710 let resource: Resource<VirtioDeviceHandle> = virtio_resources::p9::VirtioPlan9Handle {
1711 tag: args.tag.clone(),
1712 root_path: args.path.clone(),
1713 debug: opt.virtio_9p_debug,
1714 }
1715 .into_resource();
1716 if let Some(pcie_port) = &args.pcie_port {
1717 pcie_devices.push(PcieDeviceConfig {
1718 port_name: pcie_port.clone(),
1719 resource: VirtioPciDeviceHandle(resource).into_resource(),
1720 });
1721 } else {
1722 add_virtio_device(VirtioBusCli::Auto, resource);
1723 }
1724 }
1725
1726 if let Some(pmem_args) = &opt.virtio_pmem {
1727 let resource: Resource<VirtioDeviceHandle> = virtio_resources::pmem::VirtioPmemHandle {
1728 path: pmem_args.path.clone(),
1729 }
1730 .into_resource();
1731 if let Some(pcie_port) = &pmem_args.pcie_port {
1732 pcie_devices.push(PcieDeviceConfig {
1733 port_name: pcie_port.clone(),
1734 resource: VirtioPciDeviceHandle(resource).into_resource(),
1735 });
1736 } else {
1737 add_virtio_device(VirtioBusCli::Auto, resource);
1738 }
1739 }
1740
1741 if opt.virtio_rng {
1742 let resource: Resource<VirtioDeviceHandle> =
1743 virtio_resources::rng::VirtioRngHandle.into_resource();
1744 if let Some(pcie_port) = &opt.virtio_rng_pcie_port {
1745 pcie_devices.push(PcieDeviceConfig {
1746 port_name: pcie_port.clone(),
1747 resource: VirtioPciDeviceHandle(resource).into_resource(),
1748 });
1749 } else {
1750 add_virtio_device(opt.virtio_rng_bus, resource);
1751 }
1752 }
1753
1754 if let Some(backend) = virtio_console_backend {
1755 let resource: Resource<VirtioDeviceHandle> =
1756 virtio_resources::console::VirtioConsoleHandle { backend }.into_resource();
1757 if let Some(pcie_port) = &opt.virtio_console_pcie_port {
1758 pcie_devices.push(PcieDeviceConfig {
1759 port_name: pcie_port.clone(),
1760 resource: VirtioPciDeviceHandle(resource).into_resource(),
1761 });
1762 } else {
1763 add_virtio_device(VirtioBusCli::Auto, resource);
1764 }
1765 }
1766
1767 #[cfg(target_os = "linux")]
1769 for vhost_cli in &opt.vhost_user {
1770 let stream =
1771 unix_socket::UnixStream::connect(&vhost_cli.socket_path).with_context(|| {
1772 format!(
1773 "failed to connect to vhost-user socket: {}",
1774 vhost_cli.socket_path
1775 )
1776 })?;
1777
1778 use crate::cli_args::VhostUserDeviceTypeCli;
1779 let resource: Resource<VirtioDeviceHandle> = match vhost_cli.device_type {
1780 VhostUserDeviceTypeCli::Fs {
1781 ref tag,
1782 num_queues,
1783 queue_size,
1784 } => virtio_resources::vhost_user::VhostUserFsHandle {
1785 socket: stream.into(),
1786 tag: tag.clone(),
1787 num_queues,
1788 queue_size,
1789 }
1790 .into_resource(),
1791 VhostUserDeviceTypeCli::Blk {
1792 num_queues,
1793 queue_size,
1794 } => virtio_resources::vhost_user::VhostUserBlkHandle {
1795 socket: stream.into(),
1796 num_queues,
1797 queue_size,
1798 }
1799 .into_resource(),
1800 VhostUserDeviceTypeCli::Other {
1801 device_id,
1802 ref queue_sizes,
1803 } => virtio_resources::vhost_user::VhostUserGenericHandle {
1804 socket: stream.into(),
1805 device_id,
1806 queue_sizes: queue_sizes.clone(),
1807 }
1808 .into_resource(),
1809 };
1810 if let Some(pcie_port) = &vhost_cli.pcie_port {
1811 pcie_devices.push(PcieDeviceConfig {
1812 port_name: pcie_port.clone(),
1813 resource: VirtioPciDeviceHandle(resource).into_resource(),
1814 });
1815 } else {
1816 add_virtio_device(VirtioBusCli::Auto, resource);
1817 }
1818 }
1819
1820 if let Some(vsock_path) = &opt.virtio_vsock_path {
1821 let listener = vsock_listener(Some(vsock_path))?.unwrap();
1822 add_virtio_device(
1823 VirtioBusCli::Auto,
1824 virtio_resources::vsock::VirtioVsockHandle {
1825 guest_cid: 0x3,
1828 base_path: vsock_path.clone(),
