1#![expect(missing_docs)]
8#![forbid(unsafe_code)]
9
10mod cli_args;
11mod crash_dump;
12mod kvp;
13mod meshworker;
14mod pidfile;
15mod repl;
16mod serial_io;
17mod storage_builder;
18mod tracing_init;
19mod ttrpc;
20mod vm_controller;
21
22pub use cli_args::Options;
25use console_relay::ConsoleLaunchOptions;
26
27use crate::cli_args::SecureBootTemplateCli;
28use anyhow::Context;
29use anyhow::bail;
30use chipset_resources::battery::HostBatteryUpdate;
31use cli_args::DiskCliKind;
32use cli_args::EfiDiagnosticsLogLevelCli;
33use cli_args::EndpointConfigCli;
34use cli_args::GuestPowerAction;
35use cli_args::NicConfigCli;
36use cli_args::ProvisionVmgs;
37use cli_args::SerialConfigCli;
38use cli_args::UefiConsoleModeCli;
39use cli_args::VirtioBusCli;
40use cli_args::VmgsCli;
41use crash_dump::spawn_dump_handler;
42use cxl_spec::test::CxlTestDeviceHandle;
43use disk_backend_resources::DelayDiskHandle;
44use disk_backend_resources::DiskLayerDescription;
45use disk_backend_resources::layer::DiskLayerHandle;
46use disk_backend_resources::layer::RamDiskLayerHandle;
47use disk_backend_resources::layer::SqliteAutoCacheDiskLayerHandle;
48use disk_backend_resources::layer::SqliteDiskLayerHandle;
49use floppy_resources::FloppyDiskConfig;
50use framebuffer::FRAMEBUFFER_SIZE;
51use framebuffer::FramebufferAccess;
52use futures::AsyncReadExt;
53use futures::AsyncWrite;
54use futures::StreamExt;
55use futures::executor::block_on;
56use futures::io::AllowStdIo;
57use gdma_resources::GdmaDeviceHandle;
58use gdma_resources::VportDefinition;
59use guid::Guid;
60use input_core::MultiplexedInputHandle;
61use inspect::InspectMut;
62use io::Read;
63use mesh::CancelContext;
64use mesh::CellUpdater;
65use mesh::rpc::RpcSend;
66use meshworker::VmmMesh;
67use net_backend_resources::mac_address::MacAddress;
68use nvme_resources::NvmeControllerRequest;
69use openvmm_defs::config::Config;
70use openvmm_defs::config::DEFAULT_PCAT_BOOT_ORDER;
71use openvmm_defs::config::DeviceVtl;
72use openvmm_defs::config::EfiDiagnosticsLogLevelType;
73use openvmm_defs::config::HypervisorConfig;
74use openvmm_defs::config::LateMapVtl0MemoryPolicy;
75use openvmm_defs::config::LoadMode;
76use openvmm_defs::config::MemoryConfig;
77use openvmm_defs::config::NumaDistance;
78use openvmm_defs::config::NumaNode;
79use openvmm_defs::config::NumaTopology;
80use openvmm_defs::config::PcieDeviceConfig;
81use openvmm_defs::config::PcieMmioRangeConfig;
82use openvmm_defs::config::PcieRootComplexConfig;
83use openvmm_defs::config::PcieRootPortConfig;
84use openvmm_defs::config::PcieSwitchConfig;
85use openvmm_defs::config::ProcessorTopologyConfig;
86use openvmm_defs::config::RootComplexCxlConfig;
87use openvmm_defs::config::SerialInformation;
88use openvmm_defs::config::VirtioBus;
89use openvmm_defs::config::VmbusConfig;
90use openvmm_defs::config::VpAssignment;
91use openvmm_defs::config::VpciDeviceConfig;
92use openvmm_defs::config::Vtl2Config;
93use openvmm_defs::rpc::VmRpc;
94use openvmm_defs::worker::VM_WORKER;
95use openvmm_defs::worker::VmWorkerParameters;
96use openvmm_helpers::disk::OpenDiskOptions;
97use openvmm_helpers::disk::create_disk_type;
98use openvmm_helpers::disk::open_disk_type;
99use pal_async::DefaultDriver;
100use pal_async::DefaultPool;
101use pal_async::socket::PolledSocket;
102use pal_async::task::Spawn;
103use pal_async::task::Task;
104use serial_16550_resources::ComPort;
105use serial_core::resources::DisconnectedSerialBackendHandle;
106use sparse_mmap::alloc_shared_memory;
107use std::cell::RefCell;
108use std::collections::BTreeMap;
109use std::fmt::Write as _;
110use std::future::pending;
111use std::io;
112#[cfg(unix)]
113use std::io::IsTerminal;
114use std::io::Write;
115use std::net::TcpListener;
116use std::path::Path;
117use std::path::PathBuf;
118use std::sync::Arc;
119use std::thread;
120use std::time::Duration;
121use storvsp_resources::ScsiControllerRequest;
122use tpm_resources::TpmDeviceHandle;
123use tpm_resources::TpmRegisterLayout;
124use uidevices_resources::SynthKeyboardHandle;
125use uidevices_resources::SynthMouseHandle;
126use uidevices_resources::SynthVideoHandle;
127use video_core::SharedFramebufferHandle;
128use virtio_resources::VirtioPciDeviceHandle;
129use vm_manifest_builder::BaseChipsetType;
130use vm_manifest_builder::MachineArch;
131use vm_manifest_builder::VmChipsetResult;
132use vm_manifest_builder::VmManifestBuilder;
133use vm_resource::IntoResource;
134use vm_resource::Resource;
135use vm_resource::kind::DiskHandleKind;
136use vm_resource::kind::DiskLayerHandleKind;
137use vm_resource::kind::NetEndpointHandleKind;
138use vm_resource::kind::VirtioDeviceHandle;
139use vm_resource::kind::VmbusDeviceHandleKind;
140use vmbus_serial_resources::VmbusSerialDeviceHandle;
141use vmbus_serial_resources::VmbusSerialPort;
142use vmcore::non_volatile_store::resources::EphemeralNonVolatileStoreHandle;
143use vmgs_resources::GuestStateEncryptionPolicy;
144use vmgs_resources::VmgsDisk;
145use vmgs_resources::VmgsFileHandle;
146use vmgs_resources::VmgsResource;
147use vmotherboard::ChipsetDeviceHandle;
148use vnc_worker_defs::VncParameters;
149
150pub fn openvmm_main() {
151 #[cfg(unix)]
154 let orig_termios = io::stderr().is_terminal().then(term::get_termios);
155
156 let mut pidfile_guard: Option<pidfile::Pidfile> = None;
157 let exit_code = match do_main(&mut pidfile_guard) {
158 Ok(code) => code,
159 Err(err) => {
160 eprintln!("fatal error: {:?}", err);
161 1
162 }
163 };
164
165 #[cfg(unix)]
167 if let Some(orig_termios) = orig_termios {
168 term::set_termios(orig_termios);
169 }
170
171 drop(pidfile_guard);
174
175 let _ = io::stdout().flush();
181 pal::process::terminate(exit_code);
182}
183
184#[derive(Default)]
185struct VmResources {
186 console_in: Option<Box<dyn AsyncWrite + Send + Unpin>>,
187 framebuffer_access: Option<FramebufferAccess>,
188 shutdown_ic: Option<mesh::Sender<hyperv_ic_resources::shutdown::ShutdownRpc>>,
189 kvp_ic: Option<mesh::Sender<hyperv_ic_resources::kvp::KvpConnectRpc>>,
190 scsi_rpc: Option<mesh::Sender<ScsiControllerRequest>>,
191 nvme_vtl2_rpc: Option<mesh::Sender<NvmeControllerRequest>>,
192 ged_rpc: Option<mesh::Sender<get_resources::ged::GuestEmulationRequest>>,
193 vtl2_settings: Option<vtl2_settings_proto::Vtl2Settings>,
194 dirty_rect_recv: Option<mesh::Receiver<Vec<video_core::DirtyRect>>>,
196 #[cfg(windows)]
197 switch_ports: Vec<vmswitch::kernel::SwitchPort>,
198}
199
200struct ConsoleState<'a> {
201 device: &'a str,
202 input: Box<dyn AsyncWrite + Unpin + Send>,
203}
204
205fn build_switch_list(all_switches: &[cli_args::GenericPcieSwitchCli]) -> Vec<PcieSwitchConfig> {
210 all_switches
211 .iter()
212 .map(|switch_cli| PcieSwitchConfig {
213 name: switch_cli.name.clone(),
214 num_downstream_ports: switch_cli.num_downstream_ports,
215 parent_port: switch_cli.port_name.clone(),
216 hotplug: switch_cli.hotplug,
217 acs_capabilities_supported: switch_cli.acs_capabilities_supported,
218 })
219 .collect()
220}
221
222async fn vm_config_from_command_line(
223 spawner: impl Spawn,
224 mesh: &VmmMesh,
225 opt: &Options,
226) -> anyhow::Result<(Config, VmResources)> {
227 let (_, serial_driver) = DefaultPool::spawn_on_thread("serial");
228 serial_driver.spawn("leak", pending::<()>()).detach();
230
231 let openhcl_vtl = if opt.vtl2 {
232 DeviceVtl::Vtl2
233 } else {
234 DeviceVtl::Vtl0
235 };
236
237 let console_state: RefCell<Option<ConsoleState<'_>>> = RefCell::new(None);
238 let setup_serial = |name: &str, cli_cfg, device| -> anyhow::Result<_> {
239 Ok(match cli_cfg {
240 SerialConfigCli::Console => {
241 if let Some(console_state) = console_state.borrow().as_ref() {
242 bail!("console already set by {}", console_state.device);
243 }
244 let (config, serial) = serial_io::anonymous_serial_pair(&serial_driver)?;
245 let (serial_read, serial_write) = AsyncReadExt::split(serial);
246 *console_state.borrow_mut() = Some(ConsoleState {
247 device,
248 input: Box::new(serial_write),
249 });
250 thread::Builder::new()
251 .name(name.to_owned())
252 .spawn(move || {
253 let _ = block_on(futures::io::copy(
254 serial_read,
255 &mut AllowStdIo::new(term::raw_stdout()),
256 ));
257 })
258 .unwrap();
259 Some(config)
260 }
261 SerialConfigCli::Stderr => {
262 let (config, serial) = serial_io::anonymous_serial_pair(&serial_driver)?;
263 thread::Builder::new()
264 .name(name.to_owned())
265 .spawn(move || {
266 let _ = block_on(futures::io::copy(
267 serial,
268 &mut AllowStdIo::new(term::raw_stderr()),
269 ));
270 })
271 .unwrap();
272 Some(config)
273 }
274 SerialConfigCli::File(path) => {
275 let (config, serial) = serial_io::anonymous_serial_pair(&serial_driver)?;
276 let file = fs_err::File::create(path).context("failed to create file")?;
277
278 thread::Builder::new()
279 .name(name.to_owned())
280 .spawn(move || {
281 let _ = block_on(futures::io::copy(serial, &mut AllowStdIo::new(file)));
282 })
283 .unwrap();
