Import two python scripts from muen.git

Summary:
Import and rename the following scripts from muen.git:

- policy/xml/mirageos/compose.py : solo5-policy-compose.py
- components/linux/misc/linux-muen-gencspec.py : linux-gencspec.py

The following command in the muen.git repository has been used for the
import:

  $ git filter-repo \
      --path policy/xml/mirageos/compose.py \
      --path components/linux/misc/linux-muen-gencspec.py \
      --path-rename policy/xml/mirageos/compose.py:scripts/solo5-policy-compose.py \
      --path-rename components/linux/misc/linux-muen-gencspec.py:scripts/linux-gencspec.py

Also rename solo5-muen-gencspec.py to solo5-gencspec.py, reformat
linux-gencspec.py with black and remove _paths import from linux-gencspec.py
(no longer needed).

Reviewers: #muen, ken

Reviewed By: #muen, ken

Subscribers: ken

Differential Revision: https://dev.codelabs.ch/D1272

Author: reet-

scripts/linux-gencspec.py

@@ -0,0 +1,195 @@
+#!/usr/bin/env python3
+
+import argparse
+from lxml import etree
+import os
+import sys
+
+import muutils
+
+DESCRIPTION = "Linux XML component spec generator"
+LINUX_VIRTUAL_ADDRESS = "16#0040_0000#"
+INITRAMFS_VIRTUAL_ADDRESS = 0x90000000
+
+# See arch/x86/include/asm/boot.h
+BOOT_HEAP_SIZE = 0x10000
+BOOT_STACK_SIZE = 0x4000
+
+
+def add_provides_memory(
+    xml_spec, name, region_type, address, filename, size, executable, writable
+):
+    """
+    Add file-backed memory region with given name and size to <provides>
+    section of XML spec. The size is rounded up to the next 4K.
+    """
+    provides = xml_spec.xpath("/component/provides")[0]
+    mem_size = size
+    mem_size -= mem_size % -4096
+    print(
+        "* Adding '"
+        + name
+        + "' region with size "
+        + str(mem_size)
+        + " bytes, address "
+        + address
+        + ", type "
+        + region_type
+    )
+    mem = etree.Element(
+        "memory",
+        logical=name,
+        virtualAddress=address,
+        size=muutils.int_to_ada_hex(mem_size),
+        executable=executable,
+        writable=writable,
+        type=region_type,
+    )
+    etree.SubElement(mem, "file", filename=filename, offset="none")
+    provides.append(mem)
+
+
+def get_initramfs_attrs(xml_spec):
+    """
+    Return virtual address of initramfs so its mapped directly adjacent to the
+    existing initramfs. Also return whether the initramfs mapping is executable
+    and writable.
+    """
+    phys_regions = xml_spec.xpath("/system/memory/memory" + "[@type='subject_initrd']")
+    if len(phys_regions) > 1:
+        print("Warning: Muen system policy has multiple initramfs regions.")
+        return None
+
+    if len(phys_regions) == 0:
+        return muutils.int_to_ada_hex(INITRAMFS_VIRTUAL_ADDRESS), False, False
+
+    phys_name = phys_regions[0].attrib["name"].lower()
+    mems = xml_spec.xpath(
+        "/system/subjects/subject/memory/memory[@physical='" + phys_name + "']"
+    )
+    if len(mems) == 0:
+        return muutils.int_to_ada_hex(INITRAMFS_VIRTUAL_ADDRESS), False, False
+
+    size = muutils.ada_hex_to_int(phys_regions[0].attrib["size"])
+    virtual_address = mems[0].attrib["virtualAddress"]
+    executable = mems[0].attrib["executable"]
+    writable = mems[0].attrib["writable"]
+
+    """
+    Check that all existing initramfs mappings are located at the same virtual
+    address. This is necessary to ensure consecutiveness for all Linux
+    subjects, since the additional initramfs is added to the component XML spec
+    and thus mapped at a specific virtual address in *all* Linux subjects.
+    Also, only set executable/writable to true if all mappings allow it.
+    """
+    for mapping in mems:
+        if mapping.attrib["virtualAddress"] != virtual_address:
+            print("Warning: Initramfs mappings not at same virtual address.")
