Add support for prefilling memory regions from data files at compile time

[dreamliner787-9]

The Memory Region (MR) prefill data file path is specified in a prefill_path attribute of a memory_region element. Then any PDs that maps the MR can learn of the prefilled data size via setvar_prefill_size.

The tool will always prefill data from the start of the MR. This is useful in cases such as packing Linux kernel and initial ramdisk images into a VMM PD.

Additional thoughts adjacent to #422 and au-ts/sddf#622 (comment): perhaps it would be better if we get rid of all the "setvar" and just have a "bootinfo" structure that we pass to init().

Closes #248

[midnightveil]

empty?

[midnightveil]

what's differnce between prefill size and size?

[dreamliner787-9]

setvar_size is the size of the entire memory region, whereas setvar_prefill_size is the size of the data blob that was prefilled.

[midnightveil]

why would you ever need the size of the memory region? (presumably by that you mean a page aligned size?) is not the size of the data good enough?

unless you're saying the size of the memory region has to be specified separately to the size of the data, in which case (I don't know why you would want this?) you should probably add more checks for handling the overflow case nicely. but again I don't know why you wouldn't ever just want the actual size.

[dreamliner787-9]

Yes the size of the MR must be specified separately to the size of the data, since they may be different. setvar_size was an existing feature so I didn't change it. The overflow condition is checked in https://github.com/seL4/microkit/pull/434/changes#diff-e9fc0f34d513cf693bc173e1ee69c3b08a3f7be618e5a70d4d6c08faf8aa3955R1296

[midnightveil]

But why? Why would this ever matter? This is only ever going to add more work for the user who has to match the size to the prefill.

[dreamliner787-9]

So you mean, if the user want to prefill a memory region, we automatically size it based on the prefill file size? Because right now, the only rule is that the memory region size must be >= prefill size.

[midnightveil]

yes. I don't see a case where that wouldn't be the desired behaviour.

[dreamliner787-9]

I see, one case I thought of when doing this was that the user might use the prefill data for something, then "reclaim" the MR for other things. Which is more useful if the MR is large to begin with. Such as having a large guest RAM MR, prefilling it with the kernel and initrd at the start. Then at init(), memmove() it to the right place. Plus, if the user is responsible for sizing the MR, they have control over the page size and whatnot.

But now that I think about it, this might not be useful for PD restart and whatnot. I can change it so that prefilled MRs are automatically sized. What do you think?

[midnightveil]

It's possible that that is useful, yes.

Maybe it makes sense for it to be an optional thing?

[dreamliner787-9]

Yes I can make it an optional thing

[midnightveil]

this should use the get_full_path function to look at search paths

[midnightveil]

PathBuf::from

[midnightveil]

you should use the option chaining operations so that we're not continually doing more and more indents to handle the cases. Option and result are monadic for a reason!