284 Some(config)
285 }
286 SerialConfigCli::None => None,
287 SerialConfigCli::Pipe(path) => {
288 Some(serial_io::bind_serial(&path).context("failed to bind serial")?)
289 }
290 SerialConfigCli::Tcp(addr) => {
291 Some(serial_io::bind_tcp_serial(&addr).context("failed to bind serial")?)
292 }
293 SerialConfigCli::NewConsole(app, window_title) => {
294 let path = console_relay::random_console_path();
295 let config =
296 serial_io::bind_serial(&path).context("failed to bind console serial")?;
297 let window_title =
298 window_title.unwrap_or_else(|| name.to_uppercase() + " [OpenVMM]");
299
300 console_relay::launch_console(
301 app.or_else(openvmm_terminal_app).as_deref(),
302 &path,
303 ConsoleLaunchOptions {
304 window_title: Some(window_title),
305 },
306 )
307 .context("failed to launch console")?;
308
309 Some(config)
310 }
311 })
312 };
313
314 let mut vmbus_devices = Vec::new();
315
316 let serial0_cfg = setup_serial(
317 "com1",
318 opt.com1.clone().unwrap_or(SerialConfigCli::Console),
319 if cfg!(guest_arch = "x86_64") {
320 "ttyS0"
321 } else {
322 "ttyAMA0"
323 },
324 )?;
325 let serial1_cfg = setup_serial(
326 "com2",
327 opt.com2.clone().unwrap_or(SerialConfigCli::None),
328 if cfg!(guest_arch = "x86_64") {
329 "ttyS1"
330 } else {
331 "ttyAMA1"
332 },
333 )?;
334 let serial2_cfg = setup_serial(
335 "com3",
336 opt.com3.clone().unwrap_or(SerialConfigCli::None),
337 if cfg!(guest_arch = "x86_64") {
338 "ttyS2"
339 } else {
340 "ttyAMA2"
341 },
342 )?;
343 let serial3_cfg = setup_serial(
344 "com4",
345 opt.com4.clone().unwrap_or(SerialConfigCli::None),
346 if cfg!(guest_arch = "x86_64") {
347 "ttyS3"
348 } else {
349 "ttyAMA3"
350 },
351 )?;
352 let with_vmbus_com1_serial = if let Some(vmbus_com1_cfg) = setup_serial(
353 "vmbus_com1",
354 opt.vmbus_com1_serial
355 .clone()
356 .unwrap_or(SerialConfigCli::None),
357 "vmbus_com1",
358 )? {
359 vmbus_devices.push((
360 openhcl_vtl,
361 VmbusSerialDeviceHandle {
362 port: VmbusSerialPort::Com1,
363 backend: vmbus_com1_cfg,
364 }
365 .into_resource(),
366 ));
367 true
368 } else {
369 false
370 };
371 let with_vmbus_com2_serial = if let Some(vmbus_com2_cfg) = setup_serial(
372 "vmbus_com2",
373 opt.vmbus_com2_serial
374 .clone()
375 .unwrap_or(SerialConfigCli::None),
376 "vmbus_com2",
377 )? {
378 vmbus_devices.push((
379 openhcl_vtl,
380 VmbusSerialDeviceHandle {
381 port: VmbusSerialPort::Com2,
382 backend: vmbus_com2_cfg,
383 }
384 .into_resource(),
385 ));
386 true
387 } else {
388 false
389 };
390 let debugcon_cfg = setup_serial(
391 "debugcon",
392 opt.debugcon
393 .clone()
394 .map(|cfg| cfg.serial)
395 .unwrap_or(SerialConfigCli::None),
396 "debugcon",
397 )?;
398
399 let virtio_console_backend = if let Some(serial_cfg) = opt.virtio_console.clone() {
400 setup_serial("virtio-console", serial_cfg, "hvc0")?
401 } else {
402 None
403 };
404
405 let mut resources = VmResources::default();
406 let mut console_str = "";
407 if let Some(ConsoleState { device, input }) = console_state.into_inner() {
408 resources.console_in = Some(input);
409 console_str = device;
410 }
411
412 if opt.shared_memory {
413 tracing::warn!("--shared-memory/-M flag has no effect and will be removed");
414 }
415 if opt.deprecated_prefetch {
416 tracing::warn!("--prefetch is deprecated; use --memory prefetch=on");
417 }
418 if opt.deprecated_private_memory {
419 tracing::warn!("--private-memory is deprecated; use --memory shared=off");
420 }
421 if opt.deprecated_thp {
422 tracing::warn!("--thp is deprecated; use --memory shared=off,thp=on");
423 }
424 if opt.deprecated_memory_backing_file.is_some() {
425 tracing::warn!("--memory-backing-file is deprecated; use --memory file=<path>");
426 }
427
428 opt.validate_memory_options()?;
429
430 const MAX_PROCESSOR_COUNT: u32 = 1024;
431
432 if opt.processors == 0 || opt.processors > MAX_PROCESSOR_COUNT {
433 bail!("invalid proc count: {}", opt.processors);
434 }
435
436 if opt.scsi_sub_channels > (MAX_PROCESSOR_COUNT - 1) as u16 {
439 bail!(
440 "invalid SCSI sub-channel count: requested {}, max {}",
441 opt.scsi_sub_channels,
442 MAX_PROCESSOR_COUNT - 1
443 );
444 }
445
446 let with_get = opt.get || (opt.vtl2 && !opt.no_get);
447
448 let mut storage = storage_builder::StorageBuilder::new(with_get.then_some(openhcl_vtl));
449
450 for ctrl in &opt.nvme_pci {
453 let transport = match &ctrl.transport {
454 cli_args::NvmeControllerTransport::Pcie(port) => {
455 storage_builder::NvmeControllerTransport::Pcie(port.clone())
456 }
457 cli_args::NvmeControllerTransport::Vpci(guid) => {
458 let guid = guid.unwrap_or_else(|| storage_builder::deterministic_guid(&ctrl.id));
459 storage_builder::NvmeControllerTransport::Vpci(guid)
460 }
461 };
462 storage.add_nvme_controller(ctrl.id.clone(), ctrl.vtl, transport, None)?;
463 }
464
465 for ctrl in &opt.vmbus_scsi {
466 let instance_id = storage_builder::deterministic_guid(&ctrl.id);
467 storage.add_scsi_controller(ctrl.id.clone(), ctrl.vtl, instance_id, ctrl.sub_channels)?;
468 }
469
470 for ctrl in &opt.openhcl_controller {
471 let controller_type = match ctrl.controller_type {
472 cli_args::OpenhclControllerType::Scsi => storage_builder::OpenhclControllerType::Scsi,
473 cli_args::OpenhclControllerType::Nvme => storage_builder::OpenhclControllerType::Nvme,
474 };
475 let instance_id = ctrl
476 .guid
477 .unwrap_or_else(|| storage_builder::deterministic_guid(&ctrl.id));
478 storage.add_openhcl_controller(ctrl.id.clone(), controller_type, instance_id)?;
479 }
480
481 for &cli_args::DiskCli {
482 vtl,
483 ref kind,
484 read_only,
485 is_dvd,
486 underhill,
487 ref pcie_port,
488 ref controller,
489 nsid,
490 lun,
491 ref relay,
492 } in &opt.disk
493 {
494 if controller.is_none() && underhill.is_none() && relay.is_none() {
495 tracing::warn!(
496 "--disk without `on` is deprecated; \
497 use --vmbus-scsi and --disk on=<name> instead"
498 );
499 }
500
501 let relay_target = relay
502 .as_ref()
503 .map(|(name, loc)| storage_builder::RelayTarget {
504 controller: name.clone(),
505 location: *loc,
506 });
507
508 let target = if let Some(name) = controller {
509 if pcie_port.is_some() {
510 anyhow::bail!("`on` is incompatible with `pcie_port` on `--disk`");
511 }
512 storage_builder::DiskLocation::Named {
513 controller: name.clone(),
514 nsid,
515 lun,
516 }
517 } else if pcie_port.is_some() {
518 anyhow::bail!("`--disk` is incompatible with `pcie_port` without `controller`");
519 } else {
520 storage_builder::DiskLocation::Scsi(None)
521 };
522
523 storage
524 .add(
525 vtl,
526 underhill,
527 relay_target,
528 target,
529 kind,
530 is_dvd,
531 read_only,
532 )
533 .await?;
534 }
535
536 for &cli_args::IdeDiskCli {
537 ref kind,
538 read_only,
539 channel,
540 device,
541 is_dvd,
542 } in &opt.ide
543 {
544 storage
545 .add(
546 DeviceVtl::Vtl0,
547 None,
548 None,
549 storage_builder::DiskLocation::Ide(channel, device),
550 kind,
551 is_dvd,
552 read_only,
553 )
554 .await?;
555 }
556
557 if !opt.nvme.is_empty() {
558 tracing::warn!("--nvme is deprecated; use --nvme-pci and --disk on=<name> instead");
559
560 let mut registered_ports = std::collections::BTreeSet::new();
562 for disk in &opt.nvme {
563 if let Some(port) = &disk.pcie_port {
564 if registered_ports.insert(port.clone()) {
565 storage.add_nvme_controller(
566 port.clone(),
567 DeviceVtl::Vtl0,
568 storage_builder::NvmeControllerTransport::Pcie(port.clone()),
569 None,
570 ).with_context(|| format!(
571 "legacy --nvme flag conflicts with an explicit controller named '{port}'; \
572 use --nvme-pci and --disk on=<name> instead"
573 ))?;
574 }
575 }
576 }
577 }
578
579 for &cli_args::DiskCli {
580 vtl,
581 ref kind,
582 read_only,
583 is_dvd,
584 underhill,
585 ref pcie_port,
586 controller: _,
587 nsid: _,
588 lun: _,
589 relay: _,
590 } in &opt.nvme
591 {
592 let target = if let Some(port) = pcie_port {
593 storage_builder::DiskLocation::Named {
594 controller: port.clone(),
595 nsid: None,
596 lun: None,
597 }
598 } else {
599 storage_builder::DiskLocation::Nvme(None)
600 };
601 storage
602 .add(vtl, underhill, None, target, kind, is_dvd, read_only)
603 .await?;
604 }
605
606 for &cli_args::DiskCli {
607 vtl,
608 ref kind,
609 read_only,
610 is_dvd,
611 ref underhill,
612 ref pcie_port,
613 controller: _,
614 nsid: _,
615 lun: _,
616 relay: _,
617 } in &opt.virtio_blk
618 {
619 if underhill.is_some() {
620 anyhow::bail!("underhill not supported with virtio-blk");
621 }
622 storage
623 .add(
624 vtl,
625 None,
626 None,
627 storage_builder::DiskLocation::VirtioBlk(pcie_port.clone()),
628 kind,
629 is_dvd,
630 read_only,
631 )
632 .await?;
633 }
634
635 let mut floppy_disks = Vec::new();
636 for disk in &opt.floppy {
637 let &cli_args::FloppyDiskCli {
638 ref kind,
639 read_only,
640 } = disk;
641 floppy_disks.push(FloppyDiskConfig {
642 disk_type: disk_open(kind, read_only).await?,
643 read_only,
644 });
645 }
646
647 let mut vpci_mana_nics = [(); 3].map(|()| None);
648 let mut pcie_mana_nics = BTreeMap::<String, GdmaDeviceHandle>::new();
649 let mut underhill_nics = Vec::new();
650 let mut vpci_devices = Vec::new();
651
652 let mut nic_index = 0;
653 for cli_cfg in &opt.net {
654 if cli_cfg.pcie_port.is_some() {
655 anyhow::bail!("`--net` does not support PCIe");
656 }
657 let vport = parse_endpoint(cli_cfg, &mut nic_index, &mut resources)?;
658 if cli_cfg.underhill {
659 if !opt.no_alias_map {
660 anyhow::bail!("must specify --no-alias-map to offer NICs to VTL2");
661 }
662 let mana = vpci_mana_nics[openhcl_vtl as usize].get_or_insert_with(|| {
663 let vpci_instance_id = Guid::new_random();
664 underhill_nics.push(vtl2_settings_proto::NicDeviceLegacy {
665 instance_id: vpci_instance_id.to_string(),
666 subordinate_instance_id: None,
667 max_sub_channels: None,
668 });
669 (vpci_instance_id, GdmaDeviceHandle { vports: Vec::new() })
670 });
671 mana.1.vports.push(VportDefinition {
672 mac_address: vport.mac_address,