1829 listener,
1830 }
1831 .into_resource(),
1832 );
1833 }
1834
1835 let mut cfg = Config {
1836 chipset,
1837 load_mode,
1838 floppy_disks,
1839 pcie_root_complexes,
1840 #[cfg(target_os = "linux")]
1841 pcie_devices: {
1842 let mut devs = pcie_devices;
1843 devs.extend(vfio_pcie_devices);
1844 devs
1845 },
1846 #[cfg(not(target_os = "linux"))]
1847 pcie_devices,
1848 pcie_switches,
1849 vpci_devices,
1850 ide_disks: Vec::new(),
1851 numa: {
1852 if let Some(ref nodes) = opt.numa {
1853 NumaTopology {
1855 nodes: nodes
1856 .iter()
1857 .map(|n| NumaNode {
1858 mem: Some(MemoryConfig {
1859 mem_size: n.memory.mem_size,
1860 prefetch_memory: n.memory.prefetch,
1861 private_memory: n.memory.shared == Some(false),
1862 transparent_hugepages: n.memory.transparent_hugepages,
1863 hugepages: n.memory.hugepages,
1864 hugepage_size: n.memory.hugepage_size,
1865 host_numa_node: n.host_numa_node,
1866 }),
1867 vps: match &n.vps {
1868 Some(vps) => VpAssignment::Explicit(vps.clone()),
1869 None => VpAssignment::FromTopology,
1870 },
1871 })
1872 .collect(),
1873 distances: opt
1874 .numa_distance
1875 .as_deref()
1876 .unwrap_or(&[])
1877 .iter()
1878 .map(|d| NumaDistance {
1879 src: d.src,
1880 dst: d.dst,
1881 distance: d.distance,
1882 })
1883 .collect(),
1884 }
1885 } else {
1886 NumaTopology {
1888 nodes: vec![NumaNode {
1889 mem: Some(MemoryConfig {
1890 mem_size: opt.memory_size(),
1891 prefetch_memory: opt.prefetch_memory(),
1892 private_memory: opt.private_memory(),
1893 transparent_hugepages: opt.transparent_hugepages(),
1894 hugepages: opt.memory.hugepages,
1895 hugepage_size: opt.memory.hugepage_size,
1896 host_numa_node: None,
1897 }),
1898 vps: VpAssignment::FromTopology,
1899 }],
1900 distances: vec![],
1901 }
1902 }
1903 },
1904 processor_topology: ProcessorTopologyConfig {
1905 proc_count: opt.processors,
1906 vps_per_socket: opt.vps_per_socket,
1907 enable_smt: match opt.smt {
1908 cli_args::SmtConfigCli::Auto => None,
1909 cli_args::SmtConfigCli::Force => Some(true),
1910 cli_args::SmtConfigCli::Off => Some(false),
1911 },
1912 arch: Some(topology_arch),
1913 },
1914 hypervisor: HypervisorConfig {
1915 with_hv,
1916 with_vtl2: opt.vtl2.then_some(Vtl2Config {
1917 vtl0_alias_map: !opt.no_alias_map,
1918 late_map_vtl0_memory: match opt.late_map_vtl0_policy {
1919 cli_args::Vtl0LateMapPolicyCli::Off => None,
1920 cli_args::Vtl0LateMapPolicyCli::Log => Some(LateMapVtl0MemoryPolicy::Log),
1921 cli_args::Vtl0LateMapPolicyCli::Halt => Some(LateMapVtl0MemoryPolicy::Halt),
1922 cli_args::Vtl0LateMapPolicyCli::Exception => {
1923 Some(LateMapVtl0MemoryPolicy::InjectException)
1924 }
1925 },
1926 }),
1927 with_isolation,
1928 },
1929 #[cfg(windows)]
1930 kernel_vmnics,
1931 input: mesh::Receiver::new(),
1932 framebuffer,
1933 vga_firmware,
1934 vtl2_gfx: opt.vtl2_gfx,
1935 virtio_devices,
1936 vmbus: (with_hv && !opt.no_vmbus).then_some(VmbusConfig {
1937 vsock_listener: vtl0_vsock_listener,
1938 vsock_path: opt.vmbus_vsock_path.clone(),
1939 vtl2_redirect: opt.vmbus_redirect,
1940 vmbus_max_version: opt.vmbus_max_version,
1941 #[cfg(windows)]
1942 vmbusproxy_handle,
1943 }),
1944 vtl2_vmbus: (with_hv && opt.vtl2).then_some(VmbusConfig {
1945 vsock_listener: vtl2_vsock_listener,
1946 vsock_path: opt.vmbus_vtl2_vsock_path.clone(),
1947 ..Default::default()
1948 }),
1949 vmbus_devices,
1950 chipset_devices,
1951 pci_chipset_devices,
1952 isa_dma_controller,
1953 chipset_capabilities: capabilities,
1954 layout: layout_config,
1955 #[cfg(windows)]
1956 vpci_resources,
1957 vmgs,
1958 secure_boot_enabled: opt.secure_boot,
1959 custom_uefi_vars,
