krun-vmm 0.1.0-1.19.0

Virtual machine monitor for libkrun
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55

use kvm_ioctls::VmFd;
use tdx::launch::{self, Launcher};

use std::os::unix::io::AsRawFd;

#[derive(Debug)]
pub enum Error {
    GetCapabilities(launch::Error),
    InitVm(launch::Error),
    InitMemoryRegions(launch::Error),
    FinalizeVm(launch::Error),
}

type Result<T> = std::result::Result<T, Error>;

pub struct IntelTdx {}

impl IntelTdx {
    pub fn new() -> Self {
        Self {}
    }

    pub fn vm_prepare(&self, vm_fd: &VmFd, cpuid: kvm_bindings::CpuId) -> Result<Launcher> {
        let mut launcher = Launcher::new(vm_fd.as_raw_fd());
        let caps = launcher
            .get_capabilities()
            .map_err(Error::GetCapabilities)?;
        launcher.init_vm(&caps, cpuid).map_err(Error::InitVm)?;
        Ok(launcher)
    }

    pub fn configure_td_memory(
        &self,
        launcher: &mut Launcher,
        regions: &Vec<crate::vstate::MeasuredRegion>,
    ) -> Result<()> {
        for region in regions {
            let mem_region = tdx::launch::MemRegion::new(
                region.guest_addr,
                (region.size / 4096) as u64,
                (arch::FIRMWARE_START == region.guest_addr).into(),
                region.host_addr,
            );
            launcher
                .init_mem_region(mem_region)
                .map_err(Error::InitMemoryRegions)?;
        }

        Ok(())
    }

    pub fn finalize_vm(&self, mut launcher: Launcher) -> Result<()> {
        launcher.finalize().map_err(Error::FinalizeVm)
    }
}