673 endpoint: vport.endpoint,
674 });
675 } else {
676 vmbus_devices.push(vport.into_netvsp_handle());
677 }
678 }
679
680 if opt.nic {
681 let nic_config = parse_endpoint(
682 &NicConfigCli {
683 vtl: DeviceVtl::Vtl0,
684 endpoint: EndpointConfigCli::Consomme {
685 cidr: None,
686 host_fwd: Vec::new(),
687 },
688 max_queues: None,
689 underhill: false,
690 pcie_port: None,
691 },
692 &mut nic_index,
693 &mut resources,
694 )?;
695 vmbus_devices.push(nic_config.into_netvsp_handle());
696 }
697
698 let mut pcie_devices = Vec::new();
701 for (index, cli_cfg) in opt.pcie_remote.iter().enumerate() {
702 tracing::info!(
703 port_name = %cli_cfg.port_name,
704 socket_addr = ?cli_cfg.socket_addr,
705 "instantiating PCIe remote device"
706 );
707
708 const PCIE_REMOTE_BASE_INSTANCE_ID: Guid =
710 guid::guid!("28ed784d-c059-429f-9d9a-46bea02562c0");
711 let instance_id = Guid {
712 data1: index as u32,
713 ..PCIE_REMOTE_BASE_INSTANCE_ID
714 };
715
716 pcie_devices.push(PcieDeviceConfig {
717 port_name: cli_cfg.port_name.clone(),
718 resource: pcie_remote_resources::PcieRemoteHandle {
719 instance_id,
720 socket_addr: cli_cfg.socket_addr.clone(),
721 hu: cli_cfg.hu,
722 controller: cli_cfg.controller,
723 }
724 .into_resource(),
725 });
726 }
727
728 #[cfg(windows)]
729 let mut kernel_vmnics = Vec::new();
730 #[cfg(windows)]
731 for (index, switch_id) in opt.kernel_vmnic.iter().enumerate() {
732 let mut mac_address = [0x00, 0x15, 0x5D, 0, 0, 0];
734 getrandom::fill(&mut mac_address[3..]).expect("rng failure");
735
736 const BASE_INSTANCE_ID: Guid = guid::guid!("00000000-435d-11ee-9f59-00155d5016fc");
738 let instance_id = Guid {
739 data1: index as u32,
740 ..BASE_INSTANCE_ID
741 };
742
743 let switch_id = if switch_id == "default" {
744 None
745 } else {
746 Some(switch_id.as_str())
747 };
748 let (port_id, port) = new_switch_port(switch_id)?;
749 resources.switch_ports.push(port);
750
751 kernel_vmnics.push(openvmm_defs::config::KernelVmNicConfig {
752 instance_id,
753 mac_address: mac_address.into(),
754 switch_port_id: port_id,
755 });
756 }
757
758 for vport in &opt.mana {
759 let vport = parse_endpoint(vport, &mut nic_index, &mut resources)?;
760 let vport_array = match (vport.vtl as usize, vport.pcie_port) {
761 (vtl, None) => {
762 &mut vpci_mana_nics[vtl]
763 .get_or_insert_with(|| {
764 (Guid::new_random(), GdmaDeviceHandle { vports: Vec::new() })
765 })
766 .1
767 .vports
768 }
769 (0, Some(pcie_port)) => {
770 &mut pcie_mana_nics
771 .entry(pcie_port)
772 .or_insert(GdmaDeviceHandle { vports: Vec::new() })
773 .vports
774 }
775 _ => anyhow::bail!("PCIe NICs only supported to VTL0"),
776 };
777 vport_array.push(VportDefinition {
778 mac_address: vport.mac_address,
779 endpoint: vport.endpoint,
780 });
781 }
782
783 vpci_devices.extend(
784 vpci_mana_nics
785 .into_iter()
786 .enumerate()
787 .filter_map(|(vtl, nic)| {
788 nic.map(|(instance_id, handle)| VpciDeviceConfig {
789 vtl: match vtl {
790 0 => DeviceVtl::Vtl0,
791 1 => DeviceVtl::Vtl1,
792 2 => DeviceVtl::Vtl2,
793 _ => unreachable!(),
794 },
795 instance_id,
796 resource: handle.into_resource(),
797 vnode: None,
798 })
799 }),
800 );
801
802 pcie_devices.extend(
803 pcie_mana_nics
804 .into_iter()
805 .map(|(pcie_port, handle)| PcieDeviceConfig {
806 port_name: pcie_port,
807 resource: handle.into_resource(),
808 }),
809 );
810
811 for cxl_test in &opt.cxl_test {
812 pcie_devices.push(PcieDeviceConfig {
813 port_name: cxl_test.pcie_port.clone(),
814 resource: CxlTestDeviceHandle {
815 hdm_size_bytes: cxl_test.hdm_size,
816 }
817 .into_resource(),
818 });
819 }
820
821 #[cfg(guest_arch = "aarch64")]
822 let arch = MachineArch::Aarch64;
823 #[cfg(guest_arch = "x86_64")]
824 let arch = MachineArch::X86_64;
825
826 let mut pcie_root_complexes = Vec::new();
827 for (i, rc_cli) in opt.pcie_root_complex.iter().enumerate() {
828 let ports: Vec<PcieRootPortConfig> = opt
829 .pcie_root_port
830 .iter()
831 .filter(|port_cli| port_cli.root_complex_name == rc_cli.name)
832 .map(|port_cli| PcieRootPortConfig {
833 name: port_cli.name.clone(),
834 hotplug: port_cli.hotplug,
835 acs_capabilities_supported: port_cli.acs_capabilities_supported,
836 cxl: port_cli.cxl,
837 })
838 .collect();
839
840 const ONE_MB: u64 = 1024 * 1024;
841 let low_mmio_size = (rc_cli.low_mmio as u64).next_multiple_of(ONE_MB);
843 let high_mmio_size = rc_cli
844 .high_mmio
845 .checked_next_multiple_of(ONE_MB)
846 .context("high mmio rounding error")?;
847
848 let cxl_port_count = ports.iter().filter(|port| port.cxl).count() as u64;
850
851 let cxl = if cxl_port_count != 0 {
852 Some(RootComplexCxlConfig {
853 hdm_size: rc_cli.hdm,
854 hdm_window_restrictions: rc_cli.hdm_window_restrictions.bits(),
855 })
856 } else {
857 None
858 };
859 pcie_root_complexes.push(PcieRootComplexConfig {
860 index: i as u32,
861 name: rc_cli.name.clone(),
862 segment: rc_cli.segment,
863 start_bus: rc_cli.start_bus,
864 end_bus: rc_cli.end_bus,
865 low_mmio: if let Some(base) = rc_cli.low_mmio_base {
866 PcieMmioRangeConfig::Fixed(
867 memory_range::MemoryRange::try_new(base..base.wrapping_add(low_mmio_size))
868 .context("invalid low MMIO range")?,
869 )
870 } else {
871 PcieMmioRangeConfig::Dynamic {
872 size: low_mmio_size,
873 }
874 },
875 high_mmio: if let Some(base) = rc_cli.high_mmio_base {
876 PcieMmioRangeConfig::Fixed(
877 memory_range::MemoryRange::try_new(base..base.wrapping_add(high_mmio_size))
878 .context("invalid high MMIO range")?,
879 )
880 } else {
881 PcieMmioRangeConfig::Dynamic {
882 size: high_mmio_size,
883 }
884 },
885 cxl,
886 ports,
887 #[cfg(guest_arch = "aarch64")]
888 iommu: opt
889 .smmu
890 .iter()
891 .any(|s| s == &rc_cli.name)
892 .then_some(openvmm_defs::config::PcieIommuConfig::Smmu),
893 #[cfg(guest_arch = "x86_64")]
894 iommu: opt
895 .amd_iommu
896 .iter()
897 .any(|s| s == &rc_cli.name)
898 .then_some(openvmm_defs::config::PcieIommuConfig::AmdVi),
899 vnode: rc_cli.vnode,
900 preserve_bars: rc_cli.preserve_bars,
901 });
902 }
903
904 #[cfg(guest_arch = "aarch64")]
906 for name in &opt.smmu {
907 anyhow::ensure!(
908 pcie_root_complexes.iter().any(|rc| rc.name == *name),
909 "--smmu refers to unknown root complex '{name}'"
910 );
911 }
912 #[cfg(guest_arch = "x86_64")]
913 for name in &opt.amd_iommu {
914 anyhow::ensure!(
915 pcie_root_complexes.iter().any(|rc| rc.name == *name),
916 "--amd-iommu refers to unknown root complex '{name}'"
917 );
918 }
919
920 let pcie_switches = build_switch_list(&opt.pcie_switch);
921
922 #[cfg(target_os = "linux")]
923 let vfio_pcie_devices: Vec<PcieDeviceConfig> = {
924 use std::collections::HashMap;
925 use vm_resource::IntoResource;
926
927 let mut iommu_map: HashMap<String, std::fs::File> = HashMap::new();
929 for iommu_cli in &opt.iommu {
930 anyhow::ensure!(
931 !iommu_map.contains_key(&iommu_cli.id),
932 "duplicate --iommu id={}",
933 iommu_cli.id
934 );
935 let file = std::fs::OpenOptions::new()
936 .read(true)
937 .write(true)
938 .open("/dev/iommu")
939 .context("failed to open /dev/iommu (is iommufd available?)")?;
940 iommu_map.insert(iommu_cli.id.clone(), file);
941 }
942
943 opt.vfio
944 .iter()
945 .map(|cli_cfg| {
946 let sysfs_path = Path::new("/sys/bus/pci/devices").join(&cli_cfg.pci_id);
947
948 if let Some(iommu_id) = &cli_cfg.iommu {
949 let iommufd = iommu_map.get(iommu_id).with_context(|| {
951 format!(
952 "--vfio device {} references iommu={iommu_id}, \
953 but no --iommu id={iommu_id} was specified",
954 cli_cfg.pci_id
955 )
956 })?;
957 let iommufd = iommufd.try_clone().with_context(|| {
962 format!("failed to dup iommufd fd for iommu={iommu_id}")
963 })?;
964
965 let vfio_dev_dir = sysfs_path.join("vfio-dev");
967 let entry = std::fs::read_dir(&vfio_dev_dir)
968 .with_context(|| {
969 format!(
970 "failed to read {}: is {} bound to vfio-pci?",
971 vfio_dev_dir.display(),
972 cli_cfg.pci_id
973 )
974 })?
975 .next()
976 .context("no vfio-dev entry found")?
977 .context("failed to read vfio-dev entry")?;
978 let dev_path = Path::new("/dev/vfio/devices").join(entry.file_name());
979 let cdev = std::fs::OpenOptions::new()
980 .read(true)
981 .write(true)
982 .open(&dev_path)
983 .with_context(|| format!("failed to open {}", dev_path.display()))?;
984
985 Ok(PcieDeviceConfig {
986 port_name: cli_cfg.port_name.clone(),
987 resource: vfio_assigned_device_resources::VfioCdevDeviceHandle {
988 pci_id: cli_cfg.pci_id.clone(),
989 cdev,
990 iommufd,
991 iommu_id: iommu_id.clone(),
992 bar_pt: cli_cfg.bar_pt,
993 }
994 .into_resource(),
995 })
996 } else {
997 let iommu_group_link = std::fs::read_link(sysfs_path.join("iommu_group"))
999 .with_context(|| {
1000 format!("failed to read IOMMU group for {}", cli_cfg.pci_id)
1001 })?;
1002 let group_id: u64 = iommu_group_link
1003 .file_name()
1004 .and_then(|s| s.to_str())
1005 .context("invalid iommu_group symlink")?
1006 .parse()
1007 .context("failed to parse IOMMU group ID")?;
1008 let group = std::fs::OpenOptions::new()
1009 .read(true)
1010 .write(true)
1011 .open(format!("/dev/vfio/{group_id}"))
1012 .with_context(|| format!("failed to open /dev/vfio/{group_id}"))?;
1013
1014 Ok(PcieDeviceConfig {
1015 port_name: cli_cfg.port_name.clone(),
1016 resource: vfio_assigned_device_resources::VfioDeviceHandle {
1017 pci_id: cli_cfg.pci_id.clone(),
1018 group,
1019 bar_pt: cli_cfg.bar_pt,
1020 }
1021 .into_resource(),
1022 })
1023 }
1024 })
1025 .collect::<anyhow::Result<Vec<_>>>()?
1026 };
1027
1028 #[cfg(windows)]
1029 let vpci_resources: Vec<_> = opt
1030 .device
1031 .iter()
1032 .map(|path| -> anyhow::Result<_> {
1033 Ok(virt_whp::device::DeviceHandle(
1034 whp::VpciResource::new(
1035 None,
1036 Default::default(),
1037 &whp::VpciResourceDescriptor::Sriov(path, 0, 0),
1038 )
1039 .with_context(|| format!("opening PCI device {}", path))?,
1040 ))
1041 })
1042 .collect::<Result<_, _>>()?;
1043
1044 #[cfg(windows)]