1960 firmware_event_send: None,
1961 debugger_rpc: None,
1962 rtc_delta_milliseconds: 0,
1963 automatic_guest_reset: matches!(opt.guest_reset_action, GuestPowerAction::Reset),
1967 efi_diagnostics_log_level: {
1968 match opt.efi_diagnostics_log_level.unwrap_or_default() {
1969 EfiDiagnosticsLogLevelCli::Default => EfiDiagnosticsLogLevelType::Default,
1970 EfiDiagnosticsLogLevelCli::Info => EfiDiagnosticsLogLevelType::Info,
1971 EfiDiagnosticsLogLevelCli::Full => EfiDiagnosticsLogLevelType::Full,
1972 }
1973 },
1974 };
1975
1976 storage.build_config(&mut cfg, &mut resources, opt.scsi_sub_channels)?;
1977 Ok((cfg, resources))
1978}
1979
1980pub(crate) fn openvmm_terminal_app() -> Option<PathBuf> {
1982 std::env::var_os("OPENVMM_TERM")
1983 .or_else(|| std::env::var_os("HVLITE_TERM"))
1984 .map(Into::into)
1985}
1986
1987fn cleanup_socket(path: &Path) {
1989 #[cfg(windows)]
1990 let is_socket = pal::windows::fs::is_unix_socket(path).unwrap_or(false);
1991 #[cfg(not(windows))]
1992 let is_socket = path
1993 .metadata()
1994 .is_ok_and(|meta| std::os::unix::fs::FileTypeExt::is_socket(&meta.file_type()));
1995
1996 if is_socket {
1997 let _ = std::fs::remove_file(path);
1998 }
1999}
2000
2001#[cfg(windows)]
2002fn new_switch_port(
2003 switch_id: Option<&str>,
2004) -> anyhow::Result<(
2005 openvmm_defs::config::SwitchPortId,
2006 vmswitch::kernel::SwitchPort,
2007)> {
2008 let id = vmswitch::kernel::SwitchPortId {
2009 switch: match switch_id {
2010 Some(s) => s.parse().context("invalid switch id")?,
2011 None => vmswitch::hcn::DEFAULT_SWITCH,
2012 },
2013 port: Guid::new_random(),
2014 };
2015 let _ = vmswitch::hcn::Network::open(&id.switch)
2016 .with_context(|| format!("could not find switch {}", id.switch))?;
2017
2018 let port = vmswitch::kernel::SwitchPort::new(&id).context("failed to create switch port")?;
2019
2020 let id = openvmm_defs::config::SwitchPortId {
2021 switch: id.switch,
2022 port: id.port,
2023 };
2024 Ok((id, port))
2025}
2026
2027fn parse_endpoint(
2028 cli_cfg: &NicConfigCli,
2029 index: &mut usize,
2030 resources: &mut VmResources,
2031) -> anyhow::Result<NicConfig> {
2032 let _ = resources;
2033 let endpoint = match &cli_cfg.endpoint {
2034 EndpointConfigCli::Consomme { cidr, host_fwd } => {
2035 let ports = host_fwd
2036 .iter()
2037 .map(|fwd| {
2038 use net_backend_resources::consomme::HostPortProtocol;
2039 net_backend_resources::consomme::HostPortConfig {
2040 protocol: match fwd.protocol {
2041 cli_args::HostPortProtocolCli::Tcp => HostPortProtocol::Tcp,
2042 cli_args::HostPortProtocolCli::Udp => HostPortProtocol::Udp,
2043 },
2044 host_address: fwd
2045 .host_address
2046 .map(net_backend_resources::consomme::HostIpAddress::from),
2047 host_port: net_backend_resources::consomme::HostPort::Fixed(fwd.host_port),
2048 guest_port: fwd.guest_port,
2049 }
2050 })
2051 .collect();
2052 net_backend_resources::consomme::ConsommeHandle {
2053 cidr: cidr.clone(),
2054 ports,
2055 }
2056 .into_resource()
2057 }
2058 EndpointConfigCli::None => net_backend_resources::null::NullHandle.into_resource(),
2059 EndpointConfigCli::Dio { id } => {
2060 #[cfg(windows)]
2061 {
2062 let (port_id, port) = new_switch_port(id.as_deref())?;
2063 resources.switch_ports.push(port);
2064 net_backend_resources::dio::WindowsDirectIoHandle {
2065 switch_port_id: net_backend_resources::dio::SwitchPortId {
2066 switch: port_id.switch,
2067 port: port_id.port,
2068 },
2069 }
2070 .into_resource()
2071 }
2072
2073 #[cfg(not(windows))]
2074 {
2075 let _ = id;
2076 bail!("cannot use dio on non-windows platforms")
2077 }
2078 }
2079 EndpointConfigCli::Tap { name } => {
