hv: tee: add TEE VM memmap support

TEE is a secure VM which has its own partitioned resources while REE is a normal VM which owns the rest of platform resources. The TEE, as a secure world, it can see the memory of the REE VM, also known as normal world, but not the other way around. But please note, TEE and REE can only see their own devices. So this patch does the following things: 1. go through physical e820 table, to ept add all system memory entries. 2. remove hv owned memory. Tracked-On: #6571 Signed-off-by: Jie Deng <jie.deng@intel.com> Reviewed-by: Wang, Yu1 <yu1.wang@intel.com> Acked-by: Eddie Dong <eddie.dong@Intel.com>
2025-06-24 14:33:38 +00:00 · 2021-09-14 15:16:35 +08:00 · 2021-09-14 15:16:35 +08:00 · f3792a74a3
commit f3792a74a3
parent 0b1418d395
4 changed files with 75 additions and 3 deletions
--- a/hypervisor/Makefile
+++ b/hypervisor/Makefile
@ -22,6 +22,7 @@ HW_MOD = $(HV_MODDIR)/hw_mod.a
 VP_BASE_MOD = $(HV_MODDIR)/vp_base_mod.a
 VP_DM_MOD = $(HV_MODDIR)/vp_dm_mod.a
 VP_TRUSTY_MOD = $(HV_MODDIR)/vp_trusty_mod.a
+VP_X86_TEE_MOD = $(HV_MODDIR)/vp_x86_tee_mod.a
 VP_HCALL_MOD = $(HV_MODDIR)/vp_hcall_mod.a
 LIB_DEBUG = $(HV_MODDIR)/libdebug.a
 LIB_RELEASE = $(HV_MODDIR)/librelease.a
@ -342,6 +343,9 @@ VP_TRUSTY_C_SRCS += arch/x86/seed/seed.c
 VP_TRUSTY_C_SRCS += arch/x86/seed/seed_abl.c
 VP_TRUSTY_C_SRCS += arch/x86/seed/seed_sbl.c

+# x86 tee support
+VP_X86_TEE_C_SRCS += arch/x86/guest/optee.c
+
 # virtual platform hypercall
 VP_HCALL_C_SRCS += arch/x86/guest/vmcall.c
 VP_HCALL_C_SRCS += common/hypercall.c
@ -360,6 +364,7 @@ VP_BASE_C_OBJS := $(patsubst %.c,$(HV_OBJDIR)/%.o,$(VP_BASE_C_SRCS))
 VP_BASE_S_OBJS := $(patsubst %.S,$(HV_OBJDIR)/%.o,$(VP_BASE_S_SRCS))
 VP_DM_C_OBJS := $(patsubst %.c,$(HV_OBJDIR)/%.o,$(VP_DM_C_SRCS))
 VP_TRUSTY_C_OBJS := $(patsubst %.c,$(HV_OBJDIR)/%.o,$(VP_TRUSTY_C_SRCS))
+VP_X86_TEE_C_OBJS := $(patsubst %.c,$(HV_OBJDIR)/%.o,$(VP_X86_TEE_C_SRCS))
 VP_HCALL_C_OBJS := $(patsubst %.c,$(HV_OBJDIR)/%.o,$(VP_HCALL_C_SRCS))
 SYS_INIT_C_OBJS := $(patsubst %.c,$(HV_OBJDIR)/%.o,$(SYS_INIT_C_SRCS))

@ -373,6 +378,7 @@ MODULES += $(HW_MOD)
 MODULES += $(VP_BASE_MOD)
 MODULES += $(VP_DM_MOD)
 MODULES += $(VP_TRUSTY_MOD)
+MODULES += $(VP_X86_TEE_MOD)
 MODULES += $(VP_HCALL_MOD)
 ifeq ($(CONFIG_RELEASE),y)
 MODULES += $(LIB_RELEASE)
@ -420,7 +426,7 @@ pre_build: $(HV_CONFIG_H) $(HV_CONFIG_TIMESTAMP)
 .PHONY: header
 header: $(VERSION) $(HV_CONFIG_H) $(HV_CONFIG_TIMESTAMP)

-.PHONY: lib-mod boot-mod hw-mod vp-base-mod vp-dm-mod vp-trusty-mod vp-hcall-mod sys-init-mod
+.PHONY: lib-mod boot-mod hw-mod vp-base-mod vp-dm-mod vp-trusty-mod vp-x86tee-mod vp-hcall-mod sys-init-mod
 $(LIB_MOD): $(LIB_C_OBJS) $(LIB_S_OBJS)
 	$(AR) $(ARFLAGS) $(LIB_MOD) $(LIB_C_OBJS) $(LIB_S_OBJS)

