Blame - src/lib/cbfs.c - coreboot

blob: 32ebfafbf65057c57c154c386a7f7ba81661d22f [file] [log] [blame]

Angel Pons	118a9c7	2020-04-02 23:48:34 +0200	[diff] [blame]	1	/* SPDX-License-Identifier: GPL-2.0-only */
Peter Stuge	483b7bb	2009-04-14 07:40:01 +0000	[diff] [blame]	2
Aaron Durbin	899d13d	2015-05-15 23:39:23 -0500	[diff] [blame]	3	#include <assert.h>
Aaron Durbin	899d13d	2015-05-15 23:39:23 -0500	[diff] [blame]	4	#include <boot_device.h>
				5	#include <cbfs.h>
Julius Werner	0d9072b	2020-03-05 12:51:08 -0800	[diff] [blame]	6	#include <cbfs_private.h>
Julius Werner	1e37c9c	2019-12-11 17:09:39 -0800	[diff] [blame]	7	#include <cbmem.h>
Julius Werner	98eeb96	2019-12-11 15:47:42 -0800	[diff] [blame]	8	#include <commonlib/bsd/compression.h>
Aaron Durbin	0b418bd	2020-10-08 14:56:03 -0600	[diff] [blame]	9	#include <commonlib/endian.h>
Bill XIE	c79e96b	2019-08-22 20:28:36 +0800	[diff] [blame]	10	#include <console/console.h>
Bill XIE	c79e96b	2019-08-22 20:28:36 +0800	[diff] [blame]	11	#include <fmap.h>
Aaron Durbin	899d13d	2015-05-15 23:39:23 -0500	[diff] [blame]	12	#include <lib.h>
Julius Werner	fdabf3f	2020-05-06 17:06:35 -0700	[diff] [blame]	13	#include <metadata_hash.h>
Bill XIE	c79e96b	2019-08-22 20:28:36 +0800	[diff] [blame]	14	#include <security/tpm/tspi/crtm.h>
				15	#include <security/vboot/vboot_common.h>
				16	#include <stdlib.h>
				17	#include <string.h>
Aaron Durbin	899d13d	2015-05-15 23:39:23 -0500	[diff] [blame]	18	#include <symbols.h>
Julius Werner	09f2921	2015-09-29 13:51:35 -0700	[diff] [blame]	19	#include <timestamp.h>
Patrick Georgi	58a150a	2016-05-02 17:22:29 +0800	[diff] [blame]	20
Julius Werner	9b1f3cc	2020-12-30 17:30:12 -0800	[diff] [blame]	21	#if CBFS_CACHE_AVAILABLE
				22	struct mem_pool cbfs_cache = MEM_POOL_INIT(_cbfs_cache, REGION_SIZE(cbfs_cache));
				23
				24	static void switch_to_postram_cache(int unused)
				25	{
				26	if (_preram_cbfs_cache != _postram_cbfs_cache)
				27	mem_pool_init(&cbfs_cache, _postram_cbfs_cache,
				28	REGION_SIZE(postram_cbfs_cache));
				29	}
				30	ROMSTAGE_CBMEM_INIT_HOOK(switch_to_postram_cache);
				31	#endif
				32
Julius Werner	0d9072b	2020-03-05 12:51:08 -0800	[diff] [blame]	33	cb_err_t cbfs_boot_lookup(const char *name, bool force_ro,
				34	union cbfs_mdata mdata, struct region_device rdev)
Julius Werner	1e37c9c	2019-12-11 17:09:39 -0800	[diff] [blame]	35	{
Julius Werner	0d9072b	2020-03-05 12:51:08 -0800	[diff] [blame]	36	const struct cbfs_boot_device *cbd = cbfs_get_boot_device(force_ro);
				37	if (!cbd)
				38	return CB_ERR;
				39
				40	size_t data_offset;
Julius Werner	1e37c9c	2019-12-11 17:09:39 -0800	[diff] [blame]	41	cb_err_t err = CB_CBFS_CACHE_FULL;
Julius Werner	34cf073	2020-12-08 14:21:43 -0800	[diff] [blame]	42	if (!CONFIG(NO_CBFS_MCACHE) && !ENV_SMM && cbd->mcache_size)
Julius Werner	1e37c9c	2019-12-11 17:09:39 -0800	[diff] [blame]	43	err = cbfs_mcache_lookup(cbd->mcache, cbd->mcache_size,
