Commit Graph

456 Commits

Author SHA1 Message Date
David B. Kinder
5c6bfd7392 doc: improvements for sphinx generation
Handle version retrieval better when comments are present.
Add warning if Sphinx theme (read_the_docs) is missing.

Signed-off-by: David B. Kinder <david.b.kinder@intel.com>
2018-03-16 10:18:42 -07:00
David B. Kinder
9ddc6e47b9 add .gitignore
create a .gitignore that ignores output created by Make

Signed-off-by: David B. Kinder <david.b.kinder@intel.com>
2018-03-16 21:55:05 +08:00
Li, Fei1
bd21cdb624 minor fix on get_ptdev_info
Signed-off-by: Li, Fei1 <fei1.li@intel.com>
2018-03-16 21:52:34 +08:00
Mingqiang Chi
bf8714b7e0 add create secure world ept API
This patch is prepared for enabling secure world feature.
this api will create new eptp for secure world, whose PDPT
entries are copied form normal world,the PML4/PDPT for secure
world are separated from Normal World, PD/PT are shared in the
Secure World's EPT and Normal World's EPT.Secure world can
access Normal World's memory, but Normal World can not access
Secure World's memory
This function implemented:
-- Unmap specific memory from guest ept mapping
-- Copy PDPT from Normal world to Secure world
-- Map specific memory for Secure world
-- Unmap specific memory from SOS ept mapping

Signed-off-by: Mingqiang Chi <mingqiang.chi@intel.com>
2018-03-16 21:52:15 +08:00
Yin Fengwei
981b323394 vm: Pass uuid from DM commandline to vm as GUID.
Also save the uuid to ctx in case DM needs to access the
uuid.

Signed-off-by: Yin Fengwei <fengwei.yin@intel.com>
2018-03-16 21:46:11 +08:00
David B. Kinder
d5f8a4fe7f add .gitignore
create a .gitignore that ignores build output created by make

Signed-off-by: David B. Kinder <david.b.kinder@intel.com>
2018-03-16 21:45:43 +08:00
David Kinder
b1b9f132ec
Merge pull request #33 from gvancuts/ubuntu-debian-instructions
Getting Started Guide: add instructions for other OSs
2018-03-15 14:21:53 -07:00
Geoffroy Van Cutsem
6ebdfedbbf Getting Started Guide: add instructions for other OSs
Add instructions on how to build the hypervisor and device model
on other operating systems such as Ubuntu/Debian, Fedora/Redhat
and CentOS.

Signed-off-by: Geoffroy Van Cutsem <geoffroy.vancutsem@intel.com>
2018-03-15 13:19:56 -07:00
wenshelx
7408fda58e security: data relocation and protection(RELRO)
RELRO rearranges the data sections inside an ELF
executable. It also marks certain areas as 'read-only'
so that these data structures cannot be overwritten while
the process is running.

Tracked-On: 224003
Signed-off-by: wenshelx <wenshengx.wang@intel.com>
2018-03-15 16:50:44 +08:00
wenshelx
927b1edc19 security: enable stack protector
Enable stack-proctector-strong option for gcc emiting
extra code to check buffer overflow.

Enable noexecstack option for marking the object as not
requiring executable stack.

Tracked-On: 224003
Signed-off-by: wenshelx <wenshengx.wang@intel.com>
2018-03-15 16:50:44 +08:00
Yin Fengwei
4235a64757 dm: use getopt_long instead of getopt to parse dm cmdline
It will be easier if we want to add more command line options
with long options.

Signed-off-by: Yin Fengwei <fengwei.yin@intel.com>
2018-03-15 16:50:29 +08:00
Li, Fei1
4f65dd477a Simple get_vmx_cap()
Don't check MSR Control Features in get_vmx_cap

Signed-off-by: Li, Fei1 <fei1.li@intel.com>
2018-03-15 16:33:08 +08:00
Yan, Like
05b8f366f6 Remove ASSERT in lib functions
Replace ASSERT in lib functions with error message print and return a
value indicating error to allow the caller of lib functions to handle
the error.

Change-Id: If166484238dc0734041adfdbb19a5b374c044e33
Signed-off-by: Yan, Like <like.yan@intel.com>
2018-03-15 16:29:51 +08:00
Li, Fei1
b0f8781500 Call monitor_cap_detect in bsp_boot_init
On the APL NUC board (CPU family: 0x6 model: 92), the monitor is buggy.
We can't use it to wake up CPU core from mwait by memory monitor.

