Add support for executable remappings and blanket executable heap

Author: fwsGonzo

lib/tinykvm/amd64/paging.cpp

@@ -56,8 +56,72 @@ inline bool is_flagged_page(uint64_t flags, uint64_t entry) {
 	return (entry & flags) == flags;
 }
 
+static void add_remappings(vMemory& memory,
+	const VirtualRemapping& remapping,
+	uint64_t* pml4,
+	uint64_t flags,
+	uint64_t& free_page)
+{
+	if (remapping.virt <= free_page)
+		throw MachineException("Invalid remapping address", remapping.virt);
+	if (remapping.size % vMemory::PageSize() != 0)
+		throw MachineException("Invalid remapping size", remapping.size);
+	const auto virt_tera_page = (remapping.virt >> 39UL) & 511;
+	const auto virt_giga_page = (remapping.virt >> 30UL) & 511;
+
+	uint64_t paddr_base = remapping.phys;
+	if (paddr_base == 0x0) {
+		constexpr auto PD_ALIGN_MASK = (1ULL << 21U) - 1;
+		// Over-allocate rounding up to nearest 2MB
+		paddr_base = memory.machine.mmap_allocate(remapping.size + PD_ALIGN_MASK);
+		paddr_base = (paddr_base + PD_ALIGN_MASK) & ~PD_ALIGN_MASK;
+		// Relax allocation down to size
+		memory.machine.mmap() = paddr_base + remapping.size;
+	}
+
+	if (pml4[virt_tera_page] == 0) {
+		const auto pdpt_addr = free_page;
+		free_page += 0x1000;
+
+		pml4[virt_tera_page] = PDE64_PRESENT | PDE64_USER | PDE64_RW | pdpt_addr;
+	}
+
+	auto  pdpt_addr = pml4[virt_tera_page] & PDE64_ADDR_MASK;
+	auto* pdpt = memory.page_at(pdpt_addr);
+
+	// Allocate the gigapage with 512x 2MB entries
+	if (pdpt[virt_giga_page] == 0) {
+		const auto giga_page = free_page;
+		free_page += 0x1000;
+		pdpt[virt_giga_page] = PDE64_PRESENT | PDE64_USER | PDE64_RW | giga_page;
+	}
+
+	auto  pd_addr = pdpt[virt_giga_page] & PDE64_ADDR_MASK;
+	auto* pd = memory.page_at(pd_addr);
+
+	// Create 2MB entries for remapping size
+	const auto n_2mb_pages = (remapping.size >> 21UL) & 511;
+	for (uint64_t i = 0; i < 512; i++)
+	{
+		const auto paddr = paddr_base + (i << 21UL);
+		if (i < n_2mb_pages)
+			pd[i] = PDE64_PRESENT | flags | PDE64_PS | paddr;
+		else
+			pd[i] = 0;
+	}
+
+	// Track the first seen executable mapping, allowing mmap to use it for
+	// JIT segments.
+	if (remapping.executable && memory.vmem_exec_begin == 0)
+	{
+		memory.vmem_exec_begin = remapping.virt;
+		memory.vmem_exec_end = remapping.virt + remapping.size;
+	}
+}
+
 uint64_t setup_amd64_paging(vMemory& memory,
-	std::string_view binary, const std::vector<VirtualRemapping>& remappings)
+	std::string_view binary,
+	const std::vector<VirtualRemapping>& remappings)
 {
 	static constexpr uint64_t PD_MASK = (1ULL << 30) - 1;
 	const size_t PD_PAGES = (memory.size + PD_MASK) >> 30;
@@ -136,10 +200,16 @@ uint64_t setup_amd64_paging(vMemory& memory,
 	}
 
 	// Covers 1GB pages with 512x 2MB user-read-write entries
+	// NOTE: Even with executable heap, the ELF loader will still correctly
+	// apply the NX-bit to its own segments.
+	uint64_t heap_flags = PDE64_USER | PDE64_RW;
+	if (!memory.executable_heap)
+		heap_flags |= PDE64_NX;
 	for (uint64_t i = base_2mb_page+2; i < 512*PD_PAGES; i++) {
-		pd[i] = PDE64_PRESENT | PDE64_PS | PDE64_USER | PDE64_RW | PDE64_NX
+		pd[i] = PDE64_PRESENT | PDE64_PS | heap_flags
 			| ((base_giga_page << 30) + (i << 21));
 	}
+	printf("Heap is executable: %d\n", memory.executable_heap);
 