Julius Werner	723e3b1	2020-12-29 17:33:30 -0800	[diff] [blame]	44	name, mdata, &data_offset);
Julius Werner	fdabf3f	2020-05-06 17:06:35 -0700	[diff] [blame]	45	if (err == CB_CBFS_CACHE_FULL) {
				46	struct vb2_hash *metadata_hash = NULL;
				47	if (CONFIG(TOCTOU_SAFETY)) {
				48	if (ENV_SMM) /* Cannot provide TOCTOU safety for SMM */
				49	dead_code();
Julius Werner	34cf073	2020-12-08 14:21:43 -0800	[diff] [blame]	50	if (!cbd->mcache_size)
				51	die("Cannot access CBFS TOCTOU-safely in " ENV_STRING " before CBMEM init!\n");
Julius Werner	723e3b1	2020-12-29 17:33:30 -0800	[diff] [blame]	52	/* We can only reach this for the RW CBFS -- an mcache overflow in the
				53	RO CBFS would have been caught when building the mcache in cbfs_get
				54	boot_device(). (Note that TOCTOU_SAFETY implies !NO_CBFS_MCACHE.) */
Julius Werner	fdabf3f	2020-05-06 17:06:35 -0700	[diff] [blame]	55	assert(cbd == vboot_get_cbfs_boot_device());
				56	/* TODO: set metadata_hash to RW metadata hash here. */
				57	}
Julius Werner	723e3b1	2020-12-29 17:33:30 -0800	[diff] [blame]	58	err = cbfs_lookup(&cbd->rdev, name, mdata, &data_offset, metadata_hash);
Julius Werner	fdabf3f	2020-05-06 17:06:35 -0700	[diff] [blame]	59	}
Julius Werner	0d9072b	2020-03-05 12:51:08 -0800	[diff] [blame]	60
Julius Werner	723e3b1	2020-12-29 17:33:30 -0800	[diff] [blame]	61	if (CONFIG(VBOOT_ENABLE_CBFS_FALLBACK) && !force_ro && err == CB_CBFS_NOT_FOUND) {
				62	printk(BIOS_INFO, "CBFS: Fall back to RO region for %s\n", name);
Julius Werner	0d9072b	2020-03-05 12:51:08 -0800	[diff] [blame]	63	return cbfs_boot_lookup(name, true, mdata, rdev);
				64	}
Julius Werner	0247fcf	2020-12-03 12:41:00 -0800	[diff] [blame]	65	if (err) {
				66	if (err == CB_CBFS_NOT_FOUND)
				67	printk(BIOS_WARNING, "CBFS: '%s' not found.\n", name);
				68	else if (err == CB_CBFS_HASH_MISMATCH)
				69	printk(BIOS_ERR, "CBFS ERROR: metadata hash mismatch!\n");
				70	else
Julius Werner	723e3b1	2020-12-29 17:33:30 -0800	[diff] [blame]	71	printk(BIOS_ERR, "CBFS ERROR: error %d when looking up '%s'\n",
Julius Werner	0247fcf	2020-12-03 12:41:00 -0800	[diff] [blame]	72	err, name);
Julius Werner	0d9072b	2020-03-05 12:51:08 -0800	[diff] [blame]	73	return err;
Julius Werner	0247fcf	2020-12-03 12:41:00 -0800	[diff] [blame]	74	}
Julius Werner	0d9072b	2020-03-05 12:51:08 -0800	[diff] [blame]	75
				76	if (rdev_chain(rdev, &cbd->rdev, data_offset, be32toh(mdata->h.len)))
				77	return CB_ERR;
				78
Arthur Heymans	27545df	2021-02-26 14:22:47 +0100	[diff] [blame]	79	if (tspi_measure_cbfs_hook(rdev, name, be32toh(mdata->h.type))) {
				80	printk(BIOS_ERR, "CBFS ERROR: error when measuring '%s'\n", name);
				81	}
Julius Werner	0d9072b	2020-03-05 12:51:08 -0800	[diff] [blame]	82
				83	return CB_SUCCESS;
Julius Werner	1e37c9c	2019-12-11 17:09:39 -0800	[diff] [blame]	84	}
				85