1046 let vmbusproxy_handle = if !kernel_vmnics.is_empty() {
1047 Some(vmbus_proxy::ProxyHandle::new().context("failed to open vmbusproxy handle")?)
1048 } else {
1049 None
1050 };
1051
1052 let framebuffer = if opt.gfx || opt.vtl2_gfx || opt.vnc.vnc || opt.pcat {
1053 let vram = alloc_shared_memory(FRAMEBUFFER_SIZE, "vram")?;
1054 let (fb, fba) =
1055 framebuffer::framebuffer(vram, FRAMEBUFFER_SIZE, 0).context("creating framebuffer")?;
1056 resources.framebuffer_access = Some(fba);
1057 Some(fb)
1058 } else {
1059 None
1060 };
1061
1062 let load_mode;
1063 let with_hv;
1064
1065 let any_serial_configured = serial0_cfg.is_some()
1066 || serial1_cfg.is_some()
1067 || serial2_cfg.is_some()
1068 || serial3_cfg.is_some();
1069
1070 let has_com3 = serial2_cfg.is_some();
1071
1072 let mut chipset = VmManifestBuilder::new(
1073 if opt.igvm.is_some() {
1074 BaseChipsetType::HclHost
1075 } else if opt.pcat {
1076 BaseChipsetType::HypervGen1
1077 } else if opt.uefi {
1078 BaseChipsetType::HypervGen2Uefi
1079 } else if opt.hv {
1080 BaseChipsetType::HyperVGen2LinuxDirect
1081 } else {
1082 BaseChipsetType::UnenlightenedLinuxDirect
1083 },
1084 arch,
1085 );
1086
1087 if framebuffer.is_some() {
1088 chipset = chipset.with_framebuffer();
1089 }
1090 if opt.guest_watchdog {
1091 chipset = chipset.with_guest_watchdog();
1092 }
1093 if any_serial_configured {
1094 chipset = chipset.with_serial([serial0_cfg, serial1_cfg, serial2_cfg, serial3_cfg]);
1095 }
1096 if opt.battery {
1097 let (tx, rx) = mesh::channel();
1098 tx.send(HostBatteryUpdate::default_present());
1099 chipset = chipset.with_battery(rx);
1100 }
1101 if opt.no_vmbus {
1102 chipset = chipset.without_vmbus();
1103 }
1104 if let Some(cfg) = &opt.debugcon {
1105 chipset = chipset.with_debugcon(
1106 debugcon_cfg.unwrap_or_else(|| DisconnectedSerialBackendHandle.into_resource()),
1107 cfg.port,
1108 );
1109 }
1110
1111 let custom_uefi_vars = {
1112 use firmware_uefi_custom_vars::CustomVars;
1113
1114 let base_vars = match opt.secure_boot_template {
1117 Some(template) => match (arch, template) {
1118 (MachineArch::X86_64, SecureBootTemplateCli::Windows) => {
1119 hyperv_secure_boot_templates::x64::microsoft_windows()
1120 }
1121 (MachineArch::X86_64, SecureBootTemplateCli::UefiCa) => {
1122 hyperv_secure_boot_templates::x64::microsoft_uefi_ca()
1123 }
1124 (MachineArch::Aarch64, SecureBootTemplateCli::Windows) => {
1125 hyperv_secure_boot_templates::aarch64::microsoft_windows()
1126 }
1127 (MachineArch::Aarch64, SecureBootTemplateCli::UefiCa) => {
1128 hyperv_secure_boot_templates::aarch64::microsoft_uefi_ca()
1129 }
1130 },
1131 None => CustomVars::default(),
1132 };
1133
1134 let custom_uefi_json_data = match &opt.custom_uefi_json {
1137 Some(file) => Some(fs_err::read(file).context("opening custom uefi json file")?),
1138 None => None,
1139 };
1140
1141 match custom_uefi_json_data {
1143 Some(data) => {
1144 let delta = hyperv_uefi_custom_vars_json::load_delta_from_json(&data)?;
1145 base_vars.apply_delta(delta)?
1146 }
1147 None => base_vars,
1148 }
1149 };
1150
1151 let efi_diagnostics_log_level = match opt.efi_diagnostics_log_level.unwrap_or_default() {
1152 EfiDiagnosticsLogLevelCli::Default => EfiDiagnosticsLogLevelType::Default,
1153 EfiDiagnosticsLogLevelCli::Info => EfiDiagnosticsLogLevelType::Info,
1154 EfiDiagnosticsLogLevelCli::Full => EfiDiagnosticsLogLevelType::Full,
1155 };
1156
1157 if opt.uefi {
1158 let log_level = match efi_diagnostics_log_level {
1159 EfiDiagnosticsLogLevelType::Default => {
1160 firmware_uefi_resources::LogLevel::make_default()
1161 }
1162 EfiDiagnosticsLogLevelType::Info => firmware_uefi_resources::LogLevel::make_info(),
1163 EfiDiagnosticsLogLevelType::Full => firmware_uefi_resources::LogLevel::make_full(),
1164 };
1165 let nvram_storage = if opt.vmgs.is_some() {
1166 VmgsFileHandle::new(vmgs_format::FileId::BIOS_NVRAM, true).into_resource()
1167 } else {
1168 EphemeralNonVolatileStoreHandle.into_resource()
1169 };
1170 chipset = chipset.with_uefi(vm_manifest_builder::UefiManifest::new(
1171 arch,
1172 custom_uefi_vars.clone(),
1173 opt.secure_boot,
1174 log_level,
1175 None,
1176 nvram_storage,
1177 None,
1178 ));
1179 }
1180
1181 let bios_guid = Guid::new_random();
1183
1184 let layout_config = chipset.layout_config();
1185 let VmChipsetResult {
1186 chipset,
1187 mut chipset_devices,
1188 pci_chipset_devices,
1189 isa_dma_controller,
1190 capabilities,
1191 } = chipset
1192 .build()
1193 .context("failed to build chipset configuration")?;
1194
1195 if opt.restore_snapshot.is_some() {
1196 load_mode = LoadMode::None;
1199 with_hv = true;
1200 } else if let Some(path) = &opt.igvm {
1201 let file = fs_err::File::open(path)
1202 .context("failed to open igvm file")?
1203 .into();
1204 let cmdline = opt.cmdline.join(" ");
1205 with_hv = true;
1206
1207 load_mode = LoadMode::Igvm {
1208 file,
1209 cmdline,
1210 vtl2_base_address: opt.igvm_vtl2_relocation_type,
1211 com_serial: has_com3.then(|| SerialInformation {
1212 io_port: ComPort::Com3.io_port(),
1213 irq: ComPort::Com3.irq().into(),
1214 }),
1215 };
1216 } else if opt.pcat {
1217 if arch != MachineArch::X86_64 {
1219 anyhow::bail!("pcat not supported on this architecture");
1220 }
1221 with_hv = true;
1222
1223 let firmware = openvmm_pcat_locator::find_pcat_bios(opt.pcat_firmware.as_deref())?;
1224 load_mode = LoadMode::Pcat {
1225 firmware,
1226 boot_order: opt
1227 .pcat_boot_order
1228 .map(|x| x.0)
1229 .unwrap_or(DEFAULT_PCAT_BOOT_ORDER),
1230 };
1231 } else if opt.uefi {
1232 use openvmm_defs::config::UefiConsoleMode;
1233
1234 with_hv = true;
1235
1236 let firmware = fs_err::File::open(
1237 (opt.uefi_firmware.0)
1238 .as_ref()
1239 .context("must provide uefi firmware when booting with uefi")?,
1240 )
1241 .context("failed to open uefi firmware")?;
1242
1243 load_mode = LoadMode::Uefi {
1246 firmware: firmware.into(),
1247 enable_debugging: opt.uefi_debug,
1248 enable_memory_protections: opt.uefi_enable_memory_protections,
1249 disable_frontpage: opt.disable_frontpage,
1250 enable_tpm: opt.tpm,
1251 enable_battery: opt.battery,
1252 enable_serial: any_serial_configured,
1253 enable_vpci_boot: false,
1254 uefi_console_mode: opt.uefi_console_mode.map(|m| match m {
1255 UefiConsoleModeCli::Default => UefiConsoleMode::Default,
1256 UefiConsoleModeCli::Com1 => UefiConsoleMode::Com1,
1257 UefiConsoleModeCli::Com2 => UefiConsoleMode::Com2,
1258 UefiConsoleModeCli::None => UefiConsoleMode::None,
1259 }),
1260 default_boot_always_attempt: opt.default_boot_always_attempt,
1261 bios_guid,
1262 enable_vmbus: !opt.no_vmbus,
1263 force_dma_bounce: opt.uefi_force_dma_bounce,
1264 };
1265 } else {
1266 let mut cmdline = "panic=-1 debug".to_string();
1268
1269 with_hv = opt.hv;
1270 if with_hv && opt.pcie_root_complex.is_empty() {
1271 cmdline += " pci=off";
1272 }
1273
1274 if !console_str.is_empty() {
1275 let _ = write!(&mut cmdline, " console={}", console_str);
1276 }
1277
1278 if opt.gfx {
1279 cmdline += " console=tty";
1280 }
1281 for extra in &opt.cmdline {
1282 let _ = write!(&mut cmdline, " {}", extra);
1283 }
1284
1285 let kernel = fs_err::File::open(
1286 (opt.kernel.0)
1287 .as_ref()
1288 .context("must provide kernel when booting with linux direct")?,
1289 )
1290 .context("failed to open kernel")?;
1291 let initrd = (opt.initrd.0)
1292 .as_ref()
1293 .map(fs_err::File::open)
1294 .transpose()
1295 .context("failed to open initrd")?;
1296
1297 let custom_dsdt = match &opt.custom_dsdt {
1298 Some(path) => {
1299 let mut v = Vec::new();
1300 fs_err::File::open(path)
1301 .context("failed to open custom dsdt")?
1302 .read_to_end(&mut v)
1303 .context("failed to read custom dsdt")?;
1304 Some(v)
1305 }
1306 None => None,
1307 };
1308
1309 load_mode = LoadMode::Linux {
1310 kernel: kernel.into(),
1311 initrd: initrd.map(Into::into),
1312 cmdline,
1313 custom_dsdt,
1314 enable_serial: any_serial_configured,
1315 boot_mode: if opt.device_tree {
1316 openvmm_defs::config::LinuxDirectBootMode::DeviceTree
1317 } else {
1318 openvmm_defs::config::LinuxDirectBootMode::Acpi
1319 },
1320 };
1321 }
1322
1323 let mut vmgs = Some(if let Some(VmgsCli { kind, provision }) = &opt.vmgs {
1324 let disk = VmgsDisk {
1325 disk: disk_open(kind, false)
1326 .await
1327 .context("failed to open vmgs disk")?,
1328 encryption_policy: if opt.test_gsp_by_id {
1329 GuestStateEncryptionPolicy::GspById(true)
1330 } else {
1331 GuestStateEncryptionPolicy::None(true)
1332 },
1333 };
1334 match provision {
1335 ProvisionVmgs::OnEmpty => VmgsResource::Disk(disk),
1336 ProvisionVmgs::OnFailure => VmgsResource::ReprovisionOnFailure(disk),
1337 ProvisionVmgs::True => VmgsResource::Reprovision(disk),
1338 }
1339 } else {
1340 VmgsResource::Ephemeral
1341 });
1342
1343 if with_get && with_hv {
1344 let has_vtl0_nvme = storage.has_vtl0_nvme();
1345 let vtl2_settings = vtl2_settings_proto::Vtl2Settings {
1346 version: vtl2_settings_proto::vtl2_settings_base::Version::V1.into(),
1347 fixed: Some(Default::default()),
1348 dynamic: Some(vtl2_settings_proto::Vtl2SettingsDynamic {
1349 storage_controllers: storage.build_openhcl_settings(opt.vmbus_redirect),
1350 nic_devices: underhill_nics,
1351 }),
1352 namespace_settings: Vec::default(),
1353 };
1354
1355 resources.vtl2_settings = Some(vtl2_settings.clone());
1357
1358 let (send, guest_request_recv) = mesh::channel();
1359 resources.ged_rpc = Some(send);
1360
1361 let vmgs = vmgs.take().unwrap();
1362
1363 vmbus_devices.extend([
1364 (
1365 openhcl_vtl,
1366 get_resources::gel::GuestEmulationLogHandle.into_resource(),
1367 ),
1368 (
1369 openhcl_vtl,
1370 get_resources::ged::GuestEmulationDeviceHandle {
1371 firmware: if opt.pcat {
1372 get_resources::ged::GuestFirmwareConfig::Pcat {
1373 boot_order: opt
1374 .pcat_boot_order
1375 .map_or(DEFAULT_PCAT_BOOT_ORDER, |x| x.0)
1376 .map(|x| match x {
1377 openvmm_defs::config::PcatBootDevice::Floppy => {
1378 get_resources::ged::PcatBootDevice::Floppy
1379 }
1380 openvmm_defs::config::PcatBootDevice::HardDrive => {
1381 get_resources::ged::PcatBootDevice::HardDrive
1382 }
1383 openvmm_defs::config::PcatBootDevice::Optical => {
1384 get_resources::ged::PcatBootDevice::Optical
1385 }
1386 openvmm_defs::config::PcatBootDevice::Network => {
1387 get_resources::ged::PcatBootDevice::Network
1388 }
1389 }),
1390 }
1391 } else {
1392 use get_resources::ged::UefiConsoleMode;
1393
1394 get_resources::ged::GuestFirmwareConfig::Uefi {
1395 enable_vpci_boot: has_vtl0_nvme,
1396 firmware_debug: opt.uefi_debug,
1397 disable_frontpage: opt.disable_frontpage,
1398 console_mode: match opt.uefi_console_mode.unwrap_or(UefiConsoleModeCli::Default) {
1399 UefiConsoleModeCli::Default => UefiConsoleMode::Default,
1400 UefiConsoleModeCli::Com1 => UefiConsoleMode::COM1,
1401 UefiConsoleModeCli::Com2 => UefiConsoleMode::COM2,
1402 UefiConsoleModeCli::None => UefiConsoleMode::None,
1403 },
1404 default_boot_always_attempt: opt.default_boot_always_attempt,
1405 }
1406 },
1407 com1: with_vmbus_com1_serial,
1408 com2: with_vmbus_com2_serial,
1409 serial_tx_only: opt.serial_tx_only,
1410 vtl2_settings: Some(prost::Message::encode_to_vec(&vtl2_settings)),
1411 vmbus_redirection: opt.vmbus_redirect,
1412 vmgs,
1413 framebuffer: opt
1414 .vtl2_gfx
1415 .then(|| SharedFramebufferHandle.into_resource()),
1416 guest_request_recv,
1417 enable_tpm: opt.tpm,
1418 firmware_event_send: None,
1419 secure_boot_enabled: opt.secure_boot,
1420 secure_boot_template: match opt.secure_boot_template {
1421 Some(SecureBootTemplateCli::Windows) => {
1422 get_resources::ged::GuestSecureBootTemplateType::MicrosoftWindows
1423 },
1424 Some(SecureBootTemplateCli::UefiCa) => {
1425 get_resources::ged::GuestSecureBootTemplateType::MicrosoftUefiCertificateAuthority
1426 }
1427 None => {
1428 get_resources::ged::GuestSecureBootTemplateType::None
1429 },
1430 },
1431 enable_battery: opt.battery,
1432 no_persistent_secrets: true,
1433 igvm_attest_test_config: None,
1434 test_gsp_by_id: opt.test_gsp_by_id,
1435 efi_diagnostics_log_level: {
1436 match opt.efi_diagnostics_log_level.unwrap_or_default() {
1437 EfiDiagnosticsLogLevelCli::Default => get_resources::ged::EfiDiagnosticsLogLevelType::Default,
1438 EfiDiagnosticsLogLevelCli::Info => get_resources::ged::EfiDiagnosticsLogLevelType::Info,
1439 EfiDiagnosticsLogLevelCli::Full => get_resources::ged::EfiDiagnosticsLogLevelType::Full,
1440 }
1441 },
1442 hv_sint_enabled: false,
1443 force_dma_bounce_enabled: opt.uefi_force_dma_bounce,
1444 }
1445 .into_resource(),
1446 ),
1447 ]);
1448 }
1449
1450 if opt.tpm && !opt.vtl2 {
1451 let register_layout = if cfg!(guest_arch = "x86_64") {
1452 TpmRegisterLayout::IoPort
1453 } else {
1454 TpmRegisterLayout::Mmio
1455 };
1456
1457 let (ppi_store, nvram_store) = if opt.vmgs.is_some() {
1458 (
1459 VmgsFileHandle::new(vmgs_format::FileId::TPM_PPI, true).into_resource(),
1460 VmgsFileHandle::new(vmgs_format::FileId::TPM_NVRAM, true).into_resource(),
1461 )
1462 } else {
1463 (
1464 EphemeralNonVolatileStoreHandle.into_resource(),
1465 EphemeralNonVolatileStoreHandle.into_resource(),
1466 )
1467 };
1468
1469 chipset_devices.push(ChipsetDeviceHandle {
1470 name: "tpm".to_string(),
1471 resource: chipset_device_worker_defs::RemoteChipsetDeviceHandle {
1472 device: TpmDeviceHandle {
1473 ppi_store,
1474 nvram_store,
1475 nvram_size: None,
1476 refresh_tpm_seeds: false,
1477 ak_cert_type: tpm_resources::TpmAkCertTypeResource::None,
1478 register_layout,
1479 guest_secret_key: None,
1480 logger: None,
1481 is_confidential_vm: false,
1482 bios_guid,
1483 }
1484 .into_resource(),
1485 worker_host: mesh.make_host("tpm", None).await?,
1486 }
1487 .into_resource(),
1488 });
1489 }
1490
1491 let vga_firmware = if opt.pcat {
1492 Some(openvmm_pcat_locator::find_svga_bios(
1493 opt.vga_firmware.as_deref(),
1494 )?)
