Gitiles
Code Review Sign In
review.coreboot.org / coreboot / 3f41d3269e462c2c0a7d7c4cbdc20f0b07b166ee / . / src / lib / cbfs.c
blob: 52f73736da6ccd156849571ac7c7245d1f2549bf [file] [log] [blame]
Angel Pons118a9c72020-04-02 23:48:34 +0200[diff] [blame]1/* SPDX-License-Identifier: GPL-2.0-only */
Peter Stuge483b7bb2009-04-14 07:40:01 +0000[diff] [blame]2
Aaron Durbin899d13d2015-05-15 23:39:23 -0500[diff] [blame]3#include <assert.h>
Aaron Durbin899d13d2015-05-15 23:39:23 -0500[diff] [blame]4#include <boot_device.h>
5#include <cbfs.h>
Julius Werner0d9072b2020-03-05 12:51:08 -0800[diff] [blame]6#include <cbfs_private.h>
Julius Werner1e37c9c2019-12-11 17:09:39 -0800[diff] [blame]7#include <cbmem.h>
Julius Werner98eeb962019-12-11 15:47:42 -0800[diff] [blame]8#include <commonlib/bsd/compression.h>
Aaron Durbin0b418bd2020-10-08 14:56:03 -0600[diff] [blame]9#include <commonlib/endian.h>
Bill XIEc79e96b2019-08-22 20:28:36 +0800[diff] [blame]10#include <console/console.h>
Bill XIEc79e96b2019-08-22 20:28:36 +0800[diff] [blame]11#include <fmap.h>
Aaron Durbin899d13d2015-05-15 23:39:23 -0500[diff] [blame]12#include <lib.h>
Julius Wernerfdabf3f2020-05-06 17:06:35 -0700[diff] [blame]13#include <metadata_hash.h>
Bill XIEc79e96b2019-08-22 20:28:36 +0800[diff] [blame]14#include <security/tpm/tspi/crtm.h>
15#include <security/vboot/vboot_common.h>
16#include <stdlib.h>
17#include <string.h>
Aaron Durbin899d13d2015-05-15 23:39:23 -0500[diff] [blame]18#include <symbols.h>
Julius Werner09f29212015-09-29 13:51:35 -0700[diff] [blame]19#include <timestamp.h>
Patrick Georgi58a150a2016-05-02 17:22:29 +0800[diff] [blame]20
Julius Werner9b1f3cc2020-12-30 17:30:12 -0800[diff] [blame]21#if CBFS_CACHE_AVAILABLE
22struct mem_pool cbfs_cache = MEM_POOL_INIT(_cbfs_cache, REGION_SIZE(cbfs_cache));
23
24static void switch_to_postram_cache(int unused)
25{
26 if (_preram_cbfs_cache != _postram_cbfs_cache)
27 mem_pool_init(&cbfs_cache, _postram_cbfs_cache,
28 REGION_SIZE(postram_cbfs_cache));
29}
30ROMSTAGE_CBMEM_INIT_HOOK(switch_to_postram_cache);
31#endif
32
Julius Werner0d9072b2020-03-05 12:51:08 -0800[diff] [blame]33cb_err_t cbfs_boot_lookup(const char *name, bool force_ro,
34 union cbfs_mdata *mdata, struct region_device *rdev)
Julius Werner1e37c9c2019-12-11 17:09:39 -0800[diff] [blame]35{
Julius Werner0d9072b2020-03-05 12:51:08 -0800[diff] [blame]36 const struct cbfs_boot_device *cbd = cbfs_get_boot_device(force_ro);
37 if (!cbd)
38 return CB_ERR;
39
40 size_t data_offset;
Julius Werner1e37c9c2019-12-11 17:09:39 -0800[diff] [blame]41 cb_err_t err = CB_CBFS_CACHE_FULL;
Julius Werner34cf0732020-12-08 14:21:43 -0800[diff] [blame]42 if (!CONFIG(NO_CBFS_MCACHE) && !ENV_SMM && cbd->mcache_size)
Julius Werner1e37c9c2019-12-11 17:09:39 -0800[diff] [blame]43 err = cbfs_mcache_lookup(cbd->mcache, cbd->mcache_size,
Julius Werner723e3b12020-12-29 17:33:30 -0800[diff] [blame]44 name, mdata, &data_offset);
Julius Wernerfdabf3f2020-05-06 17:06:35 -0700[diff] [blame]45 if (err == CB_CBFS_CACHE_FULL) {
46 struct vb2_hash *metadata_hash = NULL;
47 if (CONFIG(TOCTOU_SAFETY)) {
48 if (ENV_SMM) /* Cannot provide TOCTOU safety for SMM */
49 dead_code();
Julius Werner34cf0732020-12-08 14:21:43 -0800[diff] [blame]50 if (!cbd->mcache_size)
51 die("Cannot access CBFS TOCTOU-safely in " ENV_STRING " before CBMEM init!\n");
Julius Werner723e3b12020-12-29 17:33:30 -0800[diff] [blame]52 /* We can only reach this for the RW CBFS -- an mcache overflow in the
53 RO CBFS would have been caught when building the mcache in cbfs_get
54 boot_device(). (Note that TOCTOU_SAFETY implies !NO_CBFS_MCACHE.) */