 	/* ELF executable area */
 	if (!binary.empty())
@@ -234,53 +304,10 @@ uint64_t setup_amd64_paging(vMemory& memory,
 	/* Virtual memory remappings (up to 1GB each, for now) */
 	for (const auto& vmem : remappings)
 	{
-		if (vmem.virt <= free_page)
-			throw MachineException("Invalid remapping address", vmem.virt);
-		if (vmem.size % vMemory::PageSize() != 0)
-			throw MachineException("Invalid remapping size", vmem.size);
-		const auto virt_tera_page = (vmem.virt >> 39UL) & 511;
-		const auto virt_giga_page = (vmem.virt >> 30UL) & 511;
-
-		uint64_t paddr_base = vmem.phys;
-		if (paddr_base == 0x0) {
-			constexpr auto PD_ALIGN_MASK = (1ULL << 21U) - 1;
-			// Over-allocate rounding up to nearest 2MB
-			paddr_base = memory.machine.mmap_allocate(vmem.size + PD_ALIGN_MASK);
-			paddr_base = (paddr_base + PD_ALIGN_MASK) & ~PD_ALIGN_MASK;
-			// Relax allocation down to size
-			memory.machine.mmap() = paddr_base + vmem.size;
-		}
-
-		if (pml4[virt_tera_page] == 0) {
-			const auto pdpt_addr = free_page;
-			free_page += 0x1000;
-
-			pml4[virt_tera_page] = PDE64_PRESENT | PDE64_USER | PDE64_RW | pdpt_addr;
-		}
-
-		auto  pdpt_addr = pml4[virt_tera_page] & PDE64_ADDR_MASK;
-		auto* pdpt = memory.page_at(pdpt_addr);
-
-		// Allocate the gigapage with 512x 2MB entries
-		if (pdpt[virt_giga_page] == 0) {
-			const auto giga_page = free_page;
-			free_page += 0x1000;
-			pdpt[virt_giga_page] = PDE64_PRESENT | PDE64_USER | PDE64_RW | giga_page;
-		}
-
-		auto  pd_addr = pdpt[virt_giga_page] & PDE64_ADDR_MASK;
-		auto* pd = memory.page_at(pd_addr);
-
-		// Create 2MB entries for remapping size
-		const auto n_2mb_pages = (vmem.size >> 21UL) & 511;
-		for (uint64_t i = 0; i < 512; i++)
-		{
-			const auto paddr = paddr_base + (i << 21UL);
-			if (i < n_2mb_pages)
-				pd[i] = PDE64_PRESENT | PDE64_USER | PDE64_RW | PDE64_NX | PDE64_PS | paddr;
-			else
-				pd[i] = 0;
-		}
+		uint64_t flags = PDE64_USER | PDE64_NX;
+		if (vmem.writable) flags |= PDE64_RW;
+		if (vmem.executable) flags &= ~PDE64_NX;
+		add_remappings(memory, vmem, pml4, flags, free_page);
 	}
 
 	// vDSO / vsyscall

lib/tinykvm/common.hpp

@@ -25,6 +25,8 @@ namespace tinykvm
 		uint64_t phys;
 		uint64_t virt;
 		size_t   size;
+		bool     writable = false;
+		bool     executable = false;
 	};
 
 	struct MachineOptions {
@@ -51,6 +53,8 @@ namespace tinykvm
 		bool allow_reset_to_new_master = false;
 		/* Allow fixed addresses with mmap(). */
 		bool allow_fixed_mmap = false;
+		/* Make heap executable, to support JIT. */
+		bool executable_heap = false;
 	};
 
 	class MachineException : public std::exception {

lib/tinykvm/machine_utils.cpp

@@ -1,7 +1,6 @@
 #include "machine.hpp"
 
 #include <cstring>
-#define USERMODE_FLAGS (0x7 | 1UL << 63) /* USER, READ/WRITE, PRESENT, NX */
 
 namespace tinykvm {
 static constexpr uint64_t PageMask() {
@@ -16,7 +15,7 @@ void Machine::memzero(address_t addr, size_t len)
 		{
 			const size_t offset = addr & PageMask();
 			const size_t size = std::min(vMemory::PageSize() - offset, len);
-			auto* page = memory.get_writable_page(addr & ~PageMask(), USERMODE_FLAGS, true);
+			auto* page = memory.get_writable_page(addr & ~PageMask(), memory.expectedUsermodeFlags(), true);
 			std::memset(&page[offset], 0, size);
 
 			addr += size;
@@ -38,7 +37,7 @@ void Machine::copy_to_guest(address_t addr, const void* vsrc, size_t len, bool z
 		{
 			const size_t offset = addr & PageMask();
 			const size_t size = std::min(vMemory::PageSize() - offset, len);
-			auto* page = memory.get_writable_page(addr & ~PageMask(), USERMODE_FLAGS, zeroes);
+			auto* page = memory.get_writable_page(addr & ~PageMask(), memory.expectedUsermodeFlags(), zeroes);
 			std::copy(src, src + size, &page[offset]);
 
 			addr += size;
@@ -135,7 +134,7 @@ size_t Machine::writable_buffers_from_range(
 	{
 		const size_t offset = addr & PageMask();
 		const size_t size = std::min(vMemory::PageSize() - offset, len);
-		auto *page = memory.get_writable_page(addr & ~PageMask(), USERMODE_FLAGS, false);
+		auto *page = memory.get_writable_page(addr & ~PageMask(), memory.expectedUsermodeFlags(), false);
 
