shim: implement KVM_GET_MSR_INDEX_LIST

Implment support in the shim for the KVM_GET_MSR_INDEX_LIST ioctl.
Expand functionality in the mv_pp_op_msr_get_supported_list mock to
support unit tests, and also add an intergratio test.

Signed-off-by: Nick Rosbrook <[email protected]>

Author: Nick Rosbrook

hypercall/mocks/mv_hypercall.h

@@ -54,6 +54,15 @@ extern "C"
 
 #define GARBAGE ((uint64_t)0xFFFFFFFFFFFFFFFFU)
 
+/** tells the list APIs to add an unknown entry */
+#define MV_STATUS_FAILURE_INC_NUM_ENTRIES ((mv_status_t)0x1234567800000001U)
+/** tells the list APIs to add an unknown entry */
+#define MV_STATUS_FAILURE_ADD_UNKNOWN ((mv_status_t)0x1234567800000002U)
+/** tells the list APIs to corrupt the number of entries */
+#define MV_STATUS_FAILURE_CORRUPT_NUM_ENTRIES ((mv_status_t)0x1234567800000003U)
+/** tells the list APIs to set reg1 in rdl */
+#define MV_STATUS_FAILURE_SET_RDL_REG1 ((mv_status_t)0x1234567800000004U)
+
     /** @brief stores a value that can be returned by certain hypercalls */
     extern uint64_t g_mut_val;
 
@@ -272,13 +281,42 @@ extern "C"
     NODISCARD static inline mv_status_t
     mv_pp_op_msr_get_supported_list(uint64_t const hndl) NOEXCEPT
     {
+        uint64_t mut_i;
+
 #ifdef __cplusplus
         bsl::expects(MV_INVALID_HANDLE != hndl);
         bsl::expects(hndl > ((uint64_t)0));
 #else
     platform_expects(MV_INVALID_HANDLE != hndl);
     platform_expects(hndl > ((uint64_t)0));
 #endif
+        struct mv_rdl_t *const pmut_rdl = (struct mv_rdl_t *)g_mut_shared_pages[0];
+
+#ifdef __cplusplus
+        bsl::expects(nullptr != pmut_rdl);
+        bsl::expects(pmut_rdl->num_entries < MV_RDL_MAX_ENTRIES);
+#else
+    platform_expects(NULL != pmut_rdl);
+    platform_expects(pmut_rdl->num_entries < MV_RDL_MAX_ENTRIES);
+#endif
+        if (MV_STATUS_FAILURE_CORRUPT_NUM_ENTRIES == g_mut_mv_pp_op_msr_get_supported_list) {
+            pmut_rdl->num_entries = GARBAGE;
+            return MV_STATUS_SUCCESS;
+        }
+
+        if (MV_STATUS_FAILURE_SET_RDL_REG1 == g_mut_mv_pp_op_msr_get_supported_list) {
+            g_mut_mv_pp_op_msr_get_supported_list = MV_STATUS_SUCCESS;
+            pmut_rdl->reg1 = ((uint64_t)1);
+        }
+        else {
+            pmut_rdl->reg1 = ((uint64_t)0);
+        }
+
+        pmut_rdl->num_entries = g_mut_val;
+        for (mut_i = ((uint64_t)0); mut_i < pmut_rdl->num_entries; ++mut_i) {
+            pmut_rdl->entries[mut_i].reg = g_mut_val;
+            pmut_rdl->entries[mut_i].val = ((uint64_t)1);
+        }
 
         return g_mut_mv_pp_op_msr_get_supported_list;
     }
@@ -654,16 +692,9 @@ extern "C"
         return g_mut_mv_vp_op_vpid;
     }
 