Julius Wernerfdabf3f2020-05-06 17:06:35 -0700[diff] [blame]55 assert(cbd == vboot_get_cbfs_boot_device());
56 /* TODO: set metadata_hash to RW metadata hash here. */
57 }
Julius Werner723e3b12020-12-29 17:33:30 -0800[diff] [blame]58 err = cbfs_lookup(&cbd->rdev, name, mdata, &data_offset, metadata_hash);
Julius Wernerfdabf3f2020-05-06 17:06:35 -0700[diff] [blame]59 }
Julius Werner0d9072b2020-03-05 12:51:08 -0800[diff] [blame]60
Julius Werner723e3b12020-12-29 17:33:30 -0800[diff] [blame]61 if (CONFIG(VBOOT_ENABLE_CBFS_FALLBACK) && !force_ro && err == CB_CBFS_NOT_FOUND) {
62 printk(BIOS_INFO, "CBFS: Fall back to RO region for %s\n", name);
Julius Werner0d9072b2020-03-05 12:51:08 -0800[diff] [blame]63 return cbfs_boot_lookup(name, true, mdata, rdev);
64 }
Julius Werner0247fcf2020-12-03 12:41:00 -0800[diff] [blame]65 if (err) {
66 if (err == CB_CBFS_NOT_FOUND)
67 printk(BIOS_WARNING, "CBFS: '%s' not found.\n", name);
68 else if (err == CB_CBFS_HASH_MISMATCH)
69 printk(BIOS_ERR, "CBFS ERROR: metadata hash mismatch!\n");
70 else
Julius Werner723e3b12020-12-29 17:33:30 -0800[diff] [blame]71 printk(BIOS_ERR, "CBFS ERROR: error %d when looking up '%s'\n",
Julius Werner0247fcf2020-12-03 12:41:00 -0800[diff] [blame]72 err, name);
Julius Werner0d9072b2020-03-05 12:51:08 -0800[diff] [blame]73 return err;
Julius Werner0247fcf2020-12-03 12:41:00 -0800[diff] [blame]74 }
Julius Werner0d9072b2020-03-05 12:51:08 -0800[diff] [blame]75
76 if (rdev_chain(rdev, &cbd->rdev, data_offset, be32toh(mdata->h.len)))
77 return CB_ERR;
78
Arthur Heymans27545df2021-02-26 14:22:47 +0100[diff] [blame]79 if (tspi_measure_cbfs_hook(rdev, name, be32toh(mdata->h.type))) {
80 printk(BIOS_ERR, "CBFS ERROR: error when measuring '%s'\n", name);
81 }
Julius Werner0d9072b2020-03-05 12:51:08 -0800[diff] [blame]82
83 return CB_SUCCESS;
Julius Werner1e37c9c2019-12-11 17:09:39 -0800[diff] [blame]84}
85
Aaron Durbin37a5d152015-09-17 16:09:30 -0500[diff] [blame]86int cbfs_boot_locate(struct cbfsf *fh, const char *name, uint32_t *type)
Aaron Durbin899d13d2015-05-15 23:39:23 -0500[diff] [blame]87{
Julius Werner0d9072b2020-03-05 12:51:08 -0800[diff] [blame]88 if (cbfs_boot_lookup(name, false, &fh->mdata, &fh->data))
Julius Werner1cd013b2019-12-11 16:50:02 -0800[diff] [blame]89 return -1;
90
91 size_t msize = be32toh(fh->mdata.h.offset);
Julius Wernerc8931972021-04-16 16:48:32 -0700[diff] [blame]92 if (rdev_chain_mem(&fh->metadata, &fh->mdata, msize))
Julius Werner1cd013b2019-12-11 16:50:02 -0800[diff] [blame]93 return -1;
Julius Werner0d9072b2020-03-05 12:51:08 -0800[diff] [blame]94
Julius Werner1cd013b2019-12-11 16:50:02 -0800[diff] [blame]95 if (type) {
96 if (!*type)
97 *type = be32toh(fh->mdata.h.type);
98 else if (*type != be32toh(fh->mdata.h.type))
99 return -1;
Wim Vervoorn114e2e82019-11-05 14:09:16 +0100[diff] [blame]100 }
101
Julius Werner1cd013b2019-12-11 16:50:02 -0800[diff] [blame]102 return 0;
Aaron Durbin899d13d2015-05-15 23:39:23 -0500[diff] [blame]103}
104
Julius Werner9b1f3cc2020-12-30 17:30:12 -0800[diff] [blame]105void cbfs_unmap(void *mapping)
Julius Werner834b3ec2020-03-04 16:52:08 -0800[diff] [blame]106{
Julius Werner9b1f3cc2020-12-30 17:30:12 -0800[diff] [blame]107 /*
108 * This is save to call with mappings that weren't allocated in the cache (e.g. x86
109 * direct mappings) -- mem_pool_free() just does nothing for addresses it doesn't
110 * recognize. This hardcodes the assumption that if platforms implement an rdev_mmap()
111 * that requires a free() for the boot_device, they need to implement it via the
112 * cbfs_cache mem_pool.