1495 } else {
1496 None
1497 };
1498
1499 if opt.gfx {
1500 let (dirt_send, dirt_recv) = mesh::channel();
1502 resources.dirty_rect_recv = Some(dirt_recv);
1503
1504 vmbus_devices.extend([
1505 (
1506 DeviceVtl::Vtl0,
1507 SynthVideoHandle {
1508 framebuffer: SharedFramebufferHandle.into_resource(),
1509 dirt_send: Some(dirt_send),
1510 }
1511 .into_resource(),
1512 ),
1513 (
1514 DeviceVtl::Vtl0,
1515 SynthKeyboardHandle {
1516 source: MultiplexedInputHandle {
1517 elevation: 1,
1519 }
1520 .into_resource(),
1521 }
1522 .into_resource(),
1523 ),
1524 (
1525 DeviceVtl::Vtl0,
1526 SynthMouseHandle {
1527 source: MultiplexedInputHandle {
1528 elevation: 1,
1530 }
1531 .into_resource(),
1532 }
1533 .into_resource(),
1534 ),
1535 ]);
1536 }
1537
1538 let vsock_listener = |path: Option<&str>| -> anyhow::Result<_> {
1539 if let Some(path) = path {
1540 cleanup_socket(path.as_ref());
1541 let listener = unix_socket::UnixListener::bind(path)
1542 .with_context(|| format!("failed to bind to hybrid vsock path: {}", path))?;
1543 Ok(Some(listener))
1544 } else {
1545 Ok(None)
1546 }
1547 };
1548
1549 let vtl0_vsock_listener = vsock_listener(opt.vmbus_vsock_path.as_deref())?;
1550 let vtl2_vsock_listener = vsock_listener(opt.vmbus_vtl2_vsock_path.as_deref())?;
1551
1552 if let Some(path) = &opt.openhcl_dump_path {
1553 let (resource, task) = spawn_dump_handler(&spawner, path.clone(), None);
1554 task.detach();
1555 vmbus_devices.push((openhcl_vtl, resource));
1556 }
1557
1558 #[cfg(guest_arch = "aarch64")]
1559 let topology_arch = openvmm_defs::config::ArchTopologyConfig::Aarch64(
1560 openvmm_defs::config::Aarch64TopologyConfig {
1561 gic_config: None,
1563 pmu_gsiv: openvmm_defs::config::PmuGsivConfig::Platform,
1564 gic_msi: match opt.gic_msi {
1565 cli_args::GicMsiCli::Auto => openvmm_defs::config::GicMsiConfig::Auto,
1566 cli_args::GicMsiCli::Its => openvmm_defs::config::GicMsiConfig::Its,
1567 cli_args::GicMsiCli::V2m => {
1568 openvmm_defs::config::GicMsiConfig::V2m { spi_count: None }
1569 }
1570 },
1571 },
1572 );
1573 #[cfg(guest_arch = "x86_64")]
1574 let topology_arch =
1575 openvmm_defs::config::ArchTopologyConfig::X86(openvmm_defs::config::X86TopologyConfig {
1576 apic_id_offset: opt.apic_id_offset,
1577 x2apic: opt.x2apic,
1578 });
1579
1580 let with_isolation = if let Some(isolation) = &opt.isolation {
1581 if !opt.vtl2 {
1583 anyhow::bail!("isolation is only currently supported with vtl2");
1584 }
1585
1586 if !opt.no_alias_map {
1588 anyhow::bail!("alias map not supported with isolation");
1589 }
1590
1591 match isolation {
1592 cli_args::IsolationCli::Vbs => Some(openvmm_defs::config::IsolationType::Vbs),
1593 }
1594 } else {
1595 None
1596 };
1597
1598 if with_hv && !opt.no_vmbus {
1599 let (shutdown_send, shutdown_recv) = mesh::channel();
1600 resources.shutdown_ic = Some(shutdown_send);
1601 let (kvp_send, kvp_recv) = mesh::channel();
1602 resources.kvp_ic = Some(kvp_send);
1603 vmbus_devices.extend(
1604 [
1605 hyperv_ic_resources::shutdown::ShutdownIcHandle {
1606 recv: shutdown_recv,
1607 }
1608 .into_resource(),
1609 hyperv_ic_resources::kvp::KvpIcHandle { recv: kvp_recv }.into_resource(),
1610 hyperv_ic_resources::timesync::TimesyncIcHandle.into_resource(),
1611 ]
1612 .map(|r| (DeviceVtl::Vtl0, r)),
1613 );
1614 }
1615
1616 if let Some(hive_path) = &opt.imc {
1617 let file = fs_err::File::open(hive_path).context("failed to open imc hive")?;
1618 vmbus_devices.push((
1619 DeviceVtl::Vtl0,
1620 vmbfs_resources::VmbfsImcDeviceHandle { file: file.into() }.into_resource(),
1621 ));
1622 }
1623
1624 let mut virtio_devices = Vec::new();
1625 let mut add_virtio_device = |bus, resource: Resource<VirtioDeviceHandle>| {
1626 let bus = match bus {
1627 VirtioBusCli::Auto => {
1628 if with_hv && (cfg!(windows) || cfg!(target_os = "macos")) {
1631 None
1632 } else {
1633 Some(VirtioBus::Pci)
1634 }
1635 }
1636 VirtioBusCli::Mmio => Some(VirtioBus::Mmio),
1637 VirtioBusCli::Pci => Some(VirtioBus::Pci),
1638 VirtioBusCli::Vpci => None,
1639 };
1640 if let Some(bus) = bus {
1641 virtio_devices.push((bus, resource));
1642 } else {
1643 vpci_devices.push(VpciDeviceConfig {
1644 vtl: DeviceVtl::Vtl0,
1645 instance_id: Guid::new_random(),
1646 resource: VirtioPciDeviceHandle(resource).into_resource(),
1647 vnode: None,
1648 });
1649 }
1650 };
1651
1652 for cli_cfg in &opt.virtio_net {
1653 if cli_cfg.underhill {
1654 anyhow::bail!("use --net uh:[...] to add underhill NICs")
1655 }
1656 let vport = parse_endpoint(cli_cfg, &mut nic_index, &mut resources)?;
1657 let resource = virtio_resources::net::VirtioNetHandle {
1658 max_queues: vport.max_queues,
1659 mac_address: vport.mac_address,
1660 endpoint: vport.endpoint,
1661 }
1662 .into_resource();
1663 if let Some(pcie_port) = &cli_cfg.pcie_port {
1664 pcie_devices.push(PcieDeviceConfig {
1665 port_name: pcie_port.clone(),
1666 resource: VirtioPciDeviceHandle(resource).into_resource(),
1667 });
1668 } else {
1669 add_virtio_device(VirtioBusCli::Auto, resource);
1670 }
1671 }
1672
1673 for args in &opt.virtio_fs {
1674 let resource: Resource<VirtioDeviceHandle> = virtio_resources::fs::VirtioFsHandle {
1675 tag: args.tag.clone(),
1676 fs: virtio_resources::fs::VirtioFsBackend::HostFs {
1677 root_path: args.path.clone(),
1678 mount_options: args.options.clone(),
1679 },
1680 }
1681 .into_resource();
1682 if let Some(pcie_port) = &args.pcie_port {
1683 pcie_devices.push(PcieDeviceConfig {
1684 port_name: pcie_port.clone(),
1685 resource: VirtioPciDeviceHandle(resource).into_resource(),
1686 });
1687 } else {
1688 add_virtio_device(opt.virtio_fs_bus, resource);
1689 }
1690 }
1691
1692 for args in &opt.virtio_fs_shmem {
1693 let resource: Resource<VirtioDeviceHandle> = virtio_resources::fs::VirtioFsHandle {
1694 tag: args.tag.clone(),
1695 fs: virtio_resources::fs::VirtioFsBackend::SectionFs {
1696 root_path: args.path.clone(),
1697 },
1698 }
1699 .into_resource();
1700 if let Some(pcie_port) = &args.pcie_port {
1701 pcie_devices.push(PcieDeviceConfig {
1702 port_name: pcie_port.clone(),
1703 resource: VirtioPciDeviceHandle(resource).into_resource(),
1704 });
1705 } else {
1706 add_virtio_device(opt.virtio_fs_bus, resource);
1707 }
1708 }
1709
1710 for args in &opt.virtio_9p {
1711 let resource: Resource<VirtioDeviceHandle> = virtio_resources::p9::VirtioPlan9Handle {
1712 tag: args.tag.clone(),
1713 root_path: args.path.clone(),
1714 debug: opt.virtio_9p_debug,
1715 }
1716 .into_resource();
1717 if let Some(pcie_port) = &args.pcie_port {
1718 pcie_devices.push(PcieDeviceConfig {
1719 port_name: pcie_port.clone(),
1720 resource: VirtioPciDeviceHandle(resource).into_resource(),
1721 });
1722 } else {
1723 add_virtio_device(VirtioBusCli::Auto, resource);
1724 }
1725 }
1726
1727 if let Some(pmem_args) = &opt.virtio_pmem {
1728 let resource: Resource<VirtioDeviceHandle> = virtio_resources::pmem::VirtioPmemHandle {
1729 path: pmem_args.path.clone(),
1730 }
1731 .into_resource();
1732 if let Some(pcie_port) = &pmem_args.pcie_port {
1733 pcie_devices.push(PcieDeviceConfig {
1734 port_name: pcie_port.clone(),
1735 resource: VirtioPciDeviceHandle(resource).into_resource(),
1736 });
1737 } else {
1738 add_virtio_device(VirtioBusCli::Auto, resource);
1739 }
1740 }
1741
1742 if opt.virtio_rng {
1743 let resource: Resource<VirtioDeviceHandle> =
1744 virtio_resources::rng::VirtioRngHandle.into_resource();
1745 if let Some(pcie_port) = &opt.virtio_rng_pcie_port {
1746 pcie_devices.push(PcieDeviceConfig {
1747 port_name: pcie_port.clone(),
1748 resource: VirtioPciDeviceHandle(resource).into_resource(),
1749 });
1750 } else {
1751 add_virtio_device(opt.virtio_rng_bus, resource);
1752 }
1753 }
1754
1755 if let Some(backend) = virtio_console_backend {
1756 let resource: Resource<VirtioDeviceHandle> =
1757 virtio_resources::console::VirtioConsoleHandle { backend }.into_resource();
1758 if let Some(pcie_port) = &opt.virtio_console_pcie_port {
1759 pcie_devices.push(PcieDeviceConfig {
1760 port_name: pcie_port.clone(),
1761 resource: VirtioPciDeviceHandle(resource).into_resource(),
1762 });
1763 } else {
1764 add_virtio_device(VirtioBusCli::Auto, resource);
1765 }
1766 }
1767
1768 #[cfg(target_os = "linux")]
1770 for vhost_cli in &opt.vhost_user {
1771 let stream =
1772 unix_socket::UnixStream::connect(&vhost_cli.socket_path).with_context(|| {
1773 format!(
1774 "failed to connect to vhost-user socket: {}",
1775 vhost_cli.socket_path
1776 )
1777 })?;
1778
1779 use crate::cli_args::VhostUserDeviceTypeCli;
1780 let resource: Resource<VirtioDeviceHandle> = match vhost_cli.device_type {
1781 VhostUserDeviceTypeCli::Fs {
1782 ref tag,
1783 num_queues,
1784 queue_size,
1785 } => virtio_resources::vhost_user::VhostUserFsHandle {
1786 socket: stream.into(),
1787 tag: tag.clone(),
1788 num_queues,
1789 queue_size,
1790 }
1791 .into_resource(),
1792 VhostUserDeviceTypeCli::Blk {
1793 num_queues,
1794 queue_size,
1795 } => virtio_resources::vhost_user::VhostUserBlkHandle {
1796 socket: stream.into(),
1797 num_queues,
1798 queue_size,
1799 }
1800 .into_resource(),
1801 VhostUserDeviceTypeCli::Other {
1802 device_id,
1803 ref queue_sizes,
1804 } => virtio_resources::vhost_user::VhostUserGenericHandle {
1805 socket: stream.into(),
1806 device_id,
1807 queue_sizes: queue_sizes.clone(),
1808 }