2080 #[cfg(target_os = "linux")]
2081 {
2082 let fd = net_tap::tap::open_tap(name)
2083 .with_context(|| format!("failed to open TAP device '{name}'"))?;
2084 net_backend_resources::tap::TapHandle { fd }.into_resource()
2085 }
2086
2087 #[cfg(not(target_os = "linux"))]
2088 {
2089 let _ = name;
2090 bail!("TAP backend is only supported on Linux")
2091 }
2092 }
2093 };
2094
2095 let mut mac_address = [0x00, 0x15, 0x5D, 0, 0, 0];
2097 getrandom::fill(&mut mac_address[3..]).expect("rng failure");
2098
2099 const BASE_INSTANCE_ID: Guid = guid::guid!("00000000-da43-11ed-936a-00155d6db52f");
2101 let instance_id = Guid {
2102 data1: *index as u32,
2103 ..BASE_INSTANCE_ID
2104 };
2105 *index += 1;
2106
2107 Ok(NicConfig {
2108 vtl: cli_cfg.vtl,
2109 instance_id,
2110 endpoint,
2111 mac_address: mac_address.into(),
2112 max_queues: cli_cfg.max_queues,
2113 pcie_port: cli_cfg.pcie_port.clone(),
2114 })
2115}
2116
2117#[derive(Debug)]
2118struct NicConfig {
2119 vtl: DeviceVtl,
2120 instance_id: Guid,
2121 mac_address: MacAddress,
2122 endpoint: Resource<NetEndpointHandleKind>,
2123 max_queues: Option<u16>,
2124 pcie_port: Option<String>,
2125}
2126
2127impl NicConfig {
2128 fn into_netvsp_handle(self) -> (DeviceVtl, Resource<VmbusDeviceHandleKind>) {
2129 (
2130 self.vtl,
2131 netvsp_resources::NetvspHandle {
2132 instance_id: self.instance_id,
2133 mac_address: self.mac_address,
2134 endpoint: self.endpoint,
2135 max_queues: self.max_queues,
2136 }
2137 .into_resource(),
2138 )
2139 }
2140}
2141
2142enum LayerOrDisk {
2143 Layer(DiskLayerDescription),
2144 Disk(Resource<DiskHandleKind>),
2145}
2146
2147async fn disk_open(
2148 disk_cli: &DiskCliKind,
2149 read_only: bool,
2150) -> anyhow::Result<Resource<DiskHandleKind>> {
2151 let mut layers = Vec::new();
2152 disk_open_inner(disk_cli, read_only, &mut layers).await?;
2153 if layers.len() == 1 && matches!(layers[0], LayerOrDisk::Disk(_)) {
2154 let LayerOrDisk::Disk(disk) = layers.pop().unwrap() else {
2155 unreachable!()
2156 };
2157 Ok(disk)
2158 } else {
2159 Ok(Resource::new(disk_backend_resources::LayeredDiskHandle {
2160 layers: layers
2161 .into_iter()
2162 .map(|layer| match layer {
2163 LayerOrDisk::Layer(layer) => layer,
2164 LayerOrDisk::Disk(disk) => DiskLayerDescription {
2165 layer: DiskLayerHandle(disk).into_resource(),
2166 read_cache: false,
2167 write_through: false,
2168 },
2169 })
2170 .collect(),
2171 }))
2172 }
2173}
2174
2175fn disk_open_inner<'a>(
2176 disk_cli: &'a DiskCliKind,
2177 read_only: bool,
2178 layers: &'a mut Vec<LayerOrDisk>,
2179) -> futures::future::BoxFuture<'a, anyhow::Result<()>> {
2180 Box::pin(async move {
2181 fn layer<T: IntoResource<DiskLayerHandleKind>>(layer: T) -> LayerOrDisk {
2182 LayerOrDisk::Layer(layer.into_resource().into())
2183 }
2184 fn disk<T: IntoResource<DiskHandleKind>>(disk: T) -> LayerOrDisk {
2185 LayerOrDisk::Disk(disk.into_resource())
2186 }
2187 match disk_cli {
2188 &DiskCliKind::Memory(len) => {
2189 layers.push(layer(RamDiskLayerHandle {
2190 len: Some(len),
2191 sector_size: None,
2192 }));
2193 }
2194 DiskCliKind::File {
2195 path,
2196 create_with_len,
2197 direct,
2198 } => layers.push(LayerOrDisk::Disk(if let Some(size) = create_with_len {
2199 create_disk_type(
2200 path,
2201 *size,
2202 OpenDiskOptions {
2203 read_only: false,
2204 direct: *direct,
2205 },
2206 )
2207 .with_context(|| format!("failed to create {}", path.display()))?
2208 } else {
2209 open_disk_type(
2210 path,
2211 OpenDiskOptions {
2212 read_only,
2213 direct: *direct,
2214 },
2215 )
2216 .await
2217 .with_context(|| format!("failed to open {}", path.display()))?