113 */
114 if (CBFS_CACHE_AVAILABLE)
115 mem_pool_free(&cbfs_cache, mapping);
Julius Werner834b3ec2020-03-04 16:52:08 -0800[diff] [blame]116}
117
Pratik Prajapati2a7708a2016-11-30 17:29:10 -0800[diff] [blame]118int cbfs_locate_file_in_region(struct cbfsf *fh, const char *region_name,
Philipp Deppenwiese66f9a092018-11-08 10:59:40 +0100[diff] [blame]119 const char *name, uint32_t *type)
Pratik Prajapati2a7708a2016-11-30 17:29:10 -0800[diff] [blame]120{
121 struct region_device rdev;
Bill XIEbad08c22020-02-13 11:11:35 +0800[diff] [blame]122 int ret = 0;
Pratik Prajapati2a7708a2016-11-30 17:29:10 -0800[diff] [blame]123 if (fmap_locate_area_as_rdev(region_name, &rdev)) {
Julius Werner723e3b12020-12-29 17:33:30 -0800[diff] [blame]124 LOG("%s region not found while looking for %s\n", region_name, name);
Pratik Prajapati2a7708a2016-11-30 17:29:10 -0800[diff] [blame]125 return -1;
126 }
127
Julius Werner0d9072b2020-03-05 12:51:08 -0800[diff] [blame]128 uint32_t dummy_type = 0;
129 if (!type)
130 type = &dummy_type;
131
Bill XIEbad08c22020-02-13 11:11:35 +0800[diff] [blame]132 ret = cbfs_locate(fh, &rdev, name, type);
133 if (!ret)
Julius Werner0d9072b2020-03-05 12:51:08 -0800[diff] [blame]134 if (tspi_measure_cbfs_hook(&rdev, name, *type))
Arthur Heymans27545df2021-02-26 14:22:47 +0100[diff] [blame]135 LOG("error measuring %s in region %s\n", name, region_name);
Bill XIEbad08c22020-02-13 11:11:35 +0800[diff] [blame]136 return ret;
Pratik Prajapati2a7708a2016-11-30 17:29:10 -0800[diff] [blame]137}
138
Aaron Durbina85febc2020-05-15 15:09:10 -0600[diff] [blame]139static inline bool fsps_env(void)
140{
141 /* FSP-S is assumed to be loaded in ramstage. */
142 if (ENV_RAMSTAGE)
143 return true;
144 return false;
145}
146
Aaron Durbinecbfa992020-05-15 17:01:58 -0600[diff] [blame]147static inline bool fspm_env(void)
148{
149 /* FSP-M is assumed to be loaded in romstage. */
150 if (ENV_ROMSTAGE)
151 return true;
152 return false;
153}
154
Aaron Durbina121f952020-05-26 15:48:10 -0600[diff] [blame]155static inline bool cbfs_lz4_enabled(void)
156{
Aaron Durbina85febc2020-05-15 15:09:10 -0600[diff] [blame]157 if (fsps_env() && CONFIG(FSP_COMPRESS_FSP_S_LZ4))
158 return true;
Aaron Durbinecbfa992020-05-15 17:01:58 -0600[diff] [blame]159 if (fspm_env() && CONFIG(FSP_COMPRESS_FSP_M_LZ4))
160 return true;
Aaron Durbina85febc2020-05-15 15:09:10 -0600[diff] [blame]161
Aaron Durbina121f952020-05-26 15:48:10 -0600[diff] [blame]162 if ((ENV_BOOTBLOCK || ENV_SEPARATE_VERSTAGE) && !CONFIG(COMPRESS_PRERAM_STAGES))
163 return false;
164
Julius Werner9b1f3cc2020-12-30 17:30:12 -0800[diff] [blame]165 if (ENV_SMM)
166 return false;
167
Aaron Durbina121f952020-05-26 15:48:10 -0600[diff] [blame]168 return true;
169}
170
171static inline bool cbfs_lzma_enabled(void)
172{
Aaron Durbina85febc2020-05-15 15:09:10 -0600[diff] [blame]173 if (fsps_env() && CONFIG(FSP_COMPRESS_FSP_S_LZMA))
174 return true;
Aaron Durbinecbfa992020-05-15 17:01:58 -0600[diff] [blame]175 if (fspm_env() && CONFIG(FSP_COMPRESS_FSP_M_LZMA))
176 return true;
Aaron Durbina121f952020-05-26 15:48:10 -0600[diff] [blame]177 /* We assume here romstage and postcar are never compressed. */
178 if (ENV_BOOTBLOCK || ENV_SEPARATE_VERSTAGE)
179 return false;
180 if (ENV_ROMSTAGE && CONFIG(POSTCAR_STAGE))
181 return false;
Julius Werner723e3b12020-12-29 17:33:30 -0800[diff] [blame]182 if ((ENV_ROMSTAGE || ENV_POSTCAR) && !CONFIG(COMPRESS_RAMSTAGE))
Aaron Durbina121f952020-05-26 15:48:10 -0600[diff] [blame]183 return false;
Julius Werner9b1f3cc2020-12-30 17:30:12 -0800[diff] [blame]184 if (ENV_SMM)
185 return false;
Aaron Durbina121f952020-05-26 15:48:10 -0600[diff] [blame]186 return true;
187}
188
Julius Wernerfccf1222021-04-02 15:58:05 -0700[diff] [blame]189static inline bool cbfs_file_hash_mismatch(const void *buffer, size_t size,
190 const struct vb2_hash *file_hash)
191{