+            return None, False, False
+        executable = executable and mapping.attrib["executable"]
+        writable = writable and mapping.attrib["writable"]
+
+    new_address = muutils.ada_hex_to_int(virtual_address) + size
+    return muutils.int_to_ada_hex(new_address), executable, writable
+
+
+def parse_args():
+    """
+    Returned parsed command line arguments
+    """
+    arg_parser = argparse.ArgumentParser(description=DESCRIPTION)
+    arg_parser.add_argument("kernel_binary", type=str, help="Linux kernel binary")
+    arg_parser.add_argument(
+        "src_xml_spec", type=str, help="Muen component source XML specification"
+    )
+    arg_parser.add_argument(
+        "--out_spec", type=str, help=("Filename of generated Muen component XML")
+    )
+    arg_parser.add_argument("--initramfs", type=str, help="Linux Modules Initramfs")
+    arg_parser.add_argument("--src_policy", type=str, help=("Muen XML system policy"))
+
+    return arg_parser.parse_args()
+
+
+args = parse_args()
+src_bin_path = args.kernel_binary
+src_spec_path = args.src_xml_spec
+src_policy_path = args.src_policy
+src_initramfs_path = args.initramfs
+out_spec_path = args.out_spec
+
+if not os.path.isfile(src_bin_path):
+    sys.exit("Error: Linux kernel binary not found '" + src_bin_path + "'")
+
+if not os.path.isfile(src_spec_path):
+    sys.exit("Error: Source component XML specification not found")
+
+if out_spec_path is None:
+    sys.exit(("Error: Muen output component XML specification not specified"))
+
+if src_initramfs_path is not None:
+    if src_policy_path is None:
+        sys.exit("Error: Muen source system policy XML not specified")
+
+    if not os.path.isfile(src_policy_path):
+        sys.exit(
+            "Error: Muen source system policy XML not found '" + src_policy_path + "'"
+        )
+
+out_spec_dir = os.path.dirname(out_spec_path)
+if len(out_spec_dir) > 0 and not os.path.isdir(out_spec_dir):
+    sys.exit(
+        (
+            "Error: Output directory for component specification does not "
+            + "exist ('"
+            + os.path.dirname(out_spec_dir)
+            + "')"
+        )
+    )
+
+print("Reading source component specification from '" + src_spec_path + "'")
+src_spec_name = os.path.basename(src_spec_path)
+xml_parser = etree.XMLParser(remove_blank_text=True)
+src_spec = etree.parse(src_spec_path, xml_parser).getroot()
+
+print("Processing Linux binary '" + src_bin_path + "'")
+binary_name = os.path.basename(src_bin_path)
+binary_size = os.path.getsize(src_bin_path)
+binary_size += BOOT_HEAP_SIZE + BOOT_STACK_SIZE
+add_provides_memory(
+    src_spec,
+    "binary",
+    "subject_binary",
+    LINUX_VIRTUAL_ADDRESS,
+    binary_name,
+    binary_size,
+    "true",
+    "true",
+)
+
+if src_initramfs_path is not None:
+    print("Reading source system policy from '" + src_policy_path + "'")
+    src_policy = etree.parse(src_policy_path, xml_parser).getroot()
+    initramfs_addr, executable, writable = get_initramfs_attrs(src_policy)
+
+    if initramfs_addr is None:
+        print("Warning: Manually add mappings for " + src_initramfs_path)
+    else:
+        print("Processing initramfs '" + src_initramfs_path + "'")
+        initramfs_name = os.path.basename(src_initramfs_path)
+        initramfs_size = os.path.getsize(src_initramfs_path)
+        add_provides_memory(
+            src_spec,
+            "modules_initramfs",
+            "subject_initrd",
+            initramfs_addr,
+            initramfs_name,
+            initramfs_size,
+            executable,
+            writable,
+        )
+
+
+with open(out_spec_path, "wb") as out_spec:
+    print("Writing component specification to '" + out_spec_path + "'")
+    out_spec.write(etree.tostring(src_spec, pretty_print=True))