Aaron Durbin	37a5d15	2015-09-17 16:09:30 -0500	[diff] [blame]	86	int cbfs_boot_locate(struct cbfsf fh, const char name, uint32_t *type)
Aaron Durbin	899d13d	2015-05-15 23:39:23 -0500	[diff] [blame]	87	{
Julius Werner	0d9072b	2020-03-05 12:51:08 -0800	[diff] [blame]	88	if (cbfs_boot_lookup(name, false, &fh->mdata, &fh->data))
Julius Werner	1cd013b	2019-12-11 16:50:02 -0800	[diff] [blame]	89	return -1;
				90
				91	size_t msize = be32toh(fh->mdata.h.offset);
Julius Werner	c893197	2021-04-16 16:48:32 -0700	[diff] [blame^]	92	if (rdev_chain_mem(&fh->metadata, &fh->mdata, msize))
Julius Werner	1cd013b	2019-12-11 16:50:02 -0800	[diff] [blame]	93	return -1;
Julius Werner	0d9072b	2020-03-05 12:51:08 -0800	[diff] [blame]	94
Julius Werner	1cd013b	2019-12-11 16:50:02 -0800	[diff] [blame]	95	if (type) {
				96	if (!*type)
				97	*type = be32toh(fh->mdata.h.type);
				98	else if (*type != be32toh(fh->mdata.h.type))
				99	return -1;
Wim Vervoorn	114e2e8	2019-11-05 14:09:16 +0100	[diff] [blame]	100	}
				101
Julius Werner	1cd013b	2019-12-11 16:50:02 -0800	[diff] [blame]	102	return 0;
Aaron Durbin	899d13d	2015-05-15 23:39:23 -0500	[diff] [blame]	103	}
				104
Julius Werner	9b1f3cc	2020-12-30 17:30:12 -0800	[diff] [blame]	105	void cbfs_unmap(void *mapping)
Julius Werner	834b3ec	2020-03-04 16:52:08 -0800	[diff] [blame]	106	{
Julius Werner	9b1f3cc	2020-12-30 17:30:12 -0800	[diff] [blame]	107	/*
				108	* This is save to call with mappings that weren't allocated in the cache (e.g. x86
				109	* direct mappings) -- mem_pool_free() just does nothing for addresses it doesn't
				110	* recognize. This hardcodes the assumption that if platforms implement an rdev_mmap()
				111	* that requires a free() for the boot_device, they need to implement it via the
				112	* cbfs_cache mem_pool.
				113	*/
				114	if (CBFS_CACHE_AVAILABLE)
				115	mem_pool_free(&cbfs_cache, mapping);
Julius Werner	834b3ec	2020-03-04 16:52:08 -0800	[diff] [blame]	116	}
				117
Pratik Prajapati	2a7708a	2016-11-30 17:29:10 -0800	[diff] [blame]	118	int cbfs_locate_file_in_region(struct cbfsf fh, const char region_name,
Philipp Deppenwiese	66f9a09	2018-11-08 10:59:40 +0100	[diff] [blame]	119	const char name, uint32_t type)
Pratik Prajapati	2a7708a	2016-11-30 17:29:10 -0800	[diff] [blame]	120	{
				121	struct region_device rdev;
Bill XIE	bad08c2	2020-02-13 11:11:35 +0800	[diff] [blame]	122	int ret = 0;
Pratik Prajapati	2a7708a	2016-11-30 17:29:10 -0800	[diff] [blame]	123	if (fmap_locate_area_as_rdev(region_name, &rdev)) {
Julius Werner	723e3b1	2020-12-29 17:33:30 -0800	[diff] [blame]	124	LOG("%s region not found while looking for %s\n", region_name, name);
Pratik Prajapati	2a7708a	2016-11-30 17:29:10 -0800	[diff] [blame]	125	return -1;
				126	}
				127
Julius Werner	0d9072b	2020-03-05 12:51:08 -0800	[diff] [blame]	128	uint32_t dummy_type = 0;
				129	if (!type)
				130	type = &dummy_type;
				131