192 /* Avoid linking hash functions when verification is disabled. */
193 if (!CONFIG(CBFS_VERIFICATION))
194 return false;
195
196 /* If there is no file hash, always count that as a mismatch. */
197 if (file_hash && vb2_hash_verify(buffer, size, file_hash) == VB2_SUCCESS)
198 return false;
199
200 printk(BIOS_CRIT, "CBFS file hash mismatch!\n");
201 return true;
202}
203
204static size_t cbfs_load_and_decompress(const struct region_device *rdev, void *buffer,
205 size_t buffer_size, uint32_t compression,
206 const struct vb2_hash *file_hash)
Aaron Durbin899d13d2015-05-15 23:39:23 -0500[diff] [blame]207{
Julius Wernereca99af2021-03-10 18:49:37 -0800[diff] [blame]208 size_t in_size = region_device_sz(rdev);
Julius Wernerfccf1222021-04-02 15:58:05 -0700[diff] [blame]209 size_t out_size = 0;
Aaron Durbin84f394e2020-05-26 16:16:42 -0600[diff] [blame]210 void *map;
Julius Werner09f29212015-09-29 13:51:35 -0700[diff] [blame]211
Julius Wernereca99af2021-03-10 18:49:37 -0800[diff] [blame]212 DEBUG("Decompressing %zu bytes to %p with algo %d\n", in_size, buffer, compression);
Julius Werner7778cf22021-01-05 18:54:19 -0800[diff] [blame]213
Julius Werner09f29212015-09-29 13:51:35 -0700[diff] [blame]214 switch (compression) {
215 case CBFS_COMPRESS_NONE:
Julius Wernerf975e552016-08-19 15:43:06 -0700[diff] [blame]216 if (buffer_size < in_size)
217 return 0;
Julius Wernereca99af2021-03-10 18:49:37 -0800[diff] [blame]218 if (rdev_readat(rdev, buffer, 0, in_size) != in_size)
Julius Werner09f29212015-09-29 13:51:35 -0700[diff] [blame]219 return 0;
Julius Wernerfccf1222021-04-02 15:58:05 -0700[diff] [blame]220 if (cbfs_file_hash_mismatch(buffer, in_size, file_hash))
221 return 0;
Julius Werner09f29212015-09-29 13:51:35 -0700[diff] [blame]222 return in_size;
223
224 case CBFS_COMPRESS_LZ4:
Aaron Durbina121f952020-05-26 15:48:10 -0600[diff] [blame]225 if (!cbfs_lz4_enabled())
Julius Werner09f29212015-09-29 13:51:35 -0700[diff] [blame]226 return 0;
227
Julius Wernereca99af2021-03-10 18:49:37 -0800[diff] [blame]228 /* cbfs_prog_stage_load() takes care of in-place LZ4 decompression by
Julius Werner723e3b12020-12-29 17:33:30 -0800[diff] [blame]229 setting up the rdev to be in memory. */
Julius Wernereca99af2021-03-10 18:49:37 -0800[diff] [blame]230 map = rdev_mmap_full(rdev);
Aaron Durbin84f394e2020-05-26 16:16:42 -0600[diff] [blame]231 if (map == NULL)
Julius Werner09f29212015-09-29 13:51:35 -0700[diff] [blame]232 return 0;
233
Julius Wernerfccf1222021-04-02 15:58:05 -0700[diff] [blame]234 if (!cbfs_file_hash_mismatch(map, in_size, file_hash)) {
235 timestamp_add_now(TS_START_ULZ4F);
236 out_size = ulz4fn(map, in_size, buffer, buffer_size);
237 timestamp_add_now(TS_END_ULZ4F);
238 }
Aaron Durbin84f394e2020-05-26 16:16:42 -0600[diff] [blame]239
240 rdev_munmap(rdev, map);
241
Julius Werner09f29212015-09-29 13:51:35 -0700[diff] [blame]242 return out_size;
243
244 case CBFS_COMPRESS_LZMA:
Aaron Durbina121f952020-05-26 15:48:10 -0600[diff] [blame]245 if (!cbfs_lzma_enabled())
Julius Werner09f29212015-09-29 13:51:35 -0700[diff] [blame]246 return 0;
Julius Wernereca99af2021-03-10 18:49:37 -0800[diff] [blame]247 map = rdev_mmap_full(rdev);
Julius Werner09f29212015-09-29 13:51:35 -0700[diff] [blame]248 if (map == NULL)
249 return 0;
250
Julius Wernerfccf1222021-04-02 15:58:05 -0700[diff] [blame]251 if (!cbfs_file_hash_mismatch(map, in_size, file_hash)) {
252 /* Note: timestamp not useful for memory-mapped media (x86) */
253 timestamp_add_now(TS_START_ULZMA);
254 out_size = ulzman(map, in_size, buffer, buffer_size);
255 timestamp_add_now(TS_END_ULZMA);
256 }
Julius Werner09f29212015-09-29 13:51:35 -0700[diff] [blame]257
258 rdev_munmap(rdev, map);
259
260 return out_size;
261
262 default:
Aaron Durbin899d13d2015-05-15 23:39:23 -0500[diff] [blame]263 return 0;
Julius Werner09f29212015-09-29 13:51:35 -0700[diff] [blame]264 }
Aaron Durbin899d13d2015-05-15 23:39:23 -0500[diff] [blame]265}