2218 })),
2219 DiskCliKind::Blob { kind, url } => {
2220 layers.push(disk(disk_backend_resources::BlobDiskHandle {
2221 url: url.to_owned(),
2222 format: match kind {
2223 cli_args::BlobKind::Flat => disk_backend_resources::BlobDiskFormat::Flat,
2224 cli_args::BlobKind::Vhd1 => {
2225 disk_backend_resources::BlobDiskFormat::FixedVhd1
2226 }
2227 },
2228 }))
2229 }
2230 DiskCliKind::MemoryDiff(inner) => {
2231 layers.push(layer(RamDiskLayerHandle {
2232 len: None,
2233 sector_size: None,
2234 }));
2235 disk_open_inner(inner, true, layers).await?;
2236 }
2237 DiskCliKind::PersistentReservationsWrapper(inner) => {
2238 layers.push(disk(disk_backend_resources::DiskWithReservationsHandle(
2239 disk_open(inner, read_only).await?,
2240 )))
2241 }
2242 DiskCliKind::DelayDiskWrapper {
2243 delay_ms,
2244 disk: inner,
2245 } => layers.push(disk(DelayDiskHandle {
2246 delay: CellUpdater::new(Duration::from_millis(*delay_ms)).cell(),
2247 disk: disk_open(inner, read_only).await?,
2248 })),
2249 DiskCliKind::Crypt {
2250 disk: inner,
2251 cipher,
2252 key_file,
2253 } => layers.push(disk(disk_crypt_resources::DiskCryptHandle {
2254 disk: disk_open(inner, read_only).await?,
2255 cipher: match cipher {
2256 cli_args::DiskCipher::XtsAes256 => disk_crypt_resources::Cipher::XtsAes256,
2257 },
2258 key: fs_err::read(key_file).context("failed to read key file")?,
2259 })),
2260 DiskCliKind::Sqlite {
2261 path,
2262 create_with_len,
2263 } => {
2264 match (create_with_len.is_some(), path.exists()) {
2269 (true, true) => anyhow::bail!(
2270 "cannot create new sqlite disk at {} - file already exists",
2271 path.display()
2272 ),
2273 (false, false) => anyhow::bail!(
2274 "cannot open sqlite disk at {} - file not found",
2275 path.display()
2276 ),
2277 _ => {}
2278 }
2279
2280 layers.push(layer(SqliteDiskLayerHandle {
2281 dbhd_path: path.display().to_string(),
2282 format_dbhd: create_with_len.map(|len| {
2283 disk_backend_resources::layer::SqliteDiskLayerFormatParams {
2284 logically_read_only: false,
2285 len: Some(len),
2286 }
2287 }),
2288 }));
2289 }
2290 DiskCliKind::SqliteDiff { path, create, disk } => {
2291 match (create, path.exists()) {
2296 (true, true) => anyhow::bail!(
2297 "cannot create new sqlite disk at {} - file already exists",
2298 path.display()
2299 ),
2300 (false, false) => anyhow::bail!(
2301 "cannot open sqlite disk at {} - file not found",
2302 path.display()
2303 ),
2304 _ => {}
2305 }
2306
2307 layers.push(layer(SqliteDiskLayerHandle {
2308 dbhd_path: path.display().to_string(),
2309 format_dbhd: create.then_some(
2310 disk_backend_resources::layer::SqliteDiskLayerFormatParams {
2311 logically_read_only: false,
2312 len: None,
2313 },
2314 ),
2315 }));
2316 disk_open_inner(disk, true, layers).await?;
2317 }
2318 DiskCliKind::AutoCacheSqlite {
2319 cache_path,
2320 key,
2321 disk,
2322 } => {
2323 layers.push(LayerOrDisk::Layer(DiskLayerDescription {
2324 read_cache: true,
2325 write_through: false,
2326 layer: SqliteAutoCacheDiskLayerHandle {
2327 cache_path: cache_path.clone(),
2328 cache_key: key.clone(),
2329 }
2330 .into_resource(),
2331 }));
2332 disk_open_inner(disk, read_only, layers).await?;
2333 }
2334 }
2335 Ok(())
2336 })
2337}
2338
2339pub(crate) fn system_page_size() -> u32 {
2341 sparse_mmap::SparseMapping::page_size() as u32
2342}
2343
2344pub(crate) const GUEST_ARCH: &str = if cfg!(guest_arch = "x86_64") {
2346 "x86_64"
2347} else {
2348 "aarch64"
2349};
2350
2351fn prepare_snapshot_restore(
2354 snapshot_dir: &Path,
2355 opt: &Options,
2356) -> anyhow::Result<(
2357 openvmm_defs::worker::SharedMemoryFd,
2358 mesh::payload::message::ProtobufMessage,
2359)> {
2360 let (manifest, state_bytes) = openvmm_helpers::snapshot::read_snapshot(snapshot_dir)?;
2361
2362 openvmm_helpers::snapshot::validate_manifest(