Bill XIE	bad08c2	2020-02-13 11:11:35 +0800	[diff] [blame]	132	ret = cbfs_locate(fh, &rdev, name, type);
				133	if (!ret)
Julius Werner	0d9072b	2020-03-05 12:51:08 -0800	[diff] [blame]	134	if (tspi_measure_cbfs_hook(&rdev, name, *type))
Arthur Heymans	27545df	2021-02-26 14:22:47 +0100	[diff] [blame]	135	LOG("error measuring %s in region %s\n", name, region_name);
Bill XIE	bad08c2	2020-02-13 11:11:35 +0800	[diff] [blame]	136	return ret;
Pratik Prajapati	2a7708a	2016-11-30 17:29:10 -0800	[diff] [blame]	137	}
				138
Aaron Durbin	a85febc	2020-05-15 15:09:10 -0600	[diff] [blame]	139	static inline bool fsps_env(void)
				140	{
				141	/* FSP-S is assumed to be loaded in ramstage. */
				142	if (ENV_RAMSTAGE)
				143	return true;
				144	return false;
				145	}
				146
Aaron Durbin	ecbfa99	2020-05-15 17:01:58 -0600	[diff] [blame]	147	static inline bool fspm_env(void)
				148	{
				149	/* FSP-M is assumed to be loaded in romstage. */
				150	if (ENV_ROMSTAGE)
				151	return true;
				152	return false;
				153	}
				154
Aaron Durbin	a121f95	2020-05-26 15:48:10 -0600	[diff] [blame]	155	static inline bool cbfs_lz4_enabled(void)
				156	{
Aaron Durbin	a85febc	2020-05-15 15:09:10 -0600	[diff] [blame]	157	if (fsps_env() && CONFIG(FSP_COMPRESS_FSP_S_LZ4))
				158	return true;
Aaron Durbin	ecbfa99	2020-05-15 17:01:58 -0600	[diff] [blame]	159	if (fspm_env() && CONFIG(FSP_COMPRESS_FSP_M_LZ4))
				160	return true;
Aaron Durbin	a85febc	2020-05-15 15:09:10 -0600	[diff] [blame]	161
Aaron Durbin	a121f95	2020-05-26 15:48:10 -0600	[diff] [blame]	162	if ((ENV_BOOTBLOCK \|\| ENV_SEPARATE_VERSTAGE) && !CONFIG(COMPRESS_PRERAM_STAGES))
				163	return false;
				164
Julius Werner	9b1f3cc	2020-12-30 17:30:12 -0800	[diff] [blame]	165	if (ENV_SMM)
				166	return false;
				167
Aaron Durbin	a121f95	2020-05-26 15:48:10 -0600	[diff] [blame]	168	return true;
				169	}
				170
				171	static inline bool cbfs_lzma_enabled(void)
				172	{
Aaron Durbin	a85febc	2020-05-15 15:09:10 -0600	[diff] [blame]	173	if (fsps_env() && CONFIG(FSP_COMPRESS_FSP_S_LZMA))
				174	return true;
Aaron Durbin	ecbfa99	2020-05-15 17:01:58 -0600	[diff] [blame]	175	if (fspm_env() && CONFIG(FSP_COMPRESS_FSP_M_LZMA))
				176	return true;
Aaron Durbin	a121f95	2020-05-26 15:48:10 -0600	[diff] [blame]	177	/* We assume here romstage and postcar are never compressed. */
				178	if (ENV_BOOTBLOCK \|\| ENV_SEPARATE_VERSTAGE)
				179	return false;
				180	if (ENV_ROMSTAGE && CONFIG(POSTCAR_STAGE))
				181	return false;
Julius Werner	723e3b1	2020-12-29 17:33:30 -0800	[diff] [blame]	182	if ((ENV_ROMSTAGE \|\| ENV_POSTCAR) && !CONFIG(COMPRESS_RAMSTAGE))
Aaron Durbin	a121f95	2020-05-26 15:48:10 -0600	[diff] [blame]	183	return false;
Julius Werner	9b1f3cc	2020-12-30 17:30:12 -0800	[diff] [blame]	184	if (ENV_SMM)
				185	return false;
Aaron Durbin	a121f95	2020-05-26 15:48:10 -0600	[diff] [blame]	186	return true;
				187	}