-/* -------------------------------------------------------------------------- */
-/* mv_vs_ops                                                                  */
-/* -------------------------------------------------------------------------- */
-
-/** tells the list APIs to add an unknown entry */
-#define MV_STATUS_FAILURE_INC_NUM_ENTRIES ((mv_status_t)0x1234567800000001U)
-/** tells the list APIs to add an unknown entry */
-#define MV_STATUS_FAILURE_ADD_UNKNOWN ((mv_status_t)0x1234567800000002U)
-/** tells the list APIs to corrupt the number of entries */
-#define MV_STATUS_FAILURE_CORRUPT_NUM_ENTRIES ((mv_status_t)0x1234567800000003U)
+    /* -------------------------------------------------------------------------- */
+    /* mv_vs_ops                                                                  */
+    /* -------------------------------------------------------------------------- */
 
     /** @brief stores the return value for mv_vs_op_create_vs */
     extern uint16_t g_mut_mv_vs_op_create_vs;

hypercall/tests/mocks/mv_hypercall.cpp

@@ -207,7 +207,10 @@ namespace shim
             bsl::ut_given{} = [&]() noexcept {
                 constexpr auto hypercall{&mv_pp_op_msr_get_supported_list};
                 constexpr auto expected{42_u64};
+                mv_rdl_t mut_rdl{};
                 bsl::ut_when{} = [&]() noexcept {
+                    mut_rdl.num_entries = bsl::safe_u64::magic_2().get();
+                    g_mut_shared_pages[0] = &mut_rdl;
                     g_mut_mv_pp_op_msr_get_supported_list = expected.get();
                     bsl::ut_then{} = [&]() noexcept {
                         bsl::ut_check(expected == hypercall(hndl));

shim/include/kvm_msr_list.h

@@ -44,8 +44,11 @@ extern "C"
      */
     struct kvm_msr_list
     {
-        /** @brief replace me with contents from KVM API */
-        int32_t dummy;
+        /** @brief number of msrs in the indices array */
+        uint32_t nmsrs;
+
+        /** @brief array containing the indices of supported MSRs */
+        uint32_t *indices;
     };
 
 #pragma pack(pop)

shim/include/kvm_msr_list.hpp

@@ -0,0 +1,54 @@
+/**
+ * @copyright
+ * Copyright (C) 2021 Assured Information Security, Inc.
+ *
+ * @copyright
+ * Permission is hereby granted, free of charge, to any person obtaining a copy
+ * of this software and associated documentation files (the "Software"), to deal
+ * in the Software without restriction, including without limitation the rights
+ * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+ * copies of the Software, and to permit persons to whom the Software is
+ * furnished to do so, subject to the following conditions:
+ *
+ * @copyright
+ * The above copyright notice and this permission notice shall be included in
+ * all copies or substantial portions of the Software.
+ *
+ * @copyright
+ * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+ * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+ * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+ * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+ * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+ * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+ * SOFTWARE.
+ */
+
+#ifndef KVM_MSR_LIST_HPP
+#define KVM_MSR_LIST_HPP
+
+#include <bsl/cstdint.hpp>
+
+namespace shim
+{
+#pragma pack(push, 1)
+
+    /**
+     * @struct kvm_msr_list
+     *
+     * <!-- description -->
+     *   @brief see /include/uapi/linux/kvm.h in Linux for more details.
+     */
+    struct kvm_msr_list final
+    {
+        /** @brief number of msrs in the indices array */
+        bsl::uint32 nmsrs;
+
+        /** @brief array containing the indices of supported MSRs */
+        bsl::uint32 *indices;
+    };
+}
+
+#pragma pack(pop)
+
+#endif

shim/integration/CMakeLists.txt

@@ -45,3 +45,4 @@ microv_add_shim_integration(kvm_check_extension HEADERS)
 microv_add_shim_integration(kvm_get_mp_state HEADERS)
 microv_add_shim_integration(kvm_set_mp_state HEADERS)
 microv_add_shim_integration(kvm_get_tsc_khz HEADERS)
+microv_add_shim_integration(kvm_get_msr_index_list HEADERS)

