Re: l4/sys/syscalls.h: No such file or directory

[Valentin Hauner]

Hi,

On 09/10/2014 09:34 PM, Björn Döbel wrote:
 Are you looking for examples on using the l4_task_map() system call?
   
No, I'm already using l4_task_map. But Adam suggested to map everything
from _stext  L4_PAGEMASK to _end  L4_PAGEMASK to all tasks, but I
don't know how to realize this. What does everything from _stext to
_end mean?

The only example that I've found looking for _stext and _end on your
website was the outdated one posted yesterday.

I've tried the following:

 l4_task_map(task_cap, L4RE_THIS_TASK_CAP,
  l4_fpage(((l4_umword_t)_stext)  L4_PAGEMASK, L4_PAGESHIFT, L4_FPAGE_RW),
  l4_map_control((l4_umword_t)_stext, 0, L4_MAP_ITEM_MAP));

 l4_task_map(task_cap, L4RE_THIS_TASK_CAP,
  l4_fpage(((l4_umword_t)_end)  L4_PAGEMASK, L4_PAGESHIFT, L4_FPAGE_RW),
  l4_map_control((l4_umword_t)_end, 0, L4_MAP_ITEM_MAP));

But of course, _stext and _end are undeclared.
Unfortunately, there are no further information about it on
os.inf.tu-dresden.de:
https://www.google.de/search?q=_stext+site%3Aos.inf.tu-dresden.de

Best regards,
Valentin

___
l4-hackers mailing list
l4-hackers@os.inf.tu-dresden.de
http://os.inf.tu-dresden.de/mailman/listinfo/l4-hackers

RE: Physical memory allocation to L4linux

[Masti Ramya Jayaram]

Hey guys,

I see that the IO request reaches the io_map function in 
kernel/fiasco/src/kern/ia32/map_util-io.cpp:

L4_error
io_map(Space *from, L4_fpage const fp_from, 
   Space *to, L4_fpage const fp_to, Mword control)
{

  typedef Map_traitsIo_space Mt;
  Mt::Addr rcv_pos = Mt::get_addr(fp_to);
  Mt::Addr snd_pos = Mt::get_addr(fp_from);

  Mt::Size rcv_size = Mt::Size::from_shift(fp_to.order());
  Mt::Size snd_size = Mt::Size::from_shift(fp_from.order());

  snd_pos = snd_pos.trunc(snd_size);
  rcv_pos = rcv_pos.trunc(rcv_size);
  Mt::constraint(snd_pos, snd_size, rcv_pos, rcv_size, Mt::Addr(0));

...
}

However, when I do a return L4_error:Map_failed from the beginning of this 
function to deny all IO requests, it does not propagate back to sigma0. Could 
someone explain how exactly this communication/IPC between the kernel and sigma 
works?

Thanks,
Ramya

From: Masti  Ramya Jayaram
Sent: 10 September 2014 16:07
To: Adam Lackorzynski; l4-hackers@os.inf.tu-dresden.de
Subject: RE: Physical memory allocation to L4linux

Update: Sorry, I misunderstood a few things in the previous email. The change 
was in fiasco and not sigma and therefore, in theory, no user space process 
should have access to the protected region. This also implies that sigma0 will 
not have access if I understand correctly which is rather nice.

So, I tried changing the handle_sigma0_page_fault function. This is located in 
kernel/fiasco/src/kern/ia32/thread-ia32.cpp to prevent mapping of some range of 
physical memory (NOT RAM) as follows:

IMPLEMENT inline
bool
Thread::handle_sigma0_page_fault(Address pfa)
{
  size_t size;

  // Check if mapping a superpage doesn't exceed the size of physical memory
  if (Cpu::have_superpages()
 // Some distributions do not allow to mmap below a certain threshold
 // (like 64k on Ubuntu 8.04) so we cannot map a superpage at 0 if
 // we're Fiasco-UX
   (!Config::Is_ux || !(pfa  Config::SUPERPAGE_SIZE)))
{
  pfa = Config::SUPERPAGE_MASK;
  size = Config::SUPERPAGE_SIZE;
}
  else
{
  pfa = Config::PAGE_MASK;
  size = Config::PAGE_SIZE;
}
--
 - My change start
  if((pfa=0xe000)  (pfa=0xefff)){
printf(\nNot allowed...denying\n);
return Mem_space::Insert_err_nomem;
}
--
 - My change end
  return mem_space()-v_insert(Mem_space::Phys_addr(pfa), Mem_space::Addr(pfa),
   Mem_space::Size(size),
   Mem_space::Page_writable
   | Mem_space::Page_user_accessible)
!= Mem_space::Insert_err_nomem;
}

However, I realized that when I try to map this address space using 
l4io_request_iomem, I see that it goes through and the call never reaches until 
fiasco's sigma0_page_fault handler. A little more debugging revealed that it 
goes as far as the following function in  l4/pkg/sigma0/server/src/memmap.cc:

static
void map_mem(l4_fpage_t fp, Memory_type fn, l4_umword_t t, Answer *an)
{
  an-clear();
  Mem_man *m;
  switch (fn)
{
case Ram:
  m = Mem_man::ram();
  break;
case Io_mem:
case Io_mem_cached:
  m = iomem;
  break;
default:
  return;
}

  unsigned long addr = m-alloc(Region::bs(fp.raw  ~((1UL  12) - 1),
1UL  l4_fpage_size(fp), t));

  if (addr == ~0UL)
return;

  /* the Fiasco kernel makes the page non-cachable if the frame
   * address is greater than mem_high */
  an-snd_base(addr);
  an-snd_fpage(addr, l4_fpage_size(fp), false, fn != Io_mem);
  an-tag = l4_msgtag(0, 0, 1, 0);

  return;
}

From here on, the generics make it a little hard to parse. So I am not sure 
where the control flow ends but it does not get to fiasco's sigma0 page fault 
handler. Given this,

a. does the handle_sigma0_page_fault only work on memory. The region I want to 
protect is not RAM.
b. Given that the setup of sigma0's memory happens in 
kernel/fiasco/src/kern/kernel_thread-std.cpp, is there more to be done here?

Thanks.
Ramya




From: Masti  Ramya Jayaram
Sent: 10 September 2014 09:46
To: Adam Lackorzynski; l4-hackers@os.inf.tu-dresden.de
Subject: RE: Physical memory allocation to L4linux

Hey Adam,

thanks a lot for the replies. I still have a few questions/clarifications 
though. :-)

a. Is there a way to implement the MODE=sigma for linux? I could not find 
anything that points to it.
b. Now if I were to tweak the page fault handler in sigma, then does that imply 
that even a corrupt moe/ned/l4linux cannot get access to the protected part of 
the address space?
c. Who are the clients of this page fault handler? Is it just what runs on top 
of sigma like moe, ned, l4linux or