266
Julius Werner7778cf22021-01-05 18:54:19 -0800[diff] [blame]267void *_cbfs_alloc(const char *name, cbfs_allocator_t allocator, void *arg,
268 size_t *size_out, bool force_ro, enum cbfs_type *type)
Julius Wernerf975e552016-08-19 15:43:06 -0700[diff] [blame]269{
Julius Wernerd17ce412020-10-01 18:25:49 -0700[diff] [blame]270 struct region_device rdev;
271 union cbfs_mdata mdata;
Julius Werner7778cf22021-01-05 18:54:19 -0800[diff] [blame]272 void *loc;
273
274 DEBUG("%s(name='%s', alloc=%p(%p), force_ro=%s, type=%d)\n", __func__, name, allocator,
275 arg, force_ro ? "true" : "false", type ? *type : -1);
Julius Wernerf975e552016-08-19 15:43:06 -0700[diff] [blame]276
Julius Werner9d0cc2a2020-01-22 18:00:18 -0800[diff] [blame]277 if (cbfs_boot_lookup(name, force_ro, &mdata, &rdev))
Julius Werner7778cf22021-01-05 18:54:19 -0800[diff] [blame]278 return NULL;
Julius Wernerf975e552016-08-19 15:43:06 -0700[diff] [blame]279
Julius Werner7778cf22021-01-05 18:54:19 -0800[diff] [blame]280 if (type) {
281 const enum cbfs_type real_type = be32toh(mdata.h.type);
282 if (*type == CBFS_TYPE_QUERY)
283 *type = real_type;
284 else if (*type != real_type) {
285 ERROR("'%s' type mismatch (is %u, expected %u)\n",
286 mdata.h.filename, real_type, *type);
287 return NULL;
288 }
Julius Wernerd17ce412020-10-01 18:25:49 -0700[diff] [blame]289 }
Julius Wernerf975e552016-08-19 15:43:06 -0700[diff] [blame]290
Julius Werner7778cf22021-01-05 18:54:19 -0800[diff] [blame]291 size_t size = region_device_sz(&rdev);
292 uint32_t compression = CBFS_COMPRESS_NONE;
293 const struct cbfs_file_attr_compression *cattr = cbfs_find_attr(&mdata,
294 CBFS_FILE_ATTR_TAG_COMPRESSION, sizeof(*cattr));
295 if (cattr) {
296 compression = be32toh(cattr->compression);
297 size = be32toh(cattr->decompressed_size);
298 }
299
300 if (size_out)
301 *size_out = size;
302
Julius Wernerfccf1222021-04-02 15:58:05 -0700[diff] [blame]303 const struct vb2_hash *file_hash = NULL;
304 if (CONFIG(CBFS_VERIFICATION))
305 file_hash = cbfs_file_hash(&mdata);
306
Julius Werner7778cf22021-01-05 18:54:19 -0800[diff] [blame]307 /* allocator == NULL means do a cbfs_map() */
308 if (allocator) {
309 loc = allocator(arg, size, &mdata);
310 } else if (compression == CBFS_COMPRESS_NONE) {
Julius Wernerfccf1222021-04-02 15:58:05 -0700[diff] [blame]311 void *mapping = rdev_mmap_full(&rdev);
Raul E Rangel3f41d322021-07-23 15:23:12 -0600[diff] [blame^]312
313 if (!mapping)
Julius Wernerfccf1222021-04-02 15:58:05 -0700[diff] [blame]314 return NULL;
Raul E Rangel3f41d322021-07-23 15:23:12 -0600[diff] [blame^]315
316 if (cbfs_file_hash_mismatch(mapping, size, file_hash)) {
317 rdev_munmap(&rdev, mapping);
318 return NULL;
319 }
320
Julius Wernerfccf1222021-04-02 15:58:05 -0700[diff] [blame]321 return mapping;
Julius Werner7778cf22021-01-05 18:54:19 -0800[diff] [blame]322 } else if (!CBFS_CACHE_AVAILABLE) {
323 ERROR("Cannot map compressed file %s on x86\n", mdata.h.filename);
324 return NULL;
325 } else {
326 loc = mem_pool_alloc(&cbfs_cache, size);
327 }
328
329 if (!loc) {
330 ERROR("'%s' allocation failure\n", mdata.h.filename);
331 return NULL;
332 }
333
Julius Wernerfccf1222021-04-02 15:58:05 -0700[diff] [blame]334 size = cbfs_load_and_decompress(&rdev, loc, size, compression, file_hash);
Julius Werner7778cf22021-01-05 18:54:19 -0800[diff] [blame]335 if (!size)
336 return NULL;
337
338 return loc;
339}
340
Julius Werner4676ec52021-03-10 16:52:14 -0800[diff] [blame]341void *_cbfs_default_allocator(void *arg, size_t size, const union cbfs_mdata *unused)
Julius Werner7778cf22021-01-05 18:54:19 -0800[diff] [blame]342{
343 struct _cbfs_default_allocator_arg *darg = arg;
344 if (size > darg->buf_size)
345 return NULL;
346 return darg->buf;
347}
348
Julius Werner4676ec52021-03-10 16:52:14 -0800[diff] [blame]349void *_cbfs_cbmem_allocator(void *arg, size_t size, const union cbfs_mdata *unused)