shim/integration/kvm_get_msr_index_list.cpp

@@ -0,0 +1,111 @@
+/// @copyright
+/// Copyright (C) 2020 Assured Information Security, Inc.
+///
+/// @copyright
+/// Permission is hereby granted, free of charge, to any person obtaining a copy
+/// of this software and associated documentation files (the "Software"), to deal
+/// in the Software without restriction, including without limitation the rights
+/// to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+/// copies of the Software, and to permit persons to whom the Software is
+/// furnished to do so, subject to the following conditions:
+///
+/// @copyright
+/// The above copyright notice and this permission notice shall be included in
+/// all copies or substantial portions of the Software.
+///
+/// @copyright
+/// THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+/// IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+/// FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+/// AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+/// LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+/// OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+/// SOFTWARE.
+
+#include <integration_utils.hpp>
+#include <ioctl_t.hpp>
+#include <kvm_msr_list.hpp>
+#include <shim_platform_interface.hpp>
+
+#include <bsl/array.hpp>
+#include <bsl/convert.hpp>
+#include <bsl/enable_color.hpp>
+#include <bsl/exit_code.hpp>
+#include <bsl/safe_idx.hpp>
+#include <bsl/safe_integral.hpp>
+
+/// <!-- description -->
+///   @brief Provides the main entry point for this application.
+///
+/// <!-- inputs/outputs -->
+///   @return bsl::exit_success on success, bsl::exit_failure otherwise.
+///
+[[nodiscard]] auto
+main() noexcept -> bsl::exit_code
+{
+    shim::kvm_msr_list mut_msr_list{};
+    constexpr auto star_val{0xC0000081_u32};
+    constexpr auto pat_val{0x00000277_u32};
+    constexpr auto apic_base_val{0x0000001B_u32};
+    constexpr auto init_nmsrs{0x10_u32};
+
+    bsl::enable_color();
+    integration::ioctl_t mut_system_ctl{shim::DEVICE_NAME};
+    bsl::array<bsl::uint32, bsl::uintmx(init_nmsrs.get())> mut_msr_indices{};
+
+    // nmsrs is too big
+    {
+        mut_msr_list.nmsrs = HYPERVISOR_PAGE_SIZE.get();
+        mut_msr_list.nmsrs++;
+        mut_msr_list.indices = mut_msr_indices.front_if();
+
+        integration::verify(
+            mut_system_ctl.write(shim::KVM_GET_MSR_INDEX_LIST, &mut_msr_list).is_neg());
+    }
+
+    {
+        mut_msr_list.nmsrs = init_nmsrs.get();
+        mut_msr_list.indices = mut_msr_indices.front_if();
+
+        integration::verify(
+            mut_system_ctl.write(shim::KVM_GET_MSR_INDEX_LIST, &mut_msr_list).is_zero());
+
+        auto mut_nmsrs{bsl::to_u32(mut_msr_list.nmsrs)};
+        integration::verify(mut_nmsrs > bsl::safe_u32::magic_0());
+    }
+
+    // Valid registers should be present
+    {
+        bool mut_found_star{false};
+        bool mut_found_pat{false};
+        bool mut_found_apic_base{false};
+        auto mut_nmsrs{bsl::to_idx(mut_msr_list.nmsrs)};
+
+        for (bsl::safe_idx mut_i{}; mut_i < mut_nmsrs; ++mut_i) {
+            if (star_val == mut_msr_list.indices[mut_i.get()]) {
+                mut_found_star = true;
+            }
+            else if (pat_val == mut_msr_list.indices[mut_i.get()]) {
+                mut_found_pat = true;
+            }
+            else if (apic_base_val == mut_msr_list.indices[mut_i.get()]) {
+                mut_found_apic_base = true;
+            }
+        }
+
+        integration::verify(mut_found_star);
+        integration::verify(mut_found_pat);
+        integration::verify(mut_found_apic_base);
+    }
+
+    // Try a bunch of times
+    {
+        constexpr auto num_loops{0x1000_umx};
+        for (bsl::safe_idx mut_i{}; mut_i < num_loops; ++mut_i) {
+            integration::verify(
+                mut_system_ctl.write(shim::KVM_GET_MSR_INDEX_LIST, &mut_msr_list).is_zero());
+        }
+    }
+
+    return bsl::exit_success;
+}