2364 &manifest,
2365 GUEST_ARCH,
2366 opt.memory_size(),
2367 opt.processors,
2368 system_page_size(),
2369 )?;
2370
2371 let memory_file = fs_err::OpenOptions::new()
2373 .read(true)
2374 .write(true)
2375 .open(snapshot_dir.join("memory.bin"))?;
2376
2377 let file_size = memory_file.metadata()?.len();
2379 if file_size != manifest.memory_size_bytes {
2380 anyhow::bail!(
2381 "memory.bin size ({file_size} bytes) doesn't match manifest ({} bytes)",
2382 manifest.memory_size_bytes,
2383 );
2384 }
2385
2386 let shared_memory_fd =
2387 openvmm_helpers::shared_memory::file_to_shared_memory_fd(memory_file.into())?;
2388
2389 let state_msg: mesh::payload::message::ProtobufMessage = mesh::payload::decode(&state_bytes)
2393 .context("failed to decode saved state from snapshot")?;
2394
2395 Ok((shared_memory_fd, state_msg))
2396}
2397
2398fn do_main(pidfile_guard: &mut Option<pidfile::Pidfile>) -> anyhow::Result<i32> {
2399 #[cfg(windows)]
2400 pal::windows::disable_hard_error_dialog();
2401
2402 tracing_init::enable_tracing()?;
2403
2404 meshworker::run_vmm_mesh_host()?;
2408
2409 let opt = cli_args::parse_options();
2410 if let Some(path) = &opt.write_saved_state_proto {
2411 mesh::payload::protofile::DescriptorWriter::new(vmcore::save_restore::saved_state_roots())
2412 .write_to_path(path)
2413 .context("failed to write protobuf descriptors")?;
2414 return Ok(0);
2415 }
2416
2417 if let Some(ref path) = opt.pidfile {
2418 *pidfile_guard = Some(pidfile::Pidfile::new(path).context("failed to create pidfile")?);
2419 }
2420
2421 if let Some(path) = opt.relay_console_path {
2422 let console_title = opt.relay_console_title.unwrap_or_default();
2423 return console_relay::relay_console(&path, console_title.as_str()).map(|()| 0);
2424 }
2425
2426 #[cfg(any(feature = "grpc", feature = "ttrpc"))]
2427 if let Some(path) = opt.ttrpc.as_ref().or(opt.grpc.as_ref()) {
2428 return block_on(async {
2429 let _ = std::fs::remove_file(path);
2430 let listener =
2431 unix_socket::UnixListener::bind(path).context("failed to bind to socket")?;
2432
2433 let transport = if opt.ttrpc.is_some() {
2434 ttrpc::RpcTransport::Ttrpc
2435 } else {
2436 ttrpc::RpcTransport::Grpc
2437 };
2438
2439 let mut handle =
2441 mesh_worker::launch_local_worker::<ttrpc::TtrpcWorker>(ttrpc::Parameters {
2442 listener,
2443 transport,
2444 })
2445 .await?;
2446
2447 tracing::info!(%transport, path = %path.display(), "listening");
2448
2449 pal::close_stdout().context("failed to close stdout")?;
2451
2452 handle.join().await?;
2453
2454 Ok(0)
2455 });
2456 }
2457
2458 DefaultPool::run_with(async |driver| run_control(&driver, opt).await)
2459}
2460
2461fn new_hvsock_service_id(port: u32) -> Guid {
2462 Guid {
2465 data1: port,
2466 .."00000000-facb-11e6-bd58-64006a7986d3".parse().unwrap()
2467 }
2468}
2469
2470async fn run_control(driver: &DefaultDriver, opt: Options) -> anyhow::Result<i32> {
2471 let mut mesh = Some(VmmMesh::new(&driver, opt.single_process)?);
2472 let result = run_control_inner(driver, &mut mesh, opt).await;
2473 if let Some(mesh) = mesh {
2476 mesh.shutdown().await;
2477 }
2478 result
2479}
2480
2481async fn run_control_inner(
2482 driver: &DefaultDriver,
2483 mesh_slot: &mut Option<VmmMesh>,
2484 opt: Options,
2485) -> anyhow::Result<i32> {
2486 let mesh = mesh_slot.as_ref().unwrap();
2487 let (mut vm_config, mut resources) = vm_config_from_command_line(driver, mesh, &opt).await?;
2488
2489 let mut vnc_worker = None;
2490 if opt.gfx || opt.vnc.vnc {
2491 let addr: std::net::SocketAddr = if let Ok(sa) =
2494 opt.vnc.vnc_listen.parse::<std::net::SocketAddr>()
2495 {
2496 sa
2497 } else {
2498 let ip: std::net::IpAddr = opt.vnc.vnc_listen.parse().with_context(|| {
2499 format!(