scripts/solo5-muen-gencspec.py scripts/solo5-gencspec.pyscripts/solo5-muen-gencspec.py renamed to scripts/solo5-gencspec.py

@@ -0,0 +1,189 @@
+#!/usr/bin/env python3
+
+import argparse
+
+from copy import deepcopy
+from lxml import etree
+
+import muutils
+
+SUBJECT_NAME = "unikernel"
+LINUX_NAME = "nic_linux"
+LINUX_BASE_ADDR = 0xE03000000
+LINUX_BOOTPARAM = "unikernel_iface"
+RESET_VAR_NAME = "resettable"
+
+
+def add_physical_channels(doc, comp_channels, subject_name):
+    """
+    Add physical channels for given component channels using specified subject
+    name to construct the physical name.
+    """
+    phys_channels = doc.xpath("/system/channels")[0]
+    for comp_chan in comp_channels:
+        name = comp_chan.get("logical")
+        size = comp_chan.get("size")
+        phys_name = subject_name + "_" + name.replace("|", "_")
+        print("* Adding physical channel '" + phys_name + "' with size " + size)
+        etree.SubElement(phys_channels, "channel", name=phys_name, size=size)
+
+
+def add_subject_channel_mappings(doc, comp_channels, subject_name):
+    """
+    Add component channel mappings for given component channels to subject with
+    specified name.
+    """
+    subj_comp = doc.xpath(
+        "/system/subjects/subject[@name='" + subject_name + "']/component"
+    )[0]
+    for comp_chan in comp_channels:
+        log_name = comp_chan.get("logical")
+        phys_name = subject_name + "_" + log_name.replace("|", "_")
+        print("* Adding subject channel mapping for '" + log_name + "'")
+        etree.SubElement(subj_comp, "map", logical=log_name, physical=phys_name)
+
+
+def add_linux_channels(doc, comp_channels, subject_name):
+    """
+    Add logical channels for given component channels to Linux subject.
+    """
+    subj_channels = doc.xpath(
+        "/system/subjects/subject[@name='" + LINUX_NAME + "']/channels"
+    )[0]
+    address = LINUX_BASE_ADDR
+    for comp_chan in comp_channels:
+        # Flip channel role
+        chan_type = "reader" if comp_chan.tag == "writer" else "writer"
+        log_name = comp_chan.get("logical")
+        size = muutils.ada_hex_to_int(comp_chan.get("size"))
+        phys_name = subject_name + "_" + log_name.replace("|", "_")
+        addr_str = muutils.int_to_ada_hex(address)
+        print(
+            "* Adding NIC Linux channel "
+            + chan_type
+            + " '"
+            + phys_name
+            + "' @ "
+            + addr_str
+        )
+        etree.SubElement(
+            subj_channels,
+            chan_type,
+            logical=log_name,
+            physical=phys_name,
+            virtualAddress=addr_str,
+        )
+        address += size
+
+
+def copy_reset_variable(doc, subject_name):
+    """
+    Copy component-local "resettable" variable to system config section.
+    """
+    comp_rst = doc.xpath(
+        "/system/components/component[@name='"
+        + subject_name
+        + "']/config/boolean[@name='"
+        + RESET_VAR_NAME
+        + "']"
+    )[0]
+    sys_config = doc.xpath("/system/config")[0]
+    etree.SubElement(
+        sys_config,
+        "boolean",
+        name=subject_name + "_" + RESET_VAR_NAME,
+        value=comp_rst.get("value"),
+    )
+
+
+def extend_subject_bootparams(doc, subject_name, bootparams):
+    """
+    Append given boot parameters to bootparams of subject with specified name.
+    """
+    print(
+        "* Extending boot parameters of subject '"
+        + subject_name
+        + "' with '"
+        + bootparams
+        + "'"
+    )
+    subj_params = doc.xpath(
+        "/system/subjects/subject[@name='" + subject_name + "']/bootparams"
+    )[0]
+
+    if subj_params.text is not None and len(subj_params.text) > 0:
+        params = subj_params.text + " " + bootparams
+    else:
+        params = bootparams
+
+    subj_params.text = params
+
+
+def set_subject_bootparams(doc, comp_spec, subject_name):
+    """
+    Set subject boot parameters to those of the component config variable named
+    'bootparams'. This can be dropped once component specifications can
+    directly set bootparams.
+    """
+    comp_params = comp_spec.xpath("/component/config/string" + "[@name='bootparams']")
+    if len(comp_params) > 0:
+        extend_subject_bootparams(doc, subject_name, comp_params[0].get("value"))
+
+
+def add_linux_bootparams(doc, comp_channels):
+    """
+    Add 'unikernel_iface' bootparameter to Linux subject.
+    """
+    ifaces = ""
+    for comp_chan in comp_channels:
+        if comp_chan.tag == "reader":
+            log_name = comp_chan.get("logical").rstrip("|in")
+            if len(ifaces) > 0:
+                ifaces += ","
+            ifaces += log_name
+
+    extend_subject_bootparams(doc, LINUX_NAME, LINUX_BOOTPARAM + "=" + ifaces)
+
+
+def add_component(doc, comp_doc):
+    """
+    Add copy of given component specification to components section of
+    specified system policy document.
+    """
+    components = doc.xpath("/system/components")[0]
+    print("* Adding component '" + comp_doc.get("name") + "'")
+    components.append(deepcopy(comp_doc))
+
+
+def parse_args():
+    """
+    Returned parsed command line arguments
+    """
+    arg_parser = argparse.ArgumentParser(description="MirageOS/Solo5 system composer")
+    arg_parser.add_argument(
+        "policy_path", type=str, help="Path of to be created system policy"
+    )
+    arg_parser.add_argument(
+        "--template", type=str, help=("System policy template path")
+    )
+    arg_parser.add_argument("--unikernel-spec", type=str, help=("Unikernel spec path"))
+    return arg_parser.parse_args()
+
+
+args = parse_args()
+parser = etree.XMLParser(remove_blank_text=True)
+doc = etree.parse(args.template, parser).getroot()
+cspec_doc = etree.parse(args.unikernel_spec, parser).getroot()
+comp_channels = cspec_doc.xpath("/component/requires/channels/*")
+
+add_component(doc, cspec_doc)
+add_physical_channels(doc, comp_channels, SUBJECT_NAME)
+add_subject_channel_mappings(doc, comp_channels, SUBJECT_NAME)
+add_linux_channels(doc, comp_channels, SUBJECT_NAME)
+add_linux_bootparams(doc, comp_channels)
+set_subject_bootparams(doc, cspec_doc, SUBJECT_NAME)
+copy_reset_variable(doc, SUBJECT_NAME)
+
+with open(args.policy_path, "wb") as f:
+    print("Writing system policy to '" + args.policy_path + "'")
+    f.write(etree.tostring(doc, pretty_print=True))