shim/linux/Makefile

@@ -170,6 +170,7 @@ ifneq ($(KERNELRELEASE),)
         $(TARGET_MODULE)-objs += ../../hypercall/src/linux/x64/amd/mv_vs_op_mp_state_set_impl.o
         $(TARGET_MODULE)-objs += ../../hypercall/src/linux/x64/amd/mv_vs_op_msr_get_impl.o
         $(TARGET_MODULE)-objs += ../../hypercall/src/linux/x64/amd/mv_vs_op_msr_get_list_impl.o
+        $(TARGET_MODULE)-objs += ../../hypercall/src/linux/x64/amd/mv_pp_op_msr_get_supported_list_impl.o
         $(TARGET_MODULE)-objs += ../../hypercall/src/linux/x64/amd/mv_vs_op_msr_set_impl.o
         $(TARGET_MODULE)-objs += ../../hypercall/src/linux/x64/amd/mv_vs_op_msr_set_list_impl.o
 		$(TARGET_MODULE)-objs += ../../hypercall/src/linux/x64/amd/mv_vs_op_fpu_get_all_impl.o
@@ -229,6 +230,7 @@ ifneq ($(KERNELRELEASE),)
         $(TARGET_MODULE)-objs += ../../hypercall/src/linux/x64/intel/mv_vs_op_mp_state_set_impl.o
         $(TARGET_MODULE)-objs += ../../hypercall/src/linux/x64/intel/mv_vs_op_msr_get_impl.o
         $(TARGET_MODULE)-objs += ../../hypercall/src/linux/x64/intel/mv_vs_op_msr_get_list_impl.o
+        $(TARGET_MODULE)-objs += ../../hypercall/src/linux/x64/intel/mv_pp_op_msr_get_supported_list_impl.o
         $(TARGET_MODULE)-objs += ../../hypercall/src/linux/x64/intel/mv_vs_op_msr_set_impl.o
         $(TARGET_MODULE)-objs += ../../hypercall/src/linux/x64/intel/mv_vs_op_msr_set_list_impl.o
 		$(TARGET_MODULE)-objs += ../../hypercall/src/linux/x64/intel/mv_vs_op_fpu_get_all_impl.o

shim/linux/include/platform_interface/shim_platform_interface.hpp

@@ -30,6 +30,7 @@
 #include <asm/ioctl.h>
 #include <kvm_fpu.hpp>
 #include <kvm_mp_state.hpp>
+#include <kvm_msr_list.hpp>
 #include <kvm_regs.hpp>
 #include <kvm_sregs.hpp>
 #include <kvm_userspace_memory_region.hpp>
@@ -61,7 +62,6 @@
 // #include <kvm_lapic_state.hpp>
 // #include <kvm_mp_state.hpp>
 // #include <kvm_msi.hpp>
-// #include <kvm_msr_list.hpp>
 // #include <kvm_msrs.hpp>
 // #include <kvm_nested_state.hpp>
 // #include <kvm_one_reg.hpp>
@@ -93,8 +93,9 @@ namespace shim
     constexpr bsl::safe_umx KVM_GET_API_VERSION{static_cast<bsl::uintmx>(_IO(SHIMIO.get(), 0x00))};
     /// @brief defines KVM's KVM_CREATE_VM IOCTL
     constexpr bsl::safe_umx KVM_CREATE_VM{static_cast<bsl::uintmx>(_IO(SHIMIO.get(), 0x01))};
-    // /// @brief defines KVM's KVM_GET_MSR_INDEX_LIST IOCTL
-    // constexpr bsl::safe_umx KVM_GET_MSR_INDEX_LIST{static_cast<bsl::uintmx>(_IOWR(SHIMIO.get(), 0x02, struct kvm_msr_list))};
+    /// @brief defines KVM's KVM_GET_MSR_INDEX_LIST IOCTL
+    constexpr bsl::safe_umx KVM_GET_MSR_INDEX_LIST{
+        static_cast<bsl::uintmx>(_IOWR(SHIMIO.get(), 0x02, struct kvm_msr_list))};
     // /// @brief defines KVM's KVM_GET_MSR_FEATURE_INDEX_LIST IOCTL
     // constexpr bsl::safe_umx KVM_GET_MSR_FEATURE_INDEX_LIST{static_cast<bsl::uintmx>(_IOWR(SHIMIO.get(), 0x0a, struct kvm_msr_list))};
     /// @brief defines KVM's KVM_CHECK_EXTENSION IOCTL