 		auto* ptr = (char*) &page[offset];
 		if (last && ptr == last->ptr + last->len) {
@@ -173,7 +172,7 @@ void Machine::copy_from_machine(address_t addr, Machine& src, address_t sa, size
 			const size_t offset = addr & PageMask();
 			const size_t size = std::min(vMemory::PageSize() - offset, buf.len);
 			/* NOTE: We could use zeroes if remaining is >= PageSize() */
-			auto *page = memory.get_writable_page(addr & ~PageMask(), USERMODE_FLAGS, false);
+			auto *page = memory.get_writable_page(addr & ~PageMask(), memory.expectedUsermodeFlags(), false);
 			std::copy(buf.ptr, buf.ptr + size, &page[offset]);
 
 			if (size == buf.len) {

lib/tinykvm/memory.cpp

@@ -26,6 +26,7 @@ vMemory::vMemory(Machine& m, const MachineOptions& options,
 	  ptr(p), size(overaligned_memsize(s)), owned(own),
 	  main_memory_writes(options.master_direct_memory_writes),
 	  split_hugepages(options.split_hugepages),
+	  executable_heap(options.executable_heap),
 	  banks(m, options)
 {
 	// Main memory is not always starting at 0x0
@@ -35,6 +36,7 @@ vMemory::vMemory(Machine& m, const MachineOptions& options,
 vMemory::vMemory(Machine& m, const MachineOptions& options, const vMemory& other)
 	: vMemory{m, options, other.physbase, other.safebase, other.ptr, other.size, false}
 {
+	this->executable_heap = other.executable_heap;
 }
 vMemory::~vMemory()
 {
@@ -125,7 +127,7 @@ char* vMemory::safely_at(uint64_t addr, size_t asize)
 	const auto offset   = addr & PageMask();
 	if (offset + asize <= vMemory::PageSize())
 	{
-		auto* page = this->get_writable_page(pagebase, USERMODE_FLAGS, false);
+		auto* page = this->get_writable_page(pagebase, expectedUsermodeFlags(), false);
 		return &page[offset];
 	}
 
@@ -296,4 +298,13 @@ void vMemory::memory_exception(const char* msg, uint64_t addr, uint64_t size)
 	throw MemoryException(msg, addr, size);
 }
 
+
+uint64_t vMemory::expectedUsermodeFlags() const noexcept
+{
+	uint64_t flags = PDE64_PRESENT | PDE64_USER | PDE64_RW;
+	if (!this->executable_heap)
+		flags |= PDE64_NX;
+	return flags;
 }
+
+} // namespace tinykvm

lib/tinykvm/memory.hpp

@@ -19,6 +19,9 @@ struct vMemory {
 	uint64_t physbase;
 	uint64_t safebase;
 	uint64_t page_tables;
+	/* Optional executable memory range */
+	uint64_t vmem_exec_begin = 0;
+	uint64_t vmem_exec_end   = 0;
 	/* Linear memory */
 	char*  ptr;
 	size_t size;
@@ -28,6 +31,8 @@ struct vMemory {
 	bool   main_memory_writes = false;
 	/* Split into small pages (4K) when reaching a leaf hugepage. */
 	bool   split_hugepages = true;
+	/* Executable heap */
+	bool   executable_heap = false;
 	/* Dynamic page memory */
 	MemoryBanks banks; // fault-in memory banks
 	/* SMP mutex */
@@ -67,6 +72,8 @@ struct vMemory {
 	   again in order to support itself. It has already been made forkable. */
 	bool is_forkable_master() const noexcept;
 
+	uint64_t expectedUsermodeFlags() const noexcept;
+
 	/* Create new identity-mapped memory regions */
 	vMemory(Machine&, const MachineOptions&, uint64_t, uint64_t, char*, size_t, bool = true);
 	/* Loan memory from another machine */

src/functions.cpp

@@ -118,15 +118,26 @@ void setup_kvm_system_calls()
 	Machine::install_syscall_handler(
 		9, [] (auto& cpu) { // MMAP
 			auto& regs = cpu.registers();
+			const auto flags = regs.r10;
 			if (UNLIKELY(regs.rdi % vMemory::PageSize() != 0 || regs.rsi == 0)) {
 				// Size not matching a 4K page size
 				regs.rax = ~0LL; /* MAP_FAILED */
 			} else if (UNLIKELY(int(regs.r8) >= 0)) {
 				// mmap to file fd (*NOT* supported)
 				regs.rax = ~0LL; /* MAP_FAILED */
+			} else if ((flags & 0x4) != 0) {
+				// Executable mappings are supported if there is an execute-range in vMemory
+				auto& memory = cpu.machine().main_memory();
+				if (memory.vmem_exec_begin != 0x0) {
+					regs.rax = memory.vmem_exec_begin;
+					memory.vmem_exec_begin += regs.rsi;
+				} else {
+					regs.rax = ~0LL; /* MAP_FAILED */
+				}
 			} else if (regs.rdi != 0x0 && cpu.machine().allow_fixed_mmap()) {
 				regs.rax = regs.rdi;
 			} else if (regs.rdi != 0x0 && regs.rdi >= cpu.machine().heap_address() && regs.rdi < cpu.machine().mmap_start()) {
+				// Existing range already mmap'ed
 				regs.rax = regs.rdi;
 			} else {
 				// Round up to nearest power-of-two