Generify parts of mmap.rs #312
Conversation
roypat
requested review from
alexandruag,
bonzini and
jiangliu
as code owners
roypat
force-pushed
the
generic-region-container
branch
2 times, most recently
from
df86175 to
c76a6ca
Compare
roypat
force-pushed
the
generic-region-container
branch
from
c76a6ca to
ae4c4f6
Compare
roypat
changed the title
roypat
requested review from
ShadowCurse and
andreeaflorescu
and removed request for
ShadowCurse
roypat
force-pushed
the
generic-region-container
branch
from
ae4c4f6 to
5e4e1d4
Compare
I would need to double check that. IIRC if QEMU was ever going to use vm-memory, which actually could happen now, it needed something custom to handle access to an assigned device's BAR. |
Ah, that's good to know, thanks! I can rework it, so that an additional empty marker trait is required to be implemented, e.g. |
roypat
force-pushed
the
generic-region-container
branch
from
e7d74ea to
bc4e643
Compare
Done :) |
|
That doesn't hurt, yes :) I will tell you tomorrow anyway! |
roypat
force-pushed
the
generic-region-container
branch
from
f3ce283 to
04b4509
Compare
roypat
force-pushed
the
generic-region-container
branch
2 times, most recently
from
d05a37e to
1c6454f
Compare
Do we really want to keep backwards compatibility at all costs? I am afraid that we'll end up with even more technical debt. How hard would it be to update to the new vm-memory version if we were NOT to keep the backwards compatibility? |
| @@ -408,7 +408,9 @@ pub trait GuestMemory { | |||
| fn num_regions(&self) -> usize; | |||
|
|
|||
| /// Returns the region containing the specified address or `None`. | |||
| fn find_region(&self, addr: GuestAddress) -> Option<&Self::R>; | |||
| fn find_region(&self, addr: GuestAddress) -> Option<&Self::R> { | |||
There was a problem hiding this comment.
What is the motivation behind adding the default implementation? Mostly curious, but it would be good to also mention it in the commit message.
There was a problem hiding this comment.
Mainly because it's possible, and it means that downstream impls of the trait need to do less (in my case, I was implementing a mock for some testing and got a bit annoyed at having to unneccessarily write out things that I didn't very much care about in that scenario). Looking at it now, num_regions can also get a default impl, so I'll add that too haha
There was a problem hiding this comment.
Can you also add a comment in the commit message that this can be useful when writing unit tests?
There was a problem hiding this comment.
Yup, done! (sorry took me a while longer to push because I got lost trying to untangle the error types and found some other unrelated issues that was making my cargo check-all-features compile testing fail)
Honestly, the backward compatibility went out the window a few revisions ago... I'll just make this change and clean it up properly. We already have quite a few breaking changes accumulated on |
roypat
force-pushed
the
generic-region-container
branch
from
1c6454f to
2cbbee1
Compare
This function can be default-implemented in terms of `GuestMemory::iter()`. Downstream impls can overwrite this more specialized and efficient versions of course (such as GuestMemoryMmap using a binary search). Mainly a QoL improvement to make mock impls of this trait for tests less verbose. Signed-off-by: Patrick Roy <roypat@amazon.co.uk>
roypat
force-pushed
the
generic-region-container
branch
2 times, most recently
from
bb6f105 to
6e84b7f
Compare
roypat
force-pushed
the
generic-region-container
branch
2 times, most recently
from
257d1cd to
abe773d
Compare
|
(ik you dont like the coverage update being its own commit, but the test only started failing after the rebase on main, so am not sure what exact commit (or combination thereof) is causing the change) |
roypat
force-pushed
the
generic-region-container
branch
from
abe773d to
784c535
Compare
Similar to find_region(), we can provide an inefficient default impl to make downstream impls of the trait less verbose in scenarios that really do not care (e.g. mock impls for tests). Signed-off-by: Patrick Roy <roypat@amazon.co.uk>
This modules is intended for all functionality that relates to contiguous regions of guest memory. This differentiates it from `guest_memory`, as that is about a holistic view of guest memory, and from `mmap`, which is specifically about guest memory regions backed by mmap VMAs. Signed-off-by: Patrick Roy <roypat@amazon.co.uk>
Add the concept of a `GuestRegionCollection`, which just manages a list of some `GuestMemoryRegion` impls. Functionality wise, it offers the same implementations as `GuestMemoryMmap`. As a result, turn `GuestMemoryMmap` into a type alias for `GuestRegionCollection` with a fixed `R = GuestRegionMmap`. Error types get cleaned up in a follow up commit, the messy state of GuestRegionError containing both collection and region constrution specific errors is transitory. Signed-off-by: Patrick Roy <roypat@amazon.co.uk>
Some tests that were explicitly testing for error conditions used converted errors to strings to determine whether two errors are the same (by saying they're only the same if their string representation was identical). Replace this with more roboust assertions on `matches!`. Signed-off-by: Patrick Roy <roypat@amazon.co.uk>
Move some tests that are all about the invariants of GuestRegionCollection constructors to region.rs, where they can be run without the need for the backend-mmap feature (by instead using a mock memory region). While we're at it, fix these tests calling from_regions twice, but from_arc_regions never. Remove some test cases that are superfluous, because since the `regions` field of `GuestRegionCollection` is private, all construction needs to go through `from_regions`/`from_arc_regions`, and testing that wrappers around these functions uphold the invariants of the wrapped functions is not very useful. test_memory and create_vec_with_regions were the same test, so deduplicate while moving to region.rs. Generally, most of these tests could be moved to region.rs, given sufficient mocking of the memory region. I've somewhat arbitrarily drawn the line at "only transfer tests where the mock only needs GuestAddress and length", which roughly translates to "move tests where we are testing the default implementations of the GuestMemory and GuestMemoryRegion traits, which are not overwritten in the mmap-based implementations". Of course, we could write a mock that implements actual allocation of memory via std::alloc::alloc, but at that point we'd be testing the mock more than actual vm-memory code (and start loosing coverage of the mmap implementations). Signed-off-by: Patrick Roy <roypat@amazon.co.uk>
These tests only test properties of the GuestMemoryAtomic implementation that are independent of the actual M: GuestMemory being used. So simplify it to drop the dependency on backend-mmap. Signed-off-by: Patrick Roy <roypat@amazon.co.uk>
There is only a single error condition, so we can indicate the error case with an Option. First step towards untangling the region specific errors from the region collection specific errors. Signed-off-by: Patrick Roy <roypat@amazon.co.uk>
Turn the error type defined in region.rs into one specifically to GuestRegionCollections, and move the non-collection related errors into a new error type that is specific to the `from_ranges*` family of functions (these are the only functions that can return both a region construction error, as well as a collection error). The `from_ranges*` family of functions is publicly exported, but in reality only used in tests, so breakage of this should be limited. Since we're breaking things anyway, remove the reexport of GuestRegionCollectionError as `vm_memory::Error`. It made no sense for this one to have this special designation. Signed-off-by: Patrick Roy <roypat@amazon.co.uk>
Signed-off-by: Patrick Roy <roypat@amazon.co.uk>
roypat
force-pushed
the
generic-region-container
branch
from
784c535 to
9f31516
Compare
Summary of the PR
Mainly, add the concept of a
GuestRegionCollection, which just manages a list of someGuestMemoryRegionimpls. Functionality wise, it offers the same implementations asGuestMemoryMmap. As a result, turnGuestMemoryMmapinto a type alias forGuestRegionCollectionwith a fixedR = GuestRegionMmap.While we're at it, generalize the
impl Bytes for GuestRegionMmapintoimpl<R: GuestMemoryRegion> Bytes for R, because really that impls didn't actually make use of any specifics of theGuestRegionMmapstruct.This PR is the backward-compatible subset of #317. In that context, it is a first step towards resolving the incompatibility between the unix and xen features (currently, the code in
mmap.rsonly works if exactly one of the modulesmmap_windows,mmap_xenandmmap_unixexist, since they all define roughly the same types which are then imported by themmapmodule without renames). However, short-term is is also a required step for enabling things like #315 without necessarily requiring changes in core vm-memory code.Requirements
Before submitting your PR, please make sure you addressed the following
requirements:
git commit -s), and the commit message has max 60 characters for thesummary and max 75 characters for each description line.
test.
Release" section of CHANGELOG.md (if no such section exists, please create one).
unsafecode is properly documented.