1809 .into_resource(),
1810 };
1811 if let Some(pcie_port) = &vhost_cli.pcie_port {
1812 pcie_devices.push(PcieDeviceConfig {
1813 port_name: pcie_port.clone(),
1814 resource: VirtioPciDeviceHandle(resource).into_resource(),
1815 });
1816 } else {
1817 add_virtio_device(VirtioBusCli::Auto, resource);
1818 }
1819 }
1820
1821 if let Some(vsock_path) = &opt.virtio_vsock_path {
1822 let listener = vsock_listener(Some(vsock_path))?.unwrap();
1823 add_virtio_device(
1824 VirtioBusCli::Auto,
1825 virtio_resources::vsock::VirtioVsockHandle {
1826 guest_cid: 0x3,
1829 base_path: vsock_path.clone(),
1830 listener,
1831 }
1832 .into_resource(),
1833 );
1834 }
1835
1836 let mut cfg = Config {
1837 chipset,
1838 load_mode,
1839 floppy_disks,
1840 pcie_root_complexes,
1841 #[cfg(target_os = "linux")]
1842 pcie_devices: {
1843 let mut devs = pcie_devices;
1844 devs.extend(vfio_pcie_devices);
1845 devs
1846 },
1847 #[cfg(not(target_os = "linux"))]
1848 pcie_devices,
1849 pcie_switches,
1850 vpci_devices,
1851 ide_disks: Vec::new(),
1852 numa: {
1853 if let Some(ref nodes) = opt.numa {
1854 NumaTopology {
1856 nodes: nodes
1857 .iter()
1858 .map(|n| NumaNode {
1859 mem: Some(MemoryConfig {
1860 mem_size: n.memory.mem_size,
1861 prefetch_memory: n.memory.prefetch,
1862 private_memory: n.memory.shared == Some(false),
1863 transparent_hugepages: n.memory.transparent_hugepages,
1864 hugepages: n.memory.hugepages,
1865 hugepage_size: n.memory.hugepage_size,
1866 host_numa_node: n.host_numa_node,
1867 }),
1868 vps: match &n.vps {
1869 Some(vps) => VpAssignment::Explicit(vps.clone()),
1870 None => VpAssignment::FromTopology,
1871 },
1872 })
1873 .collect(),
1874 distances: opt
1875 .numa_distance
1876 .as_deref()
1877 .unwrap_or(&[])
1878 .iter()
1879 .map(|d| NumaDistance {
1880 src: d.src,
1881 dst: d.dst,
1882 distance: d.distance,
1883 })
1884 .collect(),
1885 }
1886 } else {
1887 NumaTopology {
1889 nodes: vec![NumaNode {
1890 mem: Some(MemoryConfig {
1891 mem_size: opt.memory_size(),
1892 prefetch_memory: opt.prefetch_memory(),
1893 private_memory: opt.private_memory(),
1894 transparent_hugepages: opt.transparent_hugepages(),
1895 hugepages: opt.memory.hugepages,
1896 hugepage_size: opt.memory.hugepage_size,
1897 host_numa_node: None,
1898 }),
1899 vps: VpAssignment::FromTopology,
1900 }],
1901 distances: vec![],
1902 }
1903 }
1904 },
1905 processor_topology: ProcessorTopologyConfig {
1906 proc_count: opt.processors,
1907 vps_per_socket: opt.vps_per_socket,
1908 enable_smt: match opt.smt {
1909 cli_args::SmtConfigCli::Auto => None,
1910 cli_args::SmtConfigCli::Force => Some(true),
1911 cli_args::SmtConfigCli::Off => Some(false),
1912 },
1913 arch: Some(topology_arch),
1914 },
1915 hypervisor: HypervisorConfig {
1916 with_hv,
1917 with_vtl2: opt.vtl2.then_some(Vtl2Config {
1918 vtl0_alias_map: !opt.no_alias_map,
1919 late_map_vtl0_memory: match opt.late_map_vtl0_policy {
1920 cli_args::Vtl0LateMapPolicyCli::Off => None,
1921 cli_args::Vtl0LateMapPolicyCli::Log => Some(LateMapVtl0MemoryPolicy::Log),
1922 cli_args::Vtl0LateMapPolicyCli::Halt => Some(LateMapVtl0MemoryPolicy::Halt),
1923 cli_args::Vtl0LateMapPolicyCli::Exception => {
1924 Some(LateMapVtl0MemoryPolicy::InjectException)
1925 }
1926 },
1927 }),
1928 with_isolation,
1929 },
1930 #[cfg(windows)]
1931 kernel_vmnics,
1932 input: mesh::Receiver::new(),
1933 framebuffer,
1934 vga_firmware,
1935 vtl2_gfx: opt.vtl2_gfx,
1936 virtio_devices,
1937 vmbus: (with_hv && !opt.no_vmbus).then_some(VmbusConfig {
1938 vsock_listener: vtl0_vsock_listener,
1939 vsock_path: opt.vmbus_vsock_path.clone(),
1940 vtl2_redirect: opt.vmbus_redirect,
1941 vmbus_max_version: opt.vmbus_max_version,
1942 #[cfg(windows)]
1943 vmbusproxy_handle,
1944 }),
1945 vtl2_vmbus: (with_hv && opt.vtl2).then_some(VmbusConfig {
1946 vsock_listener: vtl2_vsock_listener,
1947 vsock_path: opt.vmbus_vtl2_vsock_path.clone(),
1948 ..Default::default()
1949 }),
1950 vmbus_devices,
1951 chipset_devices,
1952 pci_chipset_devices,
1953 isa_dma_controller,
1954 chipset_capabilities: capabilities,
1955 layout: layout_config,
1956 #[cfg(windows)]
1957 vpci_resources,
1958 vmgs,
1959 secure_boot_enabled: opt.secure_boot,
1960 custom_uefi_vars,
1961 firmware_event_send: None,
1962 debugger_rpc: None,
1963 rtc_delta_milliseconds: 0,
1964 automatic_guest_reset: matches!(opt.guest_reset_action, GuestPowerAction::Reset),
1968 efi_diagnostics_log_level: {
1969 match opt.efi_diagnostics_log_level.unwrap_or_default() {
1970 EfiDiagnosticsLogLevelCli::Default => EfiDiagnosticsLogLevelType::Default,
1971 EfiDiagnosticsLogLevelCli::Info => EfiDiagnosticsLogLevelType::Info,
1972 EfiDiagnosticsLogLevelCli::Full => EfiDiagnosticsLogLevelType::Full,
1973 }
1974 },
1975 };
1976
1977 storage.build_config(&mut cfg, &mut resources, opt.scsi_sub_channels)?;
1978 Ok((cfg, resources))
1979}
1980
1981pub(crate) fn openvmm_terminal_app() -> Option<PathBuf> {
1983 std::env::var_os("OPENVMM_TERM")
1984 .or_else(|| std::env::var_os("HVLITE_TERM"))
1985 .map(Into::into)
1986}
1987
1988fn cleanup_socket(path: &Path) {
1990 #[cfg(windows)]
1991 let is_socket = pal::windows::fs::is_unix_socket(path).unwrap_or(false);
1992 #[cfg(not(windows))]
1993 let is_socket = path
1994 .metadata()
1995 .is_ok_and(|meta| std::os::unix::fs::FileTypeExt::is_socket(&meta.file_type()));
1996
1997 if is_socket {
1998 let _ = std::fs::remove_file(path);
1999 }
2000}
2001
2002#[cfg(windows)]
2003fn new_switch_port(
2004 switch_id: Option<&str>,
2005) -> anyhow::Result<(
2006 openvmm_defs::config::SwitchPortId,
2007 vmswitch::kernel::SwitchPort,
2008)> {
2009 let id = vmswitch::kernel::SwitchPortId {
2010 switch: match switch_id {
2011 Some(s) => s.parse().context("invalid switch id")?,
2012 None => vmswitch::hcn::DEFAULT_SWITCH,
2013 },
2014 port: Guid::new_random(),
2015 };
2016 let _ = vmswitch::hcn::Network::open(&id.switch)
2017 .with_context(|| format!("could not find switch {}", id.switch))?;
2018
2019 let port = vmswitch::kernel::SwitchPort::new(&id).context("failed to create switch port")?;
2020
2021 let id = openvmm_defs::config::SwitchPortId {
2022 switch: id.switch,
2023 port: id.port,
2024 };
2025 Ok((id, port))
2026}
2027
2028fn parse_endpoint(
2029 cli_cfg: &NicConfigCli,
2030 index: &mut usize,
2031 resources: &mut VmResources,
2032) -> anyhow::Result<NicConfig> {
2033 let _ = resources;
2034 let endpoint = match &cli_cfg.endpoint {
2035 EndpointConfigCli::Consomme { cidr, host_fwd } => {
2036 let ports = host_fwd
2037 .iter()
2038 .map(|fwd| {
2039 use net_backend_resources::consomme::HostPortProtocol;
2040 net_backend_resources::consomme::HostPortConfig {
2041 protocol: match fwd.protocol {
2042 cli_args::HostPortProtocolCli::Tcp => HostPortProtocol::Tcp,
2043 cli_args::HostPortProtocolCli::Udp => HostPortProtocol::Udp,
2044 },
2045 host_address: fwd
2046 .host_address
2047 .map(net_backend_resources::consomme::HostIpAddress::from),
2048 host_port: net_backend_resources::consomme::HostPort::Fixed(fwd.host_port),
2049 guest_port: fwd.guest_port,
2050 }
2051 })
2052 .collect();
2053 net_backend_resources::consomme::ConsommeHandle {
2054 cidr: cidr.clone(),
2055 ports,
2056 }
2057 .into_resource()
2058 }
2059 EndpointConfigCli::None => net_backend_resources::null::NullHandle.into_resource(),
2060 EndpointConfigCli::Dio { id } => {
2061 #[cfg(windows)]
2062 {
2063 let (port_id, port) = new_switch_port(id.as_deref())?;
2064 resources.switch_ports.push(port);
2065 net_backend_resources::dio::WindowsDirectIoHandle {
2066 switch_port_id: net_backend_resources::dio::SwitchPortId {
2067 switch: port_id.switch,
2068 port: port_id.port,
2069 },
2070 }
2071 .into_resource()
2072 }
2073
2074 #[cfg(not(windows))]
2075 {
2076 let _ = id;
2077 bail!("cannot use dio on non-windows platforms")
2078 }
2079 }
2080 EndpointConfigCli::Tap { name } => {
2081 #[cfg(target_os = "linux")]
2082 {
2083 let fd = net_tap::tap::open_tap(name)
2084 .with_context(|| format!("failed to open TAP device '{name}'"))?;
2085 net_backend_resources::tap::TapHandle { fd }.into_resource()
2086 }
2087
2088 #[cfg(not(target_os = "linux"))]
2089 {
2090 let _ = name;
2091 bail!("TAP backend is only supported on Linux")
2092 }
2093 }
2094 };
2095
2096 let mut mac_address = [0x00, 0x15, 0x5D, 0, 0, 0];
2098 getrandom::fill(&mut mac_address[3..]).expect("rng failure");
2099
2100 const BASE_INSTANCE_ID: Guid = guid::guid!("00000000-da43-11ed-936a-00155d6db52f");
2102 let instance_id = Guid {
2103 data1: *index as u32,
2104 ..BASE_INSTANCE_ID
2105 };
2106 *index += 1;
2107
2108 Ok(NicConfig {
2109 vtl: cli_cfg.vtl,
2110 instance_id,
2111 endpoint,
2112 mac_address: mac_address.into(),
2113 max_queues: cli_cfg.max_queues,
2114 pcie_port: cli_cfg.pcie_port.clone(),
2115 })
2116}
2117
2118#[derive(Debug)]
2119struct NicConfig {
2120 vtl: DeviceVtl,
2121 instance_id: Guid,
2122 mac_address: MacAddress,
2123 endpoint: Resource<NetEndpointHandleKind>,
2124 max_queues: Option<u16>,
2125 pcie_port: Option<String>,
2126}
2127
2128impl NicConfig {
2129 fn into_netvsp_handle(self) -> (DeviceVtl, Resource<VmbusDeviceHandleKind>) {
2130 (
2131 self.vtl,
2132 netvsp_resources::NetvspHandle {
2133 instance_id: self.instance_id,
2134 mac_address: self.mac_address,
2135 endpoint: self.endpoint,
2136 max_queues: self.max_queues,