2500 "invalid VNC listen address: {} (expected IP address or socket address like [::1]:5900)",
2501 opt.vnc.vnc_listen
2502 )
2503 })?;
2504 std::net::SocketAddr::new(ip, opt.vnc.vnc_port)
2505 };
2506
2507 let socket = socket2::Socket::new(
2508 if addr.is_ipv6() {
2509 socket2::Domain::IPV6
2510 } else {
2511 socket2::Domain::IPV4
2512 },
2513 socket2::Type::STREAM,
2514 None,
2515 )
2516 .with_context(|| format!("creating VNC socket for {}", addr))?;
2517
2518 if addr.is_ipv6() {
2519 if let Err(e) = socket.set_only_v6(false) {
2520 tracing::warn!(
2521 error = %e,
2522 "failed to enable dual-stack on IPv6 VNC socket, IPv4 clients may not be able to connect"
2523 );
2524 }
2525 }
2526 socket.set_reuse_address(true)?;
2527 socket
2528 .bind(&addr.into())
2529 .with_context(|| format!("binding VNC socket to {}", addr))?;
2530 socket
2531 .listen(128)
2532 .with_context(|| format!("listening on VNC socket {}", addr))?;
2533 let listener: TcpListener = socket.into();
2534
2535 if !addr.ip().is_loopback() {
2536 tracing::warn!(
2537 address = %addr,
2538 "VNC server listening on non-localhost address without authentication"
2539 );
2540 }
2541
2542 let input_send = vm_config.input.sender();
2543 let framebuffer = resources
2544 .framebuffer_access
2545 .take()
2546 .expect("synth video enabled");
2547
2548 let vnc_host = mesh
2549 .make_host("vnc", None)
2550 .await
2551 .context("spawning vnc process failed")?;
2552
2553 vnc_worker = Some(
2554 vnc_host
2555 .launch_worker(
2556 vnc_worker_defs::VNC_WORKER_TCP,
2557 VncParameters {
2558 listener,
2559 framebuffer,
2560 input_send,
2561 dirty_recv: resources.dirty_rect_recv.take(),
2562 max_clients: opt.vnc.vnc_max_clients,
2563 evict_oldest: opt.vnc.vnc_evict_oldest,
2564 },
2565 )
2566 .await?,
2567 )
2568 }
2569
2570 let gdb_worker = if let Some(port) = opt.gdb {
2572 let listener = TcpListener::bind(format!("127.0.0.1:{}", port))
2573 .with_context(|| format!("binding to gdb port {}", port))?;
2574
2575 let (req_tx, req_rx) = mesh::channel();
2576 vm_config.debugger_rpc = Some(req_rx);
2577
2578 let gdb_host = mesh
2579 .make_host("gdb", None)
2580 .await
2581 .context("spawning gdbstub process failed")?;
2582
2583 Some(
2584 gdb_host
2585 .launch_worker(
2586 debug_worker_defs::DEBUGGER_WORKER,
2587 debug_worker_defs::DebuggerParameters {
2588 listener,
2589 req_chan: req_tx,
2590 vp_count: vm_config.processor_topology.proc_count,
2591 target_arch: if cfg!(guest_arch = "x86_64") {
2592 debug_worker_defs::TargetArch::X86_64
2593 } else {
2594 debug_worker_defs::TargetArch::Aarch64
2595 },
2596 },
2597 )
2598 .await
2599 .context("failed to launch gdbstub worker")?,
2600 )
2601 } else {
2602 None
2603 };
2604
2605 let (vm_rpc, rpc_recv) = mesh::channel();
2607 let (notify_send, notify_recv) = mesh::channel();
2608 let vm_worker = {
2609 let vm_host = mesh.make_host("vm", opt.log_file.clone()).await?;
2610
2611 let (shared_memory, saved_state) = if let Some(snapshot_dir) = &opt.restore_snapshot {
2612 let (fd, state_msg) = prepare_snapshot_restore(snapshot_dir, &opt)?;
2613 (Some(fd), Some(state_msg))
2614 } else {
2615 let shared_memory = opt
2616 .memory_backing_file()
2617 .map(|path| {
2618 openvmm_helpers::shared_memory::open_memory_backing_file(
2619 path,
2620 opt.memory_size(),
2621 )
2622 })
2623 .transpose()?;
2624 (shared_memory, None)
2625 };
2626
2627 let params = VmWorkerParameters {
2628 hypervisor: match &opt.hypervisor {
2629 Some(name) => openvmm_helpers::hypervisor::hypervisor_resource(name)?,
2630 None => openvmm_helpers::hypervisor::choose_hypervisor()?,
2631 },
2632 cfg: vm_config,
2633 saved_state,
2634 shared_memory,
2635 rpc: rpc_recv,
2636 notify: notify_send,
2637 };
2638 vm_host
2639 .launch_worker(VM_WORKER, params)
2640 .await
2641 .context("failed to launch vm worker")?
