kernel::process

Struct SequentialProcessLoaderMachine

Source 
pub struct SequentialProcessLoaderMachine<'a, C: Chip + 'static, D: ProcessStandardDebug + 'static> { /* private fields */ }
Expand description

A machine for loading processes stored sequentially in a region of flash.

Load processes (stored as TBF objects in flash) into runnable process structures stored in the procs array. This machine scans the footers in the TBF for cryptographic credentials for binary integrity, passing them to the checker to decide whether the process has sufficient credentials to run.

Implementations§

Source§

impl<'a, C: Chip, D: ProcessStandardDebug> SequentialProcessLoaderMachine<'a, C, D>

Source

pub fn new( checker: &'static ProcessCheckerMachine, procs: &'static mut [Option<&'static dyn Process>], proc_binaries: &'static mut [Option<ProcessBinary>], kernel: &'static Kernel, chip: &'static C, flash: &'static [u8], app_memory: &'static mut [u8], fault_policy: &'static dyn ProcessFaultPolicy, storage_policy: &'static dyn ProcessStandardStoragePermissionsPolicy<C, D>, policy: &'static dyn AppIdPolicy, _capability_management: &dyn ProcessManagementCapability, ) -> Self

This function is made pub so that board files can use it, but loading processes from slices of flash an memory is fundamentally unsafe. Therefore, we require the ProcessManagementCapability to call this function.

Source

pub fn set_runtime_client(&self, client: &'a dyn ProcessLoadingAsyncClient)

Set the runtime client to receive callbacks about process loading and when process loading has finished.

Source

pub fn check_if_within_flash_bounds(&self, offset: usize, length: usize) -> bool

Function to check if the object with address offset of size length lies within flash bounds.

Source

pub fn check_flash_for_new_address( &self, new_app_size: usize, ) -> Result<(usize, PaddingRequirement, usize, usize), ProcessBinaryError>

Function to compute an available address for the new application binary.

Source

pub fn load_new_process_binary( &self, app_address: usize, app_size: usize, ) -> Result<(), ProcessLoadError>

Function to start loading the new application at address app_address with size app_size.

Trait Implementations§

Source§

impl<C: Chip, D: ProcessStandardDebug> DeferredCallClient for SequentialProcessLoaderMachine<'_, C, D>

Source§

fn handle_deferred_call(&self)

Software interrupt function that is called when the deferred call is triggered.
Source§

fn register(&'static self)

Source§

impl<C: Chip, D: ProcessStandardDebug> ProcessCheckerMachineClient for SequentialProcessLoaderMachine<'_, C, D>

Source§

fn done( &self, process_binary: ProcessBinary, result: Result<Option<AcceptedCredential>, ProcessCheckError>, )

Check is finished, and the check result is in result.0 Read more
Source§

impl<'a, C: Chip, D: ProcessStandardDebug> ProcessLoadingAsync<'a> for SequentialProcessLoaderMachine<'a, C, D>

Source§

fn set_client(&self, client: &'a dyn ProcessLoadingAsyncClient)

Set the client to receive callbacks about process loading and when process loading has finished.
Source§

fn set_policy(&self, policy: &'a dyn AppIdPolicy)

Set the credential checking policy for the loader.
Source§

fn start(&self)

Start the process loading operation.

Auto Trait Implementations§

§

impl<'a, C, D> !Freeze for SequentialProcessLoaderMachine<'a, C, D>

§

impl<'a, C, D> !RefUnwindSafe for SequentialProcessLoaderMachine<'a, C, D>

§

impl<'a, C, D> !Send for SequentialProcessLoaderMachine<'a, C, D>

§

impl<'a, C, D> !Sync for SequentialProcessLoaderMachine<'a, C, D>

§

impl<'a, C, D> Unpin for SequentialProcessLoaderMachine<'a, C, D>

§

impl<'a, C, D> !UnwindSafe for SequentialProcessLoaderMachine<'a, C, D>

Blanket Implementations§

Source§

impl<T> Any for T
where T: 'static + ?Sized,

Source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
Source§

impl<T> Borrow<T> for T
where T: ?Sized,

Source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
Source§

impl<T> BorrowMut<T> for T
where T: ?Sized,

Source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
Source§

impl<T> From<T> for T

Source§

fn from(t: T) -> T

Returns the argument unchanged.

Source§

impl<T, U> Into<U> for T
where U: From<T>,

Source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

Source§

impl<T, U> TryFrom<U> for T
where U: Into<T>,

Source§

type Error = Infallible

The type returned in the event of a conversion error.
Source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
Source§

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

Source§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
Source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.