Julius Werner7778cf22021-01-05 18:54:19 -0800[diff] [blame]350{
351 return cbmem_add((uintptr_t)arg, size);
Julius Wernerf975e552016-08-19 15:43:06 -0700[diff] [blame]352}
353
Julius Werner1de87082020-12-23 17:38:11 -0800[diff] [blame]354cb_err_t cbfs_prog_stage_load(struct prog *pstage)
Aaron Durbin899d13d2015-05-15 23:39:23 -0500[diff] [blame]355{
Julius Werner1de87082020-12-23 17:38:11 -0800[diff] [blame]356 union cbfs_mdata mdata;
357 struct region_device rdev;
Julius Werner1de87082020-12-23 17:38:11 -0800[diff] [blame]358 cb_err_t err;
Hung-Te Lin6fe0cab2013-01-22 18:57:56 +0800[diff] [blame]359
Julius Werner1de87082020-12-23 17:38:11 -0800[diff] [blame]360 prog_locate_hook(pstage);
Aaron Durbin899d13d2015-05-15 23:39:23 -0500[diff] [blame]361
Julius Werner1de87082020-12-23 17:38:11 -0800[diff] [blame]362 if ((err = cbfs_boot_lookup(prog_name(pstage), false, &mdata, &rdev)))
363 return err;
364
365 assert(be32toh(mdata.h.type) == CBFS_TYPE_STAGE);
366 pstage->cbfs_type = CBFS_TYPE_STAGE;
367
Julius Werner81dc20e2020-10-15 17:37:57 -0700[diff] [blame]368 enum cbfs_compression compression = CBFS_COMPRESS_NONE;
369 const struct cbfs_file_attr_compression *cattr = cbfs_find_attr(&mdata,
370 CBFS_FILE_ATTR_TAG_COMPRESSION, sizeof(*cattr));
371 if (cattr)
372 compression = be32toh(cattr->compression);
Julius Werner1de87082020-12-23 17:38:11 -0800[diff] [blame]373
Julius Werner81dc20e2020-10-15 17:37:57 -0700[diff] [blame]374 const struct cbfs_file_attr_stageheader *sattr = cbfs_find_attr(&mdata,
375 CBFS_FILE_ATTR_TAG_STAGEHEADER, sizeof(*sattr));
376 if (!sattr)
377 return CB_ERR;
378 prog_set_area(pstage, (void *)(uintptr_t)be64toh(sattr->loadaddr),
379 be32toh(sattr->memlen));
380 prog_set_entry(pstage, prog_start(pstage) +
381 be32toh(sattr->entry_offset), NULL);
Aaron Durbin899d13d2015-05-15 23:39:23 -0500[diff] [blame]382
Julius Wernerfccf1222021-04-02 15:58:05 -0700[diff] [blame]383 const struct vb2_hash *file_hash = NULL;
384 if (CONFIG(CBFS_VERIFICATION))
385 file_hash = cbfs_file_hash(&mdata);
386
Aaron Durbined253c82015-10-07 17:22:42 -0500[diff] [blame]387 /* Hacky way to not load programs over read only media. The stages
388 * that would hit this path initialize themselves. */
Julius Werner21a40532020-04-21 16:03:53 -0700[diff] [blame]389 if ((ENV_BOOTBLOCK || ENV_SEPARATE_VERSTAGE) &&
390 !CONFIG(NO_XIP_EARLY_STAGES) && CONFIG(BOOT_DEVICE_MEMORY_MAPPED)) {
Julius Werner81dc20e2020-10-15 17:37:57 -0700[diff] [blame]391 void *mapping = rdev_mmap_full(&rdev);
Julius Werner1de87082020-12-23 17:38:11 -0800[diff] [blame]392 rdev_munmap(&rdev, mapping);
Julius Wernerfccf1222021-04-02 15:58:05 -0700[diff] [blame]393 if (cbfs_file_hash_mismatch(mapping, region_device_sz(&rdev), file_hash))
394 return CB_CBFS_HASH_MISMATCH;
Julius Werner81dc20e2020-10-15 17:37:57 -0700[diff] [blame]395 if (mapping == prog_start(pstage))
396 return CB_SUCCESS;
Aaron Durbined253c82015-10-07 17:22:42 -0500[diff] [blame]397 }
398
Julius Wernereca99af2021-03-10 18:49:37 -0800[diff] [blame]399 /* LZ4 stages can be decompressed in-place to save mapping scratch space. Load the
400 compressed data to the end of the buffer and point &rdev to that memory location. */
401 if (cbfs_lz4_enabled() && compression == CBFS_COMPRESS_LZ4) {
402 size_t in_size = region_device_sz(&rdev);
403 void *compr_start = prog_start(pstage) + prog_size(pstage) - in_size;
404 if (rdev_readat(&rdev, compr_start, 0, in_size) != in_size)
405 return CB_ERR;
Julius Wernerc8931972021-04-16 16:48:32 -0700[diff] [blame]406 rdev_chain_mem(&rdev, compr_start, in_size);
Julius Wernereca99af2021-03-10 18:49:37 -0800[diff] [blame]407 }
408
409 size_t fsize = cbfs_load_and_decompress(&rdev, prog_start(pstage), prog_size(pstage),
Julius Wernerfccf1222021-04-02 15:58:05 -0700[diff] [blame]410 compression, file_hash);
Julius Werner09f29212015-09-29 13:51:35 -0700[diff] [blame]411 if (!fsize)
Julius Werner1de87082020-12-23 17:38:11 -0800[diff] [blame]412 return CB_ERR;
Aaron Durbin899d13d2015-05-15 23:39:23 -0500[diff] [blame]413
414 /* Clear area not covered by file. */
Julius Werner81dc20e2020-10-15 17:37:57 -0700[diff] [blame]415 memset(prog_start(pstage) + fsize, 0, prog_size(pstage) - fsize);
Aaron Durbin899d13d2015-05-15 23:39:23 -0500[diff] [blame]416
Julius Werner81dc20e2020-10-15 17:37:57 -0700[diff] [blame]417 prog_segment_loaded((uintptr_t)prog_start(pstage), prog_size(pstage),
418 SEG_FINAL);
Aaron Durbin899d13d2015-05-15 23:39:23 -0500[diff] [blame]419
Julius Werner1de87082020-12-23 17:38:11 -0800[diff] [blame]420 return CB_SUCCESS;
Hung-Te Lin6fe0cab2013-01-22 18:57:56 +0800[diff] [blame]421}
Aaron Durbin6d720f32015-12-08 17:00:23 -0600[diff] [blame]422
Julius Werner1e37c9c2019-12-11 17:09:39 -0800[diff] [blame]423void cbfs_boot_device_find_mcache(struct cbfs_boot_device *cbd, uint32_t id)
Aaron Durbin6d720f32015-12-08 17:00:23 -0600[diff] [blame]424{
Julius Werner1e37c9c2019-12-11 17:09:39 -0800[diff] [blame]425 if (CONFIG(NO_CBFS_MCACHE) || ENV_SMM)
426 return;
427
Julius Werner34cf0732020-12-08 14:21:43 -0800[diff] [blame]428 if (cbd->mcache_size)
429 return;
430
Julius Werner1e37c9c2019-12-11 17:09:39 -0800[diff] [blame]431 const struct cbmem_entry *entry;
432 if (cbmem_possibly_online() &&
433 (entry = cbmem_entry_find(id))) {
434 cbd->mcache = cbmem_entry_start(entry);
435 cbd->mcache_size = cbmem_entry_size(entry);
436 } else if (ENV_ROMSTAGE_OR_BEFORE) {
437 u8 *boundary = _ecbfs_mcache - REGION_SIZE(cbfs_mcache) *
438 CONFIG_CBFS_MCACHE_RW_PERCENTAGE / 100;
Julius Werner723e3b12020-12-29 17:33:30 -0800[diff] [blame]439 boundary = (u8 *)ALIGN_DOWN((uintptr_t)boundary, CBFS_MCACHE_ALIGNMENT);
Julius Werner1e37c9c2019-12-11 17:09:39 -0800[diff] [blame]440 if (id == CBMEM_ID_CBFS_RO_MCACHE) {
441 cbd->mcache = _cbfs_mcache;
442 cbd->mcache_size = boundary - _cbfs_mcache;
443 } else if (id == CBMEM_ID_CBFS_RW_MCACHE) {
444 cbd->mcache = boundary;
445 cbd->mcache_size = _ecbfs_mcache - boundary;
446 }
447 }
Aaron Durbin6d720f32015-12-08 17:00:23 -0600[diff] [blame]448}
Julius Werner1e37c9c2019-12-11 17:09:39 -0800[diff] [blame]449
Julius Wernerfdabf3f2020-05-06 17:06:35 -0700[diff] [blame]450cb_err_t cbfs_init_boot_device(const struct cbfs_boot_device *cbd,
Julius Werner723e3b12020-12-29 17:33:30 -0800[diff] [blame]451 struct vb2_hash *mdata_hash)
Julius Wernerfdabf3f2020-05-06 17:06:35 -0700[diff] [blame]452{
453 /* If we have an mcache, mcache_build() will also check mdata hash. */
454 if (!CONFIG(NO_CBFS_MCACHE) && !ENV_SMM && cbd->mcache_size > 0)
Julius Werner723e3b12020-12-29 17:33:30 -0800[diff] [blame]455 return cbfs_mcache_build(&cbd->rdev, cbd->mcache, cbd->mcache_size, mdata_hash);
Julius Wernerfdabf3f2020-05-06 17:06:35 -0700[diff] [blame]456
457 /* No mcache and no verification means we have nothing special to do. */
Julius Werner723e3b12020-12-29 17:33:30 -0800[diff] [blame]458 if (!CONFIG(CBFS_VERIFICATION) || !mdata_hash)
Julius Wernerfdabf3f2020-05-06 17:06:35 -0700[diff] [blame]459 return CB_SUCCESS;
460
Julius Werner723e3b12020-12-29 17:33:30 -0800[diff] [blame]461 /* Verification only: use cbfs_walk() without a walker() function to just run through
462 the CBFS once, will return NOT_FOUND by default. */
463 cb_err_t err = cbfs_walk(&cbd->rdev, NULL, NULL, mdata_hash, 0);
Julius Wernerfdabf3f2020-05-06 17:06:35 -0700[diff] [blame]464 if (err == CB_CBFS_NOT_FOUND)
465 err = CB_SUCCESS;
466 return err;
467}
468
Julius Werner1e37c9c2019-12-11 17:09:39 -0800[diff] [blame]469const struct cbfs_boot_device *cbfs_get_boot_device(bool force_ro)
470{
471 static struct cbfs_boot_device ro;
472
Julius Werner723e3b12020-12-29 17:33:30 -0800[diff] [blame]473 /* Ensure we always init RO mcache, even if the first file is from the RW CBFS.