2642 };
2643
2644 if opt.restore_snapshot.is_some() {
2645 tracing::info!("restoring VM from snapshot");
2646 }
2647
2648 if !opt.paused {
2649 vm_rpc.call(VmRpc::Resume, ()).await?;
2650 }
2651
2652 let paravisor_diag = Arc::new(diag_client::DiagClient::from_dialer(
2653 driver.clone(),
2654 DiagDialer {
2655 driver: driver.clone(),
2656 vm_rpc: vm_rpc.clone(),
2657 openhcl_vtl: if opt.vtl2 {
2658 DeviceVtl::Vtl2
2659 } else {
2660 DeviceVtl::Vtl0
2661 },
2662 },
2663 ));
2664
2665 let diag_inspector = DiagInspector::new(driver.clone(), paravisor_diag.clone());
2666
2667 let (vm_controller_send, vm_controller_recv) = mesh::channel();
2669 let (vm_controller_event_send, vm_controller_event_recv) = mesh::channel();
2670
2671 let has_vtl2 = resources.vtl2_settings.is_some();
2672
2673 let controller = vm_controller::VmController {
2675 mesh: mesh_slot.take().unwrap(),
2676 vm_worker,
2677 vnc_worker,
2678 gdb_worker,
2679 diag_inspector: Some(diag_inspector),
2680 vtl2_settings: resources.vtl2_settings,
2681 ged_rpc: resources.ged_rpc.clone(),
2682 vm_rpc: vm_rpc.clone(),
2683 paravisor_diag: Some(paravisor_diag),
2684 igvm_path: opt.igvm.clone(),
2685 memory_backing_file: opt.memory_backing_file().cloned(),
2686 memory: opt.memory_size(),
2687 processors: opt.processors,
2688 log_file: opt.log_file.clone(),
2689 guest_power_actions: vm_controller::GuestPowerActions {
2690 shutdown: opt.guest_shutdown_action,
2691 reset: opt.guest_reset_action,
2692 crash: opt.guest_crash_action,
2693 watchdog: opt.guest_watchdog_action,
2694 },
2695 };
2696
2697 let controller_task = driver.spawn(
2699 "vm-controller",
2700 controller.run(vm_controller_recv, vm_controller_event_send, notify_recv),
2701 );
2702
2703 let repl_result = repl::run_repl(
2705 driver,
2706 repl::ReplResources {
2707 vm_rpc,
2708 vm_controller: vm_controller_send,
2709 vm_controller_events: vm_controller_event_recv,
2710 scsi_rpc: resources.scsi_rpc,
2711 nvme_vtl2_rpc: resources.nvme_vtl2_rpc,
2712 shutdown_ic: resources.shutdown_ic,
2713 kvp_ic: resources.kvp_ic,
2714 console_in: resources.console_in,
2715 has_vtl2,
2716 },
2717 )
2718 .await;
2719
2720 controller_task.await;
2723
2724 repl_result
2727}
2728
2729struct DiagDialer {
2730 driver: DefaultDriver,
2731 vm_rpc: mesh::Sender<VmRpc>,
2732 openhcl_vtl: DeviceVtl,
2733}
2734
2735impl mesh_rpc::client::Dial for DiagDialer {
2736 type Stream = PolledSocket<unix_socket::UnixStream>;
2737
2738 async fn dial(&mut self) -> io::Result<Self::Stream> {
2739 let service_id = new_hvsock_service_id(1);
2740 let socket = self
2741 .vm_rpc
2742 .call_failable(
2743 VmRpc::ConnectHvsock,
2744 (
2745 CancelContext::new().with_timeout(Duration::from_secs(2)),
2746 service_id,
2747 self.openhcl_vtl,
2748 ),
2749 )
2750 .await
2751 .map_err(io::Error::other)?;
2752
2753 PolledSocket::new(&self.driver, socket)
2754 }
2755}
2756
2757pub(crate) struct DiagInspector(DiagInspectorInner);
2764
2765enum DiagInspectorInner {
2766 NotStarted(DefaultDriver, Arc<diag_client::DiagClient>),
2767 Started {
2768 send: mesh::Sender<inspect::Deferred>,
2769 _task: Task<()>,
2770 },
2771 Invalid,
2772}
2773
2774impl DiagInspector {
2775 pub fn new(driver: DefaultDriver, diag_client: Arc<diag_client::DiagClient>) -> Self {
2776 Self(DiagInspectorInner::NotStarted(driver, diag_client))
2777 }
2778
2779 fn start(&mut self) -> &mesh::Sender<inspect::Deferred> {
2780 loop {
2781 match self.0 {
2782 DiagInspectorInner::NotStarted { .. } => {
2783 let DiagInspectorInner::NotStarted(driver, client) =
2784 std::mem::replace(&mut self.0, DiagInspectorInner::Invalid)
2785 else {
2786 unreachable!()
2787 };
2788 let (send, recv) = mesh::channel();
2789 let task = driver.clone().spawn("diag-inspect", async move {
2790 Self::run(&client, recv).await
2791 });
2792
2793 self.0 = DiagInspectorInner::Started { send, _task: task };
2794 }
2795 DiagInspectorInner::Started { ref send, .. } => break send,
2796 DiagInspectorInner::Invalid => unreachable!(),
2797 }
2798 }
2799 }
2800
2801 async fn run(
2802 diag_client: &diag_client::DiagClient,
2803 mut recv: mesh::Receiver<inspect::Deferred>,
2804 ) {
2805 while let Some(deferred) = recv.next().await {
2806 let info = deferred.external_request();
2807 let result = match info.request_type {
2808 inspect::ExternalRequestType::Inspect { depth } => {
2809 if depth == 0 {
2810 Ok(inspect::Node::Unevaluated)
2811 } else {
2812 diag_client
2814 .inspect(info.path, Some(depth - 1), Some(Duration::from_secs(1)))
2815 .await
2816 }
2817 }
2818 inspect::ExternalRequestType::Update { value } => {
2819 (diag_client.update(info.path, value).await).map(inspect::Node::Value)
2820 }
2821 };
2822 deferred.complete_external(
2823 result.unwrap_or_else(|err| {
2824 inspect::Node::Failed(inspect::Error::Mesh(format!("{err:#}")))
2825 }),
2826 inspect::SensitivityLevel::Unspecified,
2827 )
2828 }
2829 }
2830}
2831
2832impl InspectMut for DiagInspector {
2833 fn inspect_mut(&mut self, req: inspect::Request<'_>) {
2834 self.start().send(req.defer());
2835 }
2836}