				188
Julius Werner	fccf122	2021-04-02 15:58:05 -0700	[diff] [blame]	189	static inline bool cbfs_file_hash_mismatch(const void *buffer, size_t size,
				190	const struct vb2_hash *file_hash)
				191	{
				192	/* Avoid linking hash functions when verification is disabled. */
				193	if (!CONFIG(CBFS_VERIFICATION))
				194	return false;
				195
				196	/* If there is no file hash, always count that as a mismatch. */
				197	if (file_hash && vb2_hash_verify(buffer, size, file_hash) == VB2_SUCCESS)
				198	return false;
				199
				200	printk(BIOS_CRIT, "CBFS file hash mismatch!\n");
				201	return true;
				202	}
				203
				204	static size_t cbfs_load_and_decompress(const struct region_device rdev, void buffer,
				205	size_t buffer_size, uint32_t compression,
				206	const struct vb2_hash *file_hash)
Aaron Durbin	899d13d	2015-05-15 23:39:23 -0500	[diff] [blame]	207	{
Julius Werner	eca99af	2021-03-10 18:49:37 -0800	[diff] [blame]	208	size_t in_size = region_device_sz(rdev);
Julius Werner	fccf122	2021-04-02 15:58:05 -0700	[diff] [blame]	209	size_t out_size = 0;
Aaron Durbin	84f394e	2020-05-26 16:16:42 -0600	[diff] [blame]	210	void *map;
Julius Werner	09f2921	2015-09-29 13:51:35 -0700	[diff] [blame]	211
Julius Werner	eca99af	2021-03-10 18:49:37 -0800	[diff] [blame]	212	DEBUG("Decompressing %zu bytes to %p with algo %d\n", in_size, buffer, compression);
Julius Werner	7778cf2	2021-01-05 18:54:19 -0800	[diff] [blame]	213
Julius Werner	09f2921	2015-09-29 13:51:35 -0700	[diff] [blame]	214	switch (compression) {
				215	case CBFS_COMPRESS_NONE:
Julius Werner	f975e55	2016-08-19 15:43:06 -0700	[diff] [blame]	216	if (buffer_size < in_size)
				217	return 0;
Julius Werner	eca99af	2021-03-10 18:49:37 -0800	[diff] [blame]	218	if (rdev_readat(rdev, buffer, 0, in_size) != in_size)
Julius Werner	09f2921	2015-09-29 13:51:35 -0700	[diff] [blame]	219	return 0;
Julius Werner	fccf122	2021-04-02 15:58:05 -0700	[diff] [blame]	220	if (cbfs_file_hash_mismatch(buffer, in_size, file_hash))
				221	return 0;
Julius Werner	09f2921	2015-09-29 13:51:35 -0700	[diff] [blame]	222	return in_size;
				223
				224	case CBFS_COMPRESS_LZ4:
Aaron Durbin	a121f95	2020-05-26 15:48:10 -0600	[diff] [blame]	225	if (!cbfs_lz4_enabled())
Julius Werner	09f2921	2015-09-29 13:51:35 -0700	[diff] [blame]	226	return 0;
				227
Julius Werner	eca99af	2021-03-10 18:49:37 -0800	[diff] [blame]	228	/* cbfs_prog_stage_load() takes care of in-place LZ4 decompression by
Julius Werner	723e3b1	2020-12-29 17:33:30 -0800	[diff] [blame]	229	setting up the rdev to be in memory. */
Julius Werner	eca99af	2021-03-10 18:49:37 -0800	[diff] [blame]	230	map = rdev_mmap_full(rdev);
Aaron Durbin	84f394e	2020-05-26 16:16:42 -0600	[diff] [blame]	231	if (map == NULL)
Julius Werner	09f2921	2015-09-29 13:51:35 -0700	[diff] [blame]	232	return 0;
				233
Julius Werner	fccf122	2021-04-02 15:58:05 -0700	[diff] [blame]	234	if (!cbfs_file_hash_mismatch(map, in_size, file_hash)) {