@ -451,6 +457,11 @@ $(VP_TRUSTY_MOD): $(VP_TRUSTY_C_OBJS)

 vp-trusty-mod: $(VP_TRUSTY_MOD)

+$(VP_X86_TEE_MOD): $(VP_X86_TEE_C_OBJS)
+	$(AR) $(ARFLAGS) $(VP_X86_TEE_MOD) $(VP_X86_TEE_C_OBJS)
+
+vp-x86tee-mod: $(VP_X86_TEE_MOD)
+
 $(VP_HCALL_MOD): $(VP_HCALL_C_OBJS)
 	$(AR) $(ARFLAGS) $(VP_HCALL_MOD) $(VP_HCALL_C_OBJS)

--- a/hypervisor/arch/x86/guest/optee.c
+++ b/hypervisor/arch/x86/guest/optee.c
@ -0,0 +1,35 @@
+/*
+ * Copyright (C) 2021 Intel Corporation. All rights reserved.
+ *
+ * SPDX-License-Identifier: BSD-3-Clause
+ */
+
+#include <asm/guest/vm.h>
+#include <asm/guest/ept.h>
+#include <asm/vm_config.h>
+#include <asm/mmu.h>
+#include <asm/guest/optee.h>
+#include <asm/trampoline.h>
+#include <reloc.h>
+
+void prepare_tee_vm_memmap(struct acrn_vm *vm, const struct acrn_vm_config *vm_config)
+{
+	uint64_t hv_hpa;
+
+	/*
+	 * Only need to map following things, let init_vpci to map the secure devices
+	 * if any.
+	 *
+	 * 1. go through physical e820 table, to ept add all system memory entries.
+	 * 2. remove hv owned memory.
+	 */
+	if ((vm_config->guest_flags & GUEST_FLAG_TEE) != 0U) {
+		vm->e820_entry_num = get_e820_entries_count();
+		vm->e820_entries = (struct e820_entry *)get_e820_entry();
+
+		prepare_vm_identical_memmap(vm, E820_TYPE_RAM, EPT_WB | EPT_RWX);
+
+		hv_hpa = hva2hpa((void *)(get_hv_image_base()));
+		ept_del_mr(vm, (uint64_t *)vm->arch_vm.nworld_eptp, hv_hpa, get_hv_ram_size());
+	}
+}
--- a/hypervisor/arch/x86/guest/vm.c
+++ b/hypervisor/arch/x86/guest/vm.c
@ -43,6 +43,7 @@
 #include <quirks/security_vm_fixup.h>
 #endif
 #include <asm/boot/ld_sym.h>
+#include <asm/guest/optee.h>

 /* Local variables */

@ -614,8 +615,18 @@ int32_t create_vm(uint16_t vm_id, uint64_t pcpu_bitmap, struct acrn_vm_config *v
 		}

 		if (vm_config->load_order == PRE_LAUNCHED_VM) {
-			create_prelaunched_vm_e820(vm);
-			prepare_prelaunched_vm_memmap(vm, vm_config);
+			/*
+			 * If a prelaunched VM has the flag GUEST_FLAG_TEE set then it
+			 * is a special prelaunched VM called TEE VM which need special
+			 * memmap, e.g. mapping the REE VM into its space. Otherwise,
+			 * just use the standard preplaunched VM memmap.
+			 */
+			if ((vm_config->guest_flags & GUEST_FLAG_TEE) != 0U) {
+				prepare_tee_vm_memmap(vm, vm_config);
+			} else {
+				create_prelaunched_vm_e820(vm);
+				prepare_prelaunched_vm_memmap(vm, vm_config);
+			}
 			status = init_vm_boot_info(vm);
 		}
 	}
--- a/hypervisor/include/arch/x86/asm/guest/optee.h
+++ b/hypervisor/include/arch/x86/asm/guest/optee.h
@ -0,0 +1,15 @@
+/*
+ * Copyright (C) 2021 Intel Corporation. All rights reserved.
+ *
+ * SPDX-License-Identifier: BSD-3-Clause
+ */
+
+#ifndef TEE_H_
+#define TEE_H_
+
+#include <asm/guest/vm.h>
+#include <asm/vm_config.h>
+
+void prepare_tee_vm_memmap(struct acrn_vm *vm, const struct acrn_vm_config *vm_config);
+
+#endif /* TEE_H_ */