shim/linux/src/entry.c

@@ -31,6 +31,7 @@
 #include <handle_system_kvm_create_vm.h>
 #include <handle_system_kvm_destroy_vm.h>
 #include <handle_system_kvm_get_api_version.h>
+#include <handle_system_kvm_get_msr_index_list.h>
 #include <handle_system_kvm_get_vcpu_mmap_size.h>
 #include <handle_vcpu_kvm_get_fpu.h>
 #include <handle_vcpu_kvm_get_mp_state.h>
@@ -228,10 +229,58 @@ dispatch_system_kvm_get_msr_feature_index_list(
 }
 
 static long
-dispatch_system_kvm_get_msr_index_list(struct kvm_msr_list *const ioctl_args)
+dispatch_system_kvm_get_msr_index_list(
+    struct kvm_msr_list __user *const user_args)
 {
-    (void)ioctl_args;
-    return -EINVAL;
+    struct kvm_msr_list mut_args;
+    uint32_t __user *pmut_mut_user_indices;
+    int64_t mut_ret;
+    uint64_t mut_alloc_size;
+
+    if (platform_copy_from_user(&mut_args, user_args, sizeof(mut_args))) {
+        bferror("platform_copy_from_user failed");
+        return -EINVAL;
+    }
+
+    mut_alloc_size = mut_args.nmsrs * sizeof(*mut_args.indices);
+    if (mut_alloc_size > HYPERVISOR_PAGE_SIZE) {
+        bferror("requested nmsrs too big");
+        return -ENOMEM;
+    }
+
+    pmut_mut_user_indices = mut_args.indices;
+    mut_args.indices = vzalloc(mut_alloc_size);
+
+    if (NULL == mut_args.indices) {
+        bferror("vzalloc failed");
+        return -ENOMEM;
+    }
+
+    mut_ret = -EINVAL;
+    if (handle_system_kvm_get_msr_index_list(&mut_args)) {
+        bferror("handle_system_kvm_get_msr_index_list failed");
+        goto out;
+    }
+
+    if (platform_copy_to_user(user_args, &mut_args, sizeof(mut_args.nmsrs))) {
+        bferror("platform_copy_to_user nmsrs failed");
+        goto out;
+    }
+
+    if (platform_copy_to_user(
+            pmut_mut_user_indices,
+            mut_args.indices,
+            mut_args.nmsrs * sizeof(*mut_args.indices))) {
+        bferror("platform_copy_to_user indices failed");
+        goto out;
+    }
+
+    mut_ret = 0;
+out:
+    if (mut_args.indices)
+        vfree(mut_args.indices);
+
+    return mut_ret;
 }
 
 static long
@@ -322,7 +371,7 @@ dev_unlocked_ioctl_system(
 
         case KVM_GET_MSR_INDEX_LIST: {
             return dispatch_system_kvm_get_msr_index_list(
-                (struct kvm_msr_list *)ioctl_args);
+                (struct kvm_msr_list __user *)ioctl_args);
         }
 
         case KVM_GET_MSRS: {