2137 }
2138 .into_resource(),
2139 )
2140 }
2141}
2142
2143enum LayerOrDisk {
2144 Layer(DiskLayerDescription),
2145 Disk(Resource<DiskHandleKind>),
2146}
2147
2148async fn disk_open(
2149 disk_cli: &DiskCliKind,
2150 read_only: bool,
2151) -> anyhow::Result<Resource<DiskHandleKind>> {
2152 let mut layers = Vec::new();
2153 disk_open_inner(disk_cli, read_only, &mut layers).await?;
2154 if layers.len() == 1 && matches!(layers[0], LayerOrDisk::Disk(_)) {
2155 let LayerOrDisk::Disk(disk) = layers.pop().unwrap() else {
2156 unreachable!()
2157 };
2158 Ok(disk)
2159 } else {
2160 Ok(Resource::new(disk_backend_resources::LayeredDiskHandle {
2161 layers: layers
2162 .into_iter()
2163 .map(|layer| match layer {
2164 LayerOrDisk::Layer(layer) => layer,
2165 LayerOrDisk::Disk(disk) => DiskLayerDescription {
2166 layer: DiskLayerHandle(disk).into_resource(),
2167 read_cache: false,
2168 write_through: false,
2169 },
2170 })
2171 .collect(),
2172 }))
2173 }
2174}
2175
2176fn disk_open_inner<'a>(
2177 disk_cli: &'a DiskCliKind,
2178 read_only: bool,
2179 layers: &'a mut Vec<LayerOrDisk>,
2180) -> futures::future::BoxFuture<'a, anyhow::Result<()>> {
2181 Box::pin(async move {
2182 fn layer<T: IntoResource<DiskLayerHandleKind>>(layer: T) -> LayerOrDisk {
2183 LayerOrDisk::Layer(layer.into_resource().into())
2184 }
2185 fn disk<T: IntoResource<DiskHandleKind>>(disk: T) -> LayerOrDisk {
2186 LayerOrDisk::Disk(disk.into_resource())
2187 }
2188 match disk_cli {
2189 &DiskCliKind::Memory(len) => {
2190 layers.push(layer(RamDiskLayerHandle {
2191 len: Some(len),
2192 sector_size: None,
2193 }));
2194 }
2195 DiskCliKind::File {
2196 path,
2197 create_with_len,
2198 direct,
2199 } => layers.push(LayerOrDisk::Disk(if let Some(size) = create_with_len {
2200 create_disk_type(
2201 path,
2202 *size,
2203 OpenDiskOptions {
2204 read_only: false,
2205 direct: *direct,
2206 },
2207 )
2208 .with_context(|| format!("failed to create {}", path.display()))?
2209 } else {
2210 open_disk_type(
2211 path,
2212 OpenDiskOptions {
2213 read_only,
2214 direct: *direct,
2215 },
2216 )
2217 .await
2218 .with_context(|| format!("failed to open {}", path.display()))?
2219 })),
2220 DiskCliKind::Blob { kind, url } => {
2221 layers.push(disk(disk_backend_resources::BlobDiskHandle {
2222 url: url.to_owned(),
2223 format: match kind {
2224 cli_args::BlobKind::Flat => disk_backend_resources::BlobDiskFormat::Flat,
2225 cli_args::BlobKind::Vhd1 => {
2226 disk_backend_resources::BlobDiskFormat::FixedVhd1
2227 }
2228 },
2229 }))
2230 }
2231 DiskCliKind::MemoryDiff(inner) => {
2232 layers.push(layer(RamDiskLayerHandle {
2233 len: None,
2234 sector_size: None,
2235 }));
2236 disk_open_inner(inner, true, layers).await?;
2237 }
2238 DiskCliKind::PersistentReservationsWrapper(inner) => {
2239 layers.push(disk(disk_backend_resources::DiskWithReservationsHandle(
2240 disk_open(inner, read_only).await?,
2241 )))
2242 }
2243 DiskCliKind::DelayDiskWrapper {
2244 delay_ms,
2245 disk: inner,
2246 } => layers.push(disk(DelayDiskHandle {
2247 delay: CellUpdater::new(Duration::from_millis(*delay_ms)).cell(),
2248 disk: disk_open(inner, read_only).await?,
2249 })),
2250 DiskCliKind::Crypt {
2251 disk: inner,
2252 cipher,
2253 key_file,
2254 } => layers.push(disk(disk_crypt_resources::DiskCryptHandle {
2255 disk: disk_open(inner, read_only).await?,
2256 cipher: match cipher {
2257 cli_args::DiskCipher::XtsAes256 => disk_crypt_resources::Cipher::XtsAes256,
2258 },
2259 key: fs_err::read(key_file).context("failed to read key file")?,
2260 })),
2261 DiskCliKind::Sqlite {
2262 path,
2263 create_with_len,
2264 } => {
2265 match (create_with_len.is_some(), path.exists()) {
2270 (true, true) => anyhow::bail!(
2271 "cannot create new sqlite disk at {} - file already exists",
2272 path.display()
2273 ),
2274 (false, false) => anyhow::bail!(
2275 "cannot open sqlite disk at {} - file not found",
2276 path.display()
2277 ),
2278 _ => {}
2279 }
2280
2281 layers.push(layer(SqliteDiskLayerHandle {
2282 dbhd_path: path.display().to_string(),
2283 format_dbhd: create_with_len.map(|len| {
2284 disk_backend_resources::layer::SqliteDiskLayerFormatParams {
2285 logically_read_only: false,
2286 len: Some(len),
2287 }
2288 }),
2289 }));
2290 }
2291 DiskCliKind::SqliteDiff { path, create, disk } => {
2292 match (create, path.exists()) {
2297 (true, true) => anyhow::bail!(
2298 "cannot create new sqlite disk at {} - file already exists",
2299 path.display()
2300 ),
2301 (false, false) => anyhow::bail!(
2302 "cannot open sqlite disk at {} - file not found",
2303 path.display()
2304 ),
2305 _ => {}
2306 }
2307
2308 layers.push(layer(SqliteDiskLayerHandle {
2309 dbhd_path: path.display().to_string(),
2310 format_dbhd: create.then_some(
2311 disk_backend_resources::layer::SqliteDiskLayerFormatParams {
2312 logically_read_only: false,
2313 len: None,
2314 },
2315 ),
2316 }));
2317 disk_open_inner(disk, true, layers).await?;
2318 }
2319 DiskCliKind::AutoCacheSqlite {
2320 cache_path,
2321 key,
2322 disk,
2323 } => {
2324 layers.push(LayerOrDisk::Layer(DiskLayerDescription {
2325 read_cache: true,
2326 write_through: false,
2327 layer: SqliteAutoCacheDiskLayerHandle {
2328 cache_path: cache_path.clone(),
2329 cache_key: key.clone(),
2330 }
2331 .into_resource(),
2332 }));
2333 disk_open_inner(disk, read_only, layers).await?;
2334 }
2335 }
2336 Ok(())
2337 })
2338}
2339
2340pub(crate) fn system_page_size() -> u32 {
2342 sparse_mmap::SparseMapping::page_size() as u32
2343}
2344
2345pub(crate) const GUEST_ARCH: &str = if cfg!(guest_arch = "x86_64") {
2347 "x86_64"
2348} else {
2349 "aarch64"
2350};
2351
2352fn prepare_snapshot_restore(
2355 snapshot_dir: &Path,
2356 opt: &Options,
2357) -> anyhow::Result<(
2358 openvmm_defs::worker::SharedMemoryFd,
2359 mesh::payload::message::ProtobufMessage,
2360)> {
2361 let (manifest, state_bytes) = openvmm_helpers::snapshot::read_snapshot(snapshot_dir)?;
2362
2363 openvmm_helpers::snapshot::validate_manifest(
2365 &manifest,
2366 GUEST_ARCH,
2367 opt.memory_size(),
2368 opt.processors,
2369 system_page_size(),
2370 )?;
2371
2372 let memory_file = fs_err::OpenOptions::new()
2374 .read(true)
2375 .write(true)
2376 .open(snapshot_dir.join("memory.bin"))?;
2377
2378 let file_size = memory_file.metadata()?.len();
2380 if file_size != manifest.memory_size_bytes {
2381 anyhow::bail!(
2382 "memory.bin size ({file_size} bytes) doesn't match manifest ({} bytes)",
2383 manifest.memory_size_bytes,
2384 );
2385 }
2386
2387 let shared_memory_fd =
2388 openvmm_helpers::shared_memory::file_to_shared_memory_fd(memory_file.into())?;
2389
2390 let state_msg: mesh::payload::message::ProtobufMessage = mesh::payload::decode(&state_bytes)
2394 .context("failed to decode saved state from snapshot")?;
2395
2396 Ok((shared_memory_fd, state_msg))
2397}
2398
2399fn do_main(pidfile_guard: &mut Option<pidfile::Pidfile>) -> anyhow::Result<i32> {
2400 #[cfg(windows)]
2401 pal::windows::disable_hard_error_dialog();
2402
2403 tracing_init::enable_tracing()?;
2404
2405 meshworker::run_vmm_mesh_host()?;
2409
2410 let opt = cli_args::parse_options();
2411 if let Some(path) = &opt.write_saved_state_proto {
2412 mesh::payload::protofile::DescriptorWriter::new(vmcore::save_restore::saved_state_roots())
2413 .write_to_path(path)
2414 .context("failed to write protobuf descriptors")?;
2415 return Ok(0);
2416 }
2417
2418 if let Some(ref path) = opt.pidfile {
2419 *pidfile_guard = Some(pidfile::Pidfile::new(path).context("failed to create pidfile")?);
2420 }
2421
2422 if let Some(path) = opt.relay_console_path {
2423 let console_title = opt.relay_console_title.unwrap_or_default();
2424 return console_relay::relay_console(&path, console_title.as_str()).map(|()| 0);
2425 }
2426
2427 #[cfg(any(feature = "grpc", feature = "ttrpc"))]
2428 if let Some(path) = opt.ttrpc.as_ref().or(opt.grpc.as_ref()) {
2429 return block_on(async {
2430 let _ = std::fs::remove_file(path);
2431 let listener =
2432 unix_socket::UnixListener::bind(path).context("failed to bind to socket")?;
2433
2434 let transport = if opt.ttrpc.is_some() {
2435 ttrpc::RpcTransport::Ttrpc
2436 } else {
2437 ttrpc::RpcTransport::Grpc
2438 };
2439
2440 let mut handle =
2442 mesh_worker::launch_local_worker::<ttrpc::TtrpcWorker>(ttrpc::Parameters {
2443 listener,
2444 transport,
2445 })
2446 .await?;
2447
2448 tracing::info!(%transport, path = %path.display(), "listening");
2449
2450 pal::close_stdout().context("failed to close stdout")?;
2452
2453 handle.join().await?;
2454
2455 Ok(0)
2456 });
2457 }
2458
2459 DefaultPool::run_with(async |driver| run_control(&driver, opt).await)
2460}
2461
2462fn new_hvsock_service_id(port: u32) -> Guid {
2463 Guid {
2466 data1: port,
2467 .."00000000-facb-11e6-bd58-64006a7986d3".parse().unwrap()
2468 }
2469}
2470
2471async fn run_control(driver: &DefaultDriver, opt: Options) -> anyhow::Result<i32> {
2472 let mut mesh = Some(VmmMesh::new(&driver, opt.single_process)?);
2473 let result = run_control_inner(driver, &mut mesh, opt).await;
2474 if let Some(mesh) = mesh {
2477 mesh.shutdown().await;
2478 }
2479 result
2480}
2481
2482async fn run_control_inner(
2483 driver: &DefaultDriver,
2484 mesh_slot: &mut Option<VmmMesh>,
2485 opt: Options,
2486) -> anyhow::Result<i32> {
2487 let mesh = mesh_slot.as_ref().unwrap();