				235	timestamp_add_now(TS_START_ULZ4F);
				236	out_size = ulz4fn(map, in_size, buffer, buffer_size);
				237	timestamp_add_now(TS_END_ULZ4F);
				238	}
Aaron Durbin	84f394e	2020-05-26 16:16:42 -0600	[diff] [blame]	239
				240	rdev_munmap(rdev, map);
				241
Julius Werner	09f2921	2015-09-29 13:51:35 -0700	[diff] [blame]	242	return out_size;
				243
				244	case CBFS_COMPRESS_LZMA:
Aaron Durbin	a121f95	2020-05-26 15:48:10 -0600	[diff] [blame]	245	if (!cbfs_lzma_enabled())
Julius Werner	09f2921	2015-09-29 13:51:35 -0700	[diff] [blame]	246	return 0;
Julius Werner	eca99af	2021-03-10 18:49:37 -0800	[diff] [blame]	247	map = rdev_mmap_full(rdev);
Julius Werner	09f2921	2015-09-29 13:51:35 -0700	[diff] [blame]	248	if (map == NULL)
				249	return 0;
				250
Julius Werner	fccf122	2021-04-02 15:58:05 -0700	[diff] [blame]	251	if (!cbfs_file_hash_mismatch(map, in_size, file_hash)) {
				252	/* Note: timestamp not useful for memory-mapped media (x86) */
				253	timestamp_add_now(TS_START_ULZMA);
				254	out_size = ulzman(map, in_size, buffer, buffer_size);
				255	timestamp_add_now(TS_END_ULZMA);
				256	}
Julius Werner	09f2921	2015-09-29 13:51:35 -0700	[diff] [blame]	257
				258	rdev_munmap(rdev, map);
				259
				260	return out_size;
				261
				262	default:
Aaron Durbin	899d13d	2015-05-15 23:39:23 -0500	[diff] [blame]	263	return 0;
Julius Werner	09f2921	2015-09-29 13:51:35 -0700	[diff] [blame]	264	}
Aaron Durbin	899d13d	2015-05-15 23:39:23 -0500	[diff] [blame]	265	}
				266
Stefan Reinauer	800379f	2010-03-01 08:34:19 +0000	[diff] [blame]	267	static inline int tohex4(unsigned int c)
Patrick Georgi	b203c2f	2009-08-20 14:48:03 +0000	[diff] [blame]	268	{
Hung-Te Lin	6fe0cab	2013-01-22 18:57:56 +0800	[diff] [blame]	269	return (c <= 9) ? (c + '0') : (c - 10 + 'a');
Patrick Georgi	b203c2f	2009-08-20 14:48:03 +0000	[diff] [blame]	270	}
				271
Martin Roth	a616a4b	2020-01-21 09:28:40 -0700	[diff] [blame]	272	static void tohex8(unsigned int val, char *dest)
				273	{
				274	dest[0] = tohex4((val >> 4) & 0xf);
				275	dest[1] = tohex4(val & 0xf);
				276	}
				277
Lee Leahy	b2d834a	2017-03-08 16:52:22 -0800	[diff] [blame]	278	static void tohex16(unsigned int val, char *dest)
Patrick Georgi	b203c2f	2009-08-20 14:48:03 +0000	[diff] [blame]	279	{
Philipp Deppenwiese	66f9a09	2018-11-08 10:59:40 +0100	[diff] [blame]	280	dest[0] = tohex4(val >> 12);
				281	dest[1] = tohex4((val >> 8) & 0xf);
				282	dest[2] = tohex4((val >> 4) & 0xf);
Hung-Te Lin	6fe0cab	2013-01-22 18:57:56 +0800	[diff] [blame]	283	dest[3] = tohex4(val & 0xf);
Patrick Georgi	b203c2f	2009-08-20 14:48:03 +0000	[diff] [blame]	284	}
				285
Aaron Durbin	899d13d	2015-05-15 23:39:23 -0500	[diff] [blame]	286	void *cbfs_boot_map_optionrom(uint16_t vendor, uint16_t device)
Peter Stuge	483b7bb	2009-04-14 07:40:01 +0000	[diff] [blame]	287	{