Julius Werner1e37c9c2019-12-11 17:09:39 -0800[diff] [blame]474 Otherwise it may not be available when needed in later stages. */
475 if (ENV_INITIAL_STAGE && !force_ro && !region_device_sz(&ro.rdev))
476 cbfs_get_boot_device(true);
477
478 if (!force_ro) {
479 const struct cbfs_boot_device *rw = vboot_get_cbfs_boot_device();
Julius Werner723e3b12020-12-29 17:33:30 -0800[diff] [blame]480 /* This will return NULL if vboot isn't enabled, didn't run yet or decided to
481 boot into recovery mode. */
Julius Werner1e37c9c2019-12-11 17:09:39 -0800[diff] [blame]482 if (rw)
483 return rw;
484 }
485
Julius Werner723e3b12020-12-29 17:33:30 -0800[diff] [blame]486 /* In rare cases post-RAM stages may run this before cbmem_initialize(), so we can't
487 lock in the result of find_mcache() on the first try and should keep trying every
488 time until an mcache is found. */
Julius Werner34cf0732020-12-08 14:21:43 -0800[diff] [blame]489 cbfs_boot_device_find_mcache(&ro, CBMEM_ID_CBFS_RO_MCACHE);
490
Julius Werner1e37c9c2019-12-11 17:09:39 -0800[diff] [blame]491 if (region_device_sz(&ro.rdev))
492 return &ro;
493
494 if (fmap_locate_area_as_rdev("COREBOOT", &ro.rdev))
Julius Wernerfdabf3f2020-05-06 17:06:35 -0700[diff] [blame]495 die("Cannot locate primary CBFS");
Julius Werner1e37c9c2019-12-11 17:09:39 -0800[diff] [blame]496
Julius Wernerfdabf3f2020-05-06 17:06:35 -0700[diff] [blame]497 if (ENV_INITIAL_STAGE) {
498 cb_err_t err = cbfs_init_boot_device(&ro, metadata_hash_get());
499 if (err == CB_CBFS_HASH_MISMATCH)
500 die("RO CBFS metadata hash verification failure");
501 else if (CONFIG(TOCTOU_SAFETY) && err == CB_CBFS_CACHE_FULL)
502 die("RO mcache overflow breaks TOCTOU safety!\n");
503 else if (err && err != CB_CBFS_CACHE_FULL)
504 die("RO CBFS initialization error: %d", err);
Julius Werner1e37c9c2019-12-11 17:09:39 -0800[diff] [blame]505 }
506
507 return &ro;
508}
509
510#if !CONFIG(NO_CBFS_MCACHE)
511static void mcache_to_cbmem(const struct cbfs_boot_device *cbd, u32 cbmem_id)
512{
513 if (!cbd)
514 return;
515
516 size_t real_size = cbfs_mcache_real_size(cbd->mcache, cbd->mcache_size);
517 void *cbmem_mcache = cbmem_add(cbmem_id, real_size);
518 if (!cbmem_mcache) {
519 printk(BIOS_ERR, "ERROR: Cannot allocate CBMEM mcache %#x (%#zx bytes)!\n",
520 cbmem_id, real_size);
521 return;
522 }
523 memcpy(cbmem_mcache, cbd->mcache, real_size);
524}
525
526static void cbfs_mcache_migrate(int unused)
527{
528 mcache_to_cbmem(vboot_get_cbfs_boot_device(), CBMEM_ID_CBFS_RW_MCACHE);
529 mcache_to_cbmem(cbfs_get_boot_device(true), CBMEM_ID_CBFS_RO_MCACHE);
530}
531ROMSTAGE_CBMEM_INIT_HOOK(cbfs_mcache_migrate)
532#endif