2488 let (mut vm_config, mut resources) = vm_config_from_command_line(driver, mesh, &opt).await?;
2489
2490 let mut vnc_worker = None;
2491 if opt.gfx || opt.vnc.vnc {
2492 let addr: std::net::SocketAddr = if let Ok(sa) =
2495 opt.vnc.vnc_listen.parse::<std::net::SocketAddr>()
2496 {
2497 sa
2498 } else {
2499 let ip: std::net::IpAddr = opt.vnc.vnc_listen.parse().with_context(|| {
2500 format!(
2501 "invalid VNC listen address: {} (expected IP address or socket address like [::1]:5900)",
2502 opt.vnc.vnc_listen
2503 )
2504 })?;
2505 std::net::SocketAddr::new(ip, opt.vnc.vnc_port)
2506 };
2507
2508 let socket = socket2::Socket::new(
2509 if addr.is_ipv6() {
2510 socket2::Domain::IPV6
2511 } else {
2512 socket2::Domain::IPV4
2513 },
2514 socket2::Type::STREAM,
2515 None,
2516 )
2517 .with_context(|| format!("creating VNC socket for {}", addr))?;
2518
2519 if addr.is_ipv6() {
2520 if let Err(e) = socket.set_only_v6(false) {
2521 tracing::warn!(
2522 error = %e,
2523 "failed to enable dual-stack on IPv6 VNC socket, IPv4 clients may not be able to connect"
2524 );
2525 }
2526 }
2527 socket.set_reuse_address(true)?;
2528 socket
2529 .bind(&addr.into())
2530 .with_context(|| format!("binding VNC socket to {}", addr))?;
2531 socket
2532 .listen(128)
2533 .with_context(|| format!("listening on VNC socket {}", addr))?;
2534 let listener: TcpListener = socket.into();
2535
2536 if !addr.ip().is_loopback() {
2537 tracing::warn!(
2538 address = %addr,
2539 "VNC server listening on non-localhost address without authentication"
2540 );
2541 }
2542
2543 let input_send = vm_config.input.sender();
2544 let framebuffer = resources
2545 .framebuffer_access
2546 .take()
2547 .expect("synth video enabled");
2548
2549 let vnc_host = mesh
2550 .make_host("vnc", None)
2551 .await
2552 .context("spawning vnc process failed")?;
2553
2554 vnc_worker = Some(
2555 vnc_host
2556 .launch_worker(
2557 vnc_worker_defs::VNC_WORKER_TCP,
2558 VncParameters {
2559 listener,
2560 framebuffer,
2561 input_send,
2562 dirty_recv: resources.dirty_rect_recv.take(),
2563 max_clients: opt.vnc.vnc_max_clients,
2564 evict_oldest: opt.vnc.vnc_evict_oldest,
2565 },
2566 )
2567 .await?,
2568 )
2569 }
2570
2571 let gdb_worker = if let Some(port) = opt.gdb {
2573 let listener = TcpListener::bind(format!("127.0.0.1:{}", port))
2574 .with_context(|| format!("binding to gdb port {}", port))?;
2575
2576 let (req_tx, req_rx) = mesh::channel();
2577 vm_config.debugger_rpc = Some(req_rx);
2578
2579 let gdb_host = mesh
2580 .make_host("gdb", None)
2581 .await
2582 .context("spawning gdbstub process failed")?;
2583
2584 Some(
2585 gdb_host
2586 .launch_worker(
2587 debug_worker_defs::DEBUGGER_WORKER,
2588 debug_worker_defs::DebuggerParameters {
2589 listener,
2590 req_chan: req_tx,
2591 vp_count: vm_config.processor_topology.proc_count,
2592 target_arch: if cfg!(guest_arch = "x86_64") {
2593 debug_worker_defs::TargetArch::X86_64
2594 } else {
2595 debug_worker_defs::TargetArch::Aarch64
2596 },
2597 },
2598 )
2599 .await
2600 .context("failed to launch gdbstub worker")?,
2601 )
2602 } else {
2603 None
2604 };
2605
2606 let (vm_rpc, rpc_recv) = mesh::channel();
2608 let (notify_send, notify_recv) = mesh::channel();
2609 let vm_worker = {
2610 let vm_host = mesh.make_host("vm", opt.log_file.clone()).await?;
2611
2612 let (shared_memory, saved_state) = if let Some(snapshot_dir) = &opt.restore_snapshot {
2613 let (fd, state_msg) = prepare_snapshot_restore(snapshot_dir, &opt)?;
2614 (Some(fd), Some(state_msg))
2615 } else {
2616 let shared_memory = opt
2617 .memory_backing_file()
2618 .map(|path| {
2619 openvmm_helpers::shared_memory::open_memory_backing_file(
2620 path,
2621 opt.memory_size(),
2622 )
2623 })
2624 .transpose()?;
2625 (shared_memory, None)
2626 };
2627
2628 let params = VmWorkerParameters {
2629 hypervisor: match &opt.hypervisor {
2630 Some(name) => openvmm_helpers::hypervisor::hypervisor_resource(name)?,
2631 None => openvmm_helpers::hypervisor::choose_hypervisor()?,
2632 },
2633 cfg: vm_config,
2634 saved_state,
2635 shared_memory,
2636 rpc: rpc_recv,
2637 notify: notify_send,
2638 };
2639 vm_host
2640 .launch_worker(VM_WORKER, params)
2641 .await
2642 .context("failed to launch vm worker")?
2643 };
2644
2645 if opt.restore_snapshot.is_some() {
2646 tracing::info!("restoring VM from snapshot");
2647 }
2648
2649 if !opt.paused {
2650 vm_rpc.call(VmRpc::Resume, ()).await?;
2651 }
2652
2653 let paravisor_diag = Arc::new(diag_client::DiagClient::from_dialer(
2654 driver.clone(),
2655 DiagDialer {
2656 driver: driver.clone(),
2657 vm_rpc: vm_rpc.clone(),
2658 openhcl_vtl: if opt.vtl2 {
2659 DeviceVtl::Vtl2
2660 } else {
2661 DeviceVtl::Vtl0
2662 },
2663 },
2664 ));
2665
2666 let diag_inspector = DiagInspector::new(driver.clone(), paravisor_diag.clone());
2667
2668 let (vm_controller_send, vm_controller_recv) = mesh::channel();
2670 let (vm_controller_event_send, vm_controller_event_recv) = mesh::channel();
2671
2672 let has_vtl2 = resources.vtl2_settings.is_some();
2673
2674 let controller = vm_controller::VmController {
2676 mesh: mesh_slot.take().unwrap(),
2677 vm_worker,
2678 vnc_worker,
2679 gdb_worker,
2680 diag_inspector: Some(diag_inspector),
2681 vtl2_settings: resources.vtl2_settings,
2682 ged_rpc: resources.ged_rpc.clone(),
2683 vm_rpc: vm_rpc.clone(),
2684 paravisor_diag: Some(paravisor_diag),
2685 igvm_path: opt.igvm.clone(),
2686 memory_backing_file: opt.memory_backing_file().cloned(),
2687 memory: opt.memory_size(),
2688 processors: opt.processors,
2689 log_file: opt.log_file.clone(),
2690 guest_power_actions: vm_controller::GuestPowerActions {
2691 shutdown: opt.guest_shutdown_action,
2692 reset: opt.guest_reset_action,
2693 crash: opt.guest_crash_action,
2694 watchdog: opt.guest_watchdog_action,
2695 },
2696 };
2697
2698 let controller_task = driver.spawn(
2700 "vm-controller",
2701 controller.run(vm_controller_recv, vm_controller_event_send, notify_recv),
2702 );
2703
2704 let repl_result = repl::run_repl(
2706 driver,
2707 repl::ReplResources {
2708 vm_rpc,
2709 vm_controller: vm_controller_send,
2710 vm_controller_events: vm_controller_event_recv,
2711 scsi_rpc: resources.scsi_rpc,
2712 nvme_vtl2_rpc: resources.nvme_vtl2_rpc,
2713 shutdown_ic: resources.shutdown_ic,
2714 kvp_ic: resources.kvp_ic,
2715 console_in: resources.console_in,
2716 has_vtl2,
2717 },
2718 )
2719 .await;
2720
2721 controller_task.await;
2724
2725 repl_result
2728}
2729
2730struct DiagDialer {
2731 driver: DefaultDriver,
2732 vm_rpc: mesh::Sender<VmRpc>,
2733 openhcl_vtl: DeviceVtl,
2734}
2735
2736impl mesh_rpc::client::Dial for DiagDialer {
2737 type Stream = PolledSocket<unix_socket::UnixStream>;
2738
2739 async fn dial(&mut self) -> io::Result<Self::Stream> {
2740 let service_id = new_hvsock_service_id(1);
2741 let socket = self
2742 .vm_rpc
2743 .call_failable(
2744 VmRpc::ConnectHvsock,
2745 (
2746 CancelContext::new().with_timeout(Duration::from_secs(2)),
2747 service_id,
2748 self.openhcl_vtl,
2749 ),
2750 )
2751 .await
2752 .map_err(io::Error::other)?;
2753
2754 PolledSocket::new(&self.driver, socket)
2755 }
2756}
2757
2758pub(crate) struct DiagInspector(DiagInspectorInner);
2765
2766enum DiagInspectorInner {
2767 NotStarted(DefaultDriver, Arc<diag_client::DiagClient>),
2768 Started {
2769 send: mesh::Sender<inspect::Deferred>,
2770 _task: Task<()>,
2771 },
2772 Invalid,
2773}
2774
2775impl DiagInspector {
2776 pub fn new(driver: DefaultDriver, diag_client: Arc<diag_client::DiagClient>) -> Self {
2777 Self(DiagInspectorInner::NotStarted(driver, diag_client))
2778 }
2779
2780 fn start(&mut self) -> &mesh::Sender<inspect::Deferred> {
2781 loop {
2782 match self.0 {
2783 DiagInspectorInner::NotStarted { .. } => {
2784 let DiagInspectorInner::NotStarted(driver, client) =
2785 std::mem::replace(&mut self.0, DiagInspectorInner::Invalid)
2786 else {
2787 unreachable!()
2788 };
2789 let (send, recv) = mesh::channel();
2790 let task = driver.clone().spawn("diag-inspect", async move {
2791 Self::run(&client, recv).await
2792 });
2793
2794 self.0 = DiagInspectorInner::Started { send, _task: task };
2795 }
2796 DiagInspectorInner::Started { ref send, .. } => break send,
2797 DiagInspectorInner::Invalid => unreachable!(),
2798 }
2799 }
2800 }
2801
2802 async fn run(
2803 diag_client: &diag_client::DiagClient,
2804 mut recv: mesh::Receiver<inspect::Deferred>,
2805 ) {
2806 while let Some(deferred) = recv.next().await {
2807 let info = deferred.external_request();
2808 let result = match info.request_type {
2809 inspect::ExternalRequestType::Inspect { depth } => {
2810 if depth == 0 {
2811 Ok(inspect::Node::Unevaluated)
2812 } else {
2813 diag_client
2815 .inspect(info.path, Some(depth - 1), Some(Duration::from_secs(1)))
2816 .await
2817 }
2818 }
2819 inspect::ExternalRequestType::Update { value } => {
2820 (diag_client.update(info.path, value).await).map(inspect::Node::Value)
2821 }
2822 };
2823 deferred.complete_external(
2824 result.unwrap_or_else(|err| {
2825 inspect::Node::Failed(inspect::Error::Mesh(format!("{err:#}")))
2826 }),
2827 inspect::SensitivityLevel::Unspecified,
2828 )
2829 }
2830 }
2831}
2832
2833impl InspectMut for DiagInspector {
2834 fn inspect_mut(&mut self, req: inspect::Request<'_>) {
2835 self.start().send(req.defer());
2836 }
2837}