Hung-Te Lin	6fe0cab	2013-01-22 18:57:56 +0800	[diff] [blame]	288	char name[17] = "pciXXXX,XXXX.rom";
Peter Stuge	483b7bb	2009-04-14 07:40:01 +0000	[diff] [blame]	289
Philipp Deppenwiese	66f9a09	2018-11-08 10:59:40 +0100	[diff] [blame]	290	tohex16(vendor, name + 3);
				291	tohex16(device, name + 8);
Peter Stuge	483b7bb	2009-04-14 07:40:01 +0000	[diff] [blame]	292
Julius Werner	834b3ec	2020-03-04 16:52:08 -0800	[diff] [blame]	293	return cbfs_map(name, NULL);
Peter Stuge	483b7bb	2009-04-14 07:40:01 +0000	[diff] [blame]	294	}
				295
Martin Roth	a616a4b	2020-01-21 09:28:40 -0700	[diff] [blame]	296	void *cbfs_boot_map_optionrom_revision(uint16_t vendor, uint16_t device, uint8_t rev)
				297	{
				298	char name[20] = "pciXXXX,XXXX,XX.rom";
				299
				300	tohex16(vendor, name + 3);
				301	tohex16(device, name + 8);
				302	tohex8(rev, name + 13);
				303
Julius Werner	834b3ec	2020-03-04 16:52:08 -0800	[diff] [blame]	304	return cbfs_map(name, NULL);
Martin Roth	a616a4b	2020-01-21 09:28:40 -0700	[diff] [blame]	305	}
				306
Julius Werner	7778cf2	2021-01-05 18:54:19 -0800	[diff] [blame]	307	void _cbfs_alloc(const char name, cbfs_allocator_t allocator, void *arg,
				308	size_t size_out, bool force_ro, enum cbfs_type type)
Julius Werner	f975e55	2016-08-19 15:43:06 -0700	[diff] [blame]	309	{
Julius Werner	d17ce41	2020-10-01 18:25:49 -0700	[diff] [blame]	310	struct region_device rdev;
				311	union cbfs_mdata mdata;
Julius Werner	7778cf2	2021-01-05 18:54:19 -0800	[diff] [blame]	312	void *loc;
				313
				314	DEBUG("%s(name='%s', alloc=%p(%p), force_ro=%s, type=%d)\n", __func__, name, allocator,
				315	arg, force_ro ? "true" : "false", type ? *type : -1);
Julius Werner	f975e55	2016-08-19 15:43:06 -0700	[diff] [blame]	316
Julius Werner	9d0cc2a	2020-01-22 18:00:18 -0800	[diff] [blame]	317	if (cbfs_boot_lookup(name, force_ro, &mdata, &rdev))
Julius Werner	7778cf2	2021-01-05 18:54:19 -0800	[diff] [blame]	318	return NULL;
Julius Werner	f975e55	2016-08-19 15:43:06 -0700	[diff] [blame]	319
Julius Werner	7778cf2	2021-01-05 18:54:19 -0800	[diff] [blame]	320	if (type) {
				321	const enum cbfs_type real_type = be32toh(mdata.h.type);
				322	if (*type == CBFS_TYPE_QUERY)
				323	*type = real_type;
				324	else if (*type != real_type) {
				325	ERROR("'%s' type mismatch (is %u, expected %u)\n",
				326	mdata.h.filename, real_type, *type);
				327	return NULL;
				328	}
Julius Werner	d17ce41	2020-10-01 18:25:49 -0700	[diff] [blame]	329	}
Julius Werner	f975e55	2016-08-19 15:43:06 -0700	[diff] [blame]	330
Julius Werner	7778cf2	2021-01-05 18:54:19 -0800	[diff] [blame]	331	size_t size = region_device_sz(&rdev);
				332	uint32_t compression = CBFS_COMPRESS_NONE;
				333	const struct cbfs_file_attr_compression *cattr = cbfs_find_attr(&mdata,
				334	CBFS_FILE_ATTR_TAG_COMPRESSION, sizeof(*cattr));
				335	if (cattr) {
				336	compression = be32toh(cattr->compression);
