Skip to content

arceos-org/app-guestaspace

BranchesTags

Repository files navigation

arceos-guestaspace

A standalone hypervisor application running on ArceOS unikernel, with all dependencies sourced from crates.io. Implements guest address space management with loop-based VM exit handling and nested page fault (NPF) support across three architectures.

This crate is derived from the ArceOS hypervisor tutorial in the ArceOS ecosystem, extending it to support multiple processor architectures.

What It Does

The hypervisor (arceos-guestaspace) performs the following:

  1. Creates a guest address space with second-stage/nested page tables
  2. Loads a minimal guest kernel (gkernel) from a VirtIO block device
  3. Runs the guest in a loop, handling VM exits:
    • Nested Page Fault (NPF): When the guest accesses an unmapped address, the hypervisor maps the page and resumes guest execution
    • Shutdown request: When the guest issues a shutdown hypercall, the hypervisor exits cleanly
  4. Demonstrates the VM run loop control flow: loop → VMRUN → VMEXIT → handle → repeat

The guest kernel (gkernel) is a minimal program that:

  1. Prints the ArceOS ASCII art banner and platform information
  2. Reads a PFlash device at an unmapped MMIO address, triggering a nested page fault
  3. Prints the PFlash magic string (pfld) to verify correct page mapping
  4. Performs a shutdown hypercall

Architecture Support

Architecture Virtualization Guest Mode NPF Trigger Address Shutdown Mechanism
RISC-V 64 H-extension (hgatp) VS-mode 0x22000000 (pflash) SBI ecall (Reset)
AArch64 EL1→EL0 (TTBR0) EL0 0x04000000 (pflash) SVC hypercall (exit)
x86_64 AMD SVM (NPT) Long mode 0xFFC00000 (pflash) vmmcall (PSCI)

Note on AArch64: Because the ArceOS platform crate drops from EL2 to EL1 during boot, the hypervisor runs at EL1 and the guest at EL0. Guest page tables are managed via TTBR0_EL1, and data aborts from EL0 serve as the equivalent of nested page faults. This still demonstrates the same on-demand page mapping mechanism as true Stage-2 virtualization.

Note on x86_64 AMD SVM: The hypervisor uses VMRUN/VMEXIT with hardware Nested Page Tables (NPT). Guest GPRs (RCX–R15) are saved/restored by software via an SvmGuestGprs structure across VMRUN/VMEXIT transitions — unlike RAX/RIP/RSP which are handled by the VMCB save-area. PFlash is emulated in software: on NPF at GPA 0xFFC00000, the hypervisor allocates a page and writes the "pfld" magic bytes.

Control Flow

Hypervisor starts
    │
    ├─ Create guest address space (AddrSpace)
    ├─ Load guest binary from /sbin/gkernel
    ├─ Setup vCPU context
    │
    └─ VM Run Loop ──────────────────────┐
         │                               │
         ├─ Enter guest (vmrun/eret)     │
         │                               │
         ├─ Guest accesses unmapped addr │
         │   └─ NPF / Page Fault exit   │
         │       └─ Map the page ────────┘
         │
         ├─ Guest re-executes (success)
         │
         ├─ Guest issues shutdown call
         │   └─ Shutdown exit
         │       └─ Break loop
         │
         └─ "Hypervisor ok!"

Comparison with Related Crates

Crate Role Description
arceos-guestaspace (this) Hypervisor Runs guest with NPF handling
arceos-guestmode Hypervisor Runs minimal guest, single VM exit
arceos-readpflash Guest Reads PFlash via MMIO

Prerequisites

  • Rust nightly toolchain (edition 2024)

    rustup install nightly
rustup default nightly

  • Bare-metal targets

    rustup target add riscv64gc-unknown-none-elf
rustup target add aarch64-unknown-none-softfloat
rustup target add x86_64-unknown-none

  • QEMU (with virtualization support)

    # Ubuntu/Debian
sudo apt install qemu-system-riscv64 qemu-system-aarch64 qemu-system-x86

# macOS (Homebrew)
brew install qemu

  • rust-objcopy (from cargo-binutils)

    cargo install cargo-binutils
rustup component add llvm-tools

Quick Start

# Install cargo-clone
cargo install cargo-clone

# Get source code from crates.io
cargo clone arceos-guestaspace
cd arceos-guestaspace

# Build and run on RISC-V 64 (default)
cargo xtask run

# Build and run on other architectures
cargo xtask run --arch aarch64
cargo xtask run --arch x86_64

# Build only (no QEMU)
cargo xtask build --arch riscv64

Expected Output

RISC-V 64

Hypervisor ...
Pre-allocating 16 MB guest RAM at 0x80000000...
app: /sbin/gkernel
Loaded 110656 bytes from /sbin/gkernel
Entering VM run loop...
       d8888                            .d88888b.   .d8888b.   (guest ArceOS banner)
       ...
Reading PFlash at physical address 0x22000000...
Try to access pflash dev region [0xFFFFFFC022000000], got 0x646C6670
Got pflash magic: pfld
Guest: SBI SRST shutdown
Shutdown vm normally!
Hypervisor ok!

AArch64

Hypervisor ...
app: /sbin/gkernel
Loaded 3132 bytes (1 pages) from /sbin/gkernel
Guest stack: 0x41000000 - 0x41008000
Entering VM run loop...
       d8888                            .d88888b.   .d8888b.   (guest ArceOS banner)
       ...
arch = aarch64
platform = aarch64-qemu-virt
smp = 1

Reading PFlash at physical address 0x04000000...
Try to access pflash dev region [0x04000000], got 0x646c6670
Got pflash magic: pfld
Shutdown vm normally!
Hypervisor ok!

x86_64 (AMD SVM)

Hypervisor ...
Pre-allocating 2048 KB guest RAM at GPA 0x0...
app: /sbin/gkernel
Loaded 2872 bytes from /sbin/gkernel
Entering VM run loop...

       d8888                            .d88888b.   .d8888b.
      d88888                           d88P" "Y88b d88P  Y88b
     d88P888                           888     888 Y88b.
    d88P 888 888d888  .d8888b  .d88b.  888     888  "Y888b.
   d88P  888 888P"   d88P"    d8P  Y8b 888     888     "Y88b.
  d88P   888 888     888      88888888 888     888       "888
 d8888888888 888     Y88b.    Y8b.     Y88b. .d88P Y88b  d88P
d88P     888 888      "Y8888P  "Y8888   "Y88888P"   "Y8888P"

arch = x86_64
platform = x86-pc
smp = 1

Reading PFlash at physical address 0xFFC00000...
Try to access pflash dev region [0xFFC00000], got 0x646c6670
Got pflash magic: pfld
Shutdown vm normally!
Hypervisor ok!

Project Structure

app-guestaspace/
├── .cargo/
│   └── config.toml            # cargo xtask alias & AX_CONFIG_PATH
├── payload/
│   └── gkernel/               # Minimal guest kernel (triggers NPF + shutdown)
│       ├── Cargo.toml
│       └── src/main.rs
├── xtask/
│   └── src/main.rs            # Build/run tool (disk image, pflash, QEMU)
├── configs/
│   ├── riscv64.toml           # Platform config for riscv64-qemu-virt
│   ├── aarch64.toml           # Platform config for aarch64-qemu-virt
│   └── x86_64.toml            # Platform config for x86-pc
├── src/
│   ├── main.rs                # Hypervisor entry: loop-based VM exit handling
│   ├── loader.rs              # Guest binary loader (FAT32 → address space)
│   ├── vcpu.rs                # RISC-V vCPU context (registers, guest.S)
│   ├── guest.S                # RISC-V guest entry/exit assembly
│   ├── regs.rs                # RISC-V general-purpose registers
│   ├── csrs.rs                # RISC-V hypervisor CSR definitions
│   ├── sbi/                   # SBI message parsing (base, reset, fence, ...)
│   ├── aarch64/               # AArch64 EL1→EL0 vCPU, guest.S, SVC handling
│   └── x86_64/                # AMD SVM: VMCB, GPR save/restore, vmrun assembly
├── build.rs                   # Linker script auto-detection
├── Cargo.toml
├── rust-toolchain.toml
└── README.md

How It Works

cargo xtask run --arch <ARCH>

  1. Copies configs/<ARCH>.toml.axconfig.toml
  2. Builds the guest payload (gkernel) for the target architecture
  3. Creates a 64MB FAT32 disk image with /sbin/gkernel
  4. For riscv64/aarch64: creates a pflash image with "pfld" magic at offset 0
  5. Builds the hypervisor kernel with --features axstd
  6. Launches QEMU with VirtIO block device and pflash

VM Exit Handling

Architecture NPF Exit NPF Address Source Shutdown Exit
RISC-V 64 scause = 20/21/23 htval << 2 | stval & 3 scause = 10 (VSupervisorEnvCall) + SBI Reset
AArch64 ESR EC = 0x24 (Data Abort from EL0) FAR_EL1 register ESR EC = 0x15 (SVC) + x8 = 2 (exit)
x86_64 SVM VMEXIT 0x400 (NPF) VMCB EXITINFO2 VMEXIT 0x81 (VMMCALL) + RAX = PSCI SYSTEM_OFF

QEMU Configuration

Architecture QEMU Command Special Options
riscv64 qemu-system-riscv64 -machine virt -bios default + pflash1 (32MB)
aarch64 qemu-system-aarch64 -cpu max -machine virt,virtualization=on + pflash1 (64MB)
x86_64 qemu-system-x86_64 -machine q35 -cpu EPYC

Key Dependencies

Crate Role
axstd ArceOS standard library (no_std replacement)
axhal Hardware abstraction layer (paging, traps)
axmm Memory management (address spaces, page tables)
axfs Filesystem access (FAT32 disk image)
riscv RISC-V register access (riscv64 only)
sbi-spec / sbi-rt SBI specification and runtime (riscv64 only)

ArceOS Tutorial Crates

This crate is part of a series of tutorial crates for learning OS development with ArceOS. The crates are organized by functionality and complexity progression:

# Crate Name Description
1 arceos-helloworld Minimal ArceOS unikernel application that prints Hello World, demonstrating the basic boot flow
2 arceos-collections Dynamic memory allocation on a unikernel, demonstrating the use of String, Vec, and other collection types
3 arceos-readpflash MMIO device access via page table remapping, reading data from QEMU's PFlash device
4 arceos-childtask Multi-tasking basics: spawning a child task (thread) that accesses a PFlash MMIO device
5 arceos-msgqueue Cooperative multi-task scheduling with a producer-consumer message queue, demonstrating inter-task communication
6 arceos-fairsched Preemptive CFS scheduling with timer-interrupt-driven task switching, demonstrating automatic task preemption
7 arceos-readblk VirtIO block device driver discovery and disk I/O, demonstrating device probing and block read operations
8 arceos-loadapp FAT filesystem initialization and file I/O, demonstrating the full I/O stack from VirtIO block device to filesystem
9 arceos-userprivilege User-privilege mode switching: loading a user-space program, switching to unprivileged mode, and handling syscalls
10 arceos-lazymapping Lazy page mapping (demand paging): user-space program triggers page faults, and the kernel maps physical pages on demand
11 arceos-runlinuxapp Loading and running real Linux ELF applications (musl libc) on ArceOS, with ELF parsing and Linux syscall handling
12 arceos-guestmode Minimal hypervisor: creating a guest address space, entering guest mode, and handling a single VM exit (shutdown)
13 arceos-guestaspace (this crate) Hypervisor address space management: loop-based VM exit handling with nested page fault (NPF) on-demand mapping
14 arceos-guestvdev Hypervisor virtual device support: timer virtualization, console I/O forwarding, and NPF passthrough; guest runs preemptive multi-tasking
15 arceos-guestmonolithickernel Full hypervisor + guest monolithic kernel: the guest kernel supports user-space process management, syscall handling, and preemptive scheduling

Progression Logic:

  • #1–#8 (Unikernel Stage): Starting from the simplest output, these crates progressively introduce memory allocation, device access (MMIO / VirtIO), multi-task scheduling (both cooperative and preemptive), and filesystem support, building up the core capabilities of a unikernel.
  • #8–#10 (Monolithic Kernel Stage): Building on the unikernel foundation, these crates add user/kernel privilege separation, page fault handling, and ELF loading, progressively evolving toward a monolithic kernel.
  • #12–#15 (Hypervisor Stage): Starting from minimal VM lifecycle management, these crates progressively add address space management, virtual devices, timer injection, and ultimately run a full monolithic kernel inside a virtual machine.

License

GPL-3.0-or-later OR Apache-2.0 OR MulanPSL-2.0

About

No description, website, or topics provided.

Resources

Readme
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

4 tags

Packages

 
 
 

Contributors

Languages