Signed-off-by: Li, Fei1 <fei1.li@intel.com>
2018-03-15 16:28:02 +08:00
Mingqiang Chi
78649c4a52 add data structure in vm for enable trusty feature
add key info structure
add sworld_eptp in vm structure, and rename ept->nworld_eptp
add secure world control structure

Change-Id:
Tracked-On:220921
Signed-off-by: Mingqiang Chi <mingqiang.chi@intel.com>
2018-03-15 16:26:55 +08:00
Jason Chen CJ
b4580d69b8 retpoline: replace indirect jmp in switch_to function
Signed-off-by: Jason Chen CJ <jason.cj.chen@intel.com>
2018-03-15 16:25:53 +08:00
Jason Chen CJ
f61d7ed41f retpoline: add indirect thunk support
for gcc version > 7.3, enable CONFIG_RETPOLINE

Signed-off-by: Jason Chen CJ <jason.cj.chen@intel.com>
2018-03-15 16:25:53 +08:00
Jason Chen CJ
aaeb52577f vpic: use calloc to init vpic instead of malloc
vpic struct should be init as 0

Signed-off-by: Jason Chen CJ <jason.cj.chen@intel.com>
2018-03-15 16:25:53 +08:00
Jason Chen CJ
4b750331b1 uefi: restore cr registers according to efi context
Signed-off-by: Jason Chen CJ <jason.cj.chen@intel.com>
2018-03-15 16:25:53 +08:00
Yin Fengwei
9848000879 apicv: cancel event injection if vcpu is scheduled out
And re-inject the event after vcpu is scheduled in.

Signed-off-by: Yin Fengwei <fengwei.yin@intel.com>
2018-03-15 16:24:13 +08:00
David Kinder
f483ddebdb
Merge pull request #32 from dbkinder/license
doc: update project documentation LICENSE
2018-03-14 12:38:43 -07:00
David B. Kinder
46d8c04843 doc: update project documentation LICENSE
Per Project ACRN governance, documentation is under a Creative Commons
Attribution 4.0 International License (CC BY 4.0).  This patch updates
this information, and adds a tagline to documentation mentioning this
license.

Signed-off-by: David B. Kinder <david.b.kinder@intel.com>
2018-03-14 12:33:47 -07:00
David Kinder
17f0c780fe
Delete LICENSE 2018-03-14 11:14:56 -07:00
wenshelx
5e1b371b24 security: fortify source and format string check
"-O2 -D_FORTIFY_SOURCE=2":
GCC C-Compiler can analyze the source code to be compiled and detect
certain insecure sections, that might create a security problem. The
compiler will replace the insecure function calls with special hardened
code that will perform extra runtime checks while the process is
executed.
"-Wformat -Wformat-security":
It warns about calls to "printf" and "scanf" functions where the format
string is not a string literal and there are no format arguments, as in
"printf (foo);". This may be a security hole if the format string came
from untrusted input and contains %n.

Tracked-On: 224003
Signed-off-by: wenshelx <wenshengx.wang@intel.com>
2018-03-13 19:30:05 -07:00
David Kinder
cbfbc3949f
Merge pull request #31 from dbkinder/filter-warnings
doc: filter known issues
2018-03-13 16:43:37 -07:00
David B. Kinder
561562dd76 doc: filter known issues
make the doc build process quiet and add filtering of known (Sphinx)
issues.  Scripting comes from the open source Zephyr project.

Signed-off-by: David B. Kinder <david.b.kinder@intel.com>
2018-03-13 16:38:08 -07:00
Anthony Xu
e24050ae8b
Merge pull request #5 from shuox/fix_PCIR_BIOS_handling
Ignore length of resource for PCI ROM request
2018-03-13 15:00:15 -07:00
David Kinder
5dd9ac176c
Merge pull request #30 from dbkinder/edits1
doc: general edit for typos
2018-03-13 12:05:23 -07:00
David B. Kinder
adc74cbc37 doc: general edit for typos
Fix typos and misspellings, and tweak CSS for spacing before lists.

Signed-off-by: David B. Kinder <david.b.kinder@intel.com>
2018-03-13 11:59:40 -07:00
Shuo Liu
154523a874 Ignore length of resource for PCI ROM request
Writing PCIR_BIOS is to get PCI ROM resource length. Ingore the request
as it's not support currently. Else, guest might get wrong information
about the PCI ROM resource.

Signed-off-by: Shuo Liu <shuo.a.liu@intel.com>
2018-03-13 15:17:28 +08:00
David Kinder
3269706e07
Merge pull request #29 from dbkinder/doxy-exclude
doc: fix doxy for hiding internal symbols
2018-03-12 11:27:34 -07:00
David B. Kinder
0250fc3298 doc: fix doxy for hiding internal symbols
Docyten syntax for EXCLUDE_SYMBOLS is with spaces for separator,
not commas.

Signed-off-by: David B. Kinder <david.b.kinder@intel.com>
2018-03-12 11:21:23 -07:00
David Kinder
da2df5a5af
Merge pull request #28 from dbkinder/gsg-1
doc: update GSG instructions
2018-03-12 07:58:19 -07:00
David B. Kinder
19ac78d834 doc: update GSG instructions
Add some clarity edits and fix misspellings

Signed-off-by: David B. Kinder <david.b.kinder@intel.com>
2018-03-12 07:52:39 -07:00
David Kinder
2d1d1e5834
Merge pull request #27 from ailun258/patch-1
update to support latest image
2018-03-12 07:24:26 -07:00
ailun258
3b2bfade81
update to support latest image
changed 3 to support latest image release
1, deleted one bundle installation -os-clr-on-clr-dev
2, changed the default configuration file path to /usr/share/acrn/demo 
3, after installed service os bundle, all the configuration files and scripts were installed, no need to download manually any more
2018-03-12 20:41:32 +08:00
David Kinder
9037ce8caf
Merge pull request #26 from dbkinder/master
doc: Update publish process in Makefile
2018-03-11 08:49:33 -07:00
David B. Kinder
3b86ac613e doc: Update publish process in Makefile
Simplify the publishing process to projectacrn.github.io by making
commits directly to the projectacrn/projectacrn.github.io repo (rather
than to a personal repo, doing a PR, and processing the PR).  This
eliminates manual processing in an otherwise automated publishing
process:  PR reviews aren't needed for this step.

Signed-off-by: David B. Kinder <david.b.kinder@intel.com>
2018-03-11 08:40:26 -07:00
David Kinder
979411cb07
Merge pull request #25 from gvancuts/update-cl-version
getting-started-guide: update Clear Linux version to min required
2018-03-11 08:05:19 -07:00
Geoffroy Van Cutsem
7b2b622267 getting-started-guide: update Clear Linux version to min required
Signed-off-by: Geoffroy Van Cutsem <geoffroy.vancutsem@intel.com>
2018-03-10 23:49:55 -08:00
David Kinder
6100dd1fff
Merge pull request #24 from dbkinder/master
doc: remove "under construction" tagline
2018-03-10 15:01:27 -08:00
David B. Kinder
2d481c0e00 doc: remove "under construction" tagline
we're getting close...

Signed-off-by: David B. Kinder <david.b.kinder@intel.com>
2018-03-10 14:55:35 -08:00
David Kinder
3041f00089
Merge pull request #23 from dbkinder/gsg
doc: add Getting Started Guide
2018-03-10 14:42:55 -08:00
David B. Kinder
14d72d2d8e doc: add Getting Started Guide
Initial version of Getting Started Guide doc (and images).
Need to replace images with better ones.

Signed-off-by: David B. Kinder <david.b.kinder@intel.com>
2018-03-10 14:35:19 -08:00
David Kinder
c6a32451a7
Merge pull request #22 from dbkinder/master
doc: fix misspellings
2018-03-10 00:12:09 -08:00
David B. Kinder
9242b2d0a9 doc: fix misspellings
Signed-off-by: David B. Kinder <david.b.kinder@intel.com>
2018-03-10 00:06:35 -08:00
David Kinder
4941243470
Merge pull request #21 from dbkinder/master
doc: update release notes
2018-03-10 00:00:40 -08:00
David B. Kinder
b8014ead1e doc: update release notes
Signed-off-by: David B. Kinder <david.b.kinder@intel.com>
2018-03-09 23:55:24 -08:00
David Kinder
c0f0a4bc4d
Merge pull request #20 from dbkinder/fix-contribute
doc: fix error in contributing guidelines
2018-03-09 23:50:56 -08:00
David B. Kinder
2dbcb18103 doc: fix error in contributing guidelines
fix typo

Signed-off-by: David B. Kinder <david.b.kinder@intel.com>
2018-03-09 23:45:15 -08:00