				337	size = be32toh(cattr->decompressed_size);
				338	}
				339
				340	if (size_out)
				341	*size_out = size;
				342
Julius Werner	fccf122	2021-04-02 15:58:05 -0700	[diff] [blame]	343	const struct vb2_hash *file_hash = NULL;
				344	if (CONFIG(CBFS_VERIFICATION))
				345	file_hash = cbfs_file_hash(&mdata);
				346
Julius Werner	7778cf2	2021-01-05 18:54:19 -0800	[diff] [blame]	347	/* allocator == NULL means do a cbfs_map() */
				348	if (allocator) {
				349	loc = allocator(arg, size, &mdata);
				350	} else if (compression == CBFS_COMPRESS_NONE) {
Julius Werner	fccf122	2021-04-02 15:58:05 -0700	[diff] [blame]	351	void *mapping = rdev_mmap_full(&rdev);
				352	if (!mapping \|\| cbfs_file_hash_mismatch(mapping, size, file_hash))
				353	return NULL;
				354	return mapping;
Julius Werner	7778cf2	2021-01-05 18:54:19 -0800	[diff] [blame]	355	} else if (!CBFS_CACHE_AVAILABLE) {
				356	ERROR("Cannot map compressed file %s on x86\n", mdata.h.filename);
				357	return NULL;
				358	} else {
				359	loc = mem_pool_alloc(&cbfs_cache, size);
				360	}
				361
				362	if (!loc) {
				363	ERROR("'%s' allocation failure\n", mdata.h.filename);
				364	return NULL;
				365	}
				366
Julius Werner	fccf122	2021-04-02 15:58:05 -0700	[diff] [blame]	367	size = cbfs_load_and_decompress(&rdev, loc, size, compression, file_hash);
Julius Werner	7778cf2	2021-01-05 18:54:19 -0800	[diff] [blame]	368	if (!size)
				369	return NULL;
				370
				371	return loc;
				372	}
				373
Julius Werner	4676ec5	2021-03-10 16:52:14 -0800	[diff] [blame]	374	void _cbfs_default_allocator(void arg, size_t size, const union cbfs_mdata *unused)
Julius Werner	7778cf2	2021-01-05 18:54:19 -0800	[diff] [blame]	375	{
				376	struct _cbfs_default_allocator_arg *darg = arg;
				377	if (size > darg->buf_size)
				378	return NULL;
				379	return darg->buf;
				380	}
				381
Julius Werner	4676ec5	2021-03-10 16:52:14 -0800	[diff] [blame]	382	void _cbfs_cbmem_allocator(void arg, size_t size, const union cbfs_mdata *unused)
Julius Werner	7778cf2	2021-01-05 18:54:19 -0800	[diff] [blame]	383	{
				384	return cbmem_add((uintptr_t)arg, size);
Julius Werner	f975e55	2016-08-19 15:43:06 -0700	[diff] [blame]	385	}
				386
Julius Werner	1de8708	2020-12-23 17:38:11 -0800	[diff] [blame]	387	cb_err_t cbfs_prog_stage_load(struct prog *pstage)
Aaron Durbin	899d13d	2015-05-15 23:39:23 -0500	[diff] [blame]	388	{
Julius Werner	1de8708	2020-12-23 17:38:11 -0800	[diff] [blame]	389	union cbfs_mdata mdata;
				390	struct region_device rdev;
Julius Werner	1de8708	2020-12-23 17:38:11 -0800	[diff] [blame]	391	cb_err_t err;
Hung-Te Lin	6fe0cab	2013-01-22 18:57:56 +0800	[diff] [blame]	392
Julius Werner	1de8708	2020-12-23 17:38:11 -0800	[diff] [blame]	393	prog_locate_hook(pstage);
Aaron Durbin	899d13d	2015-05-15 23:39:23 -0500	[diff] [blame]	394
Julius Werner	1de8708	2020-12-23 17:38:11 -0800	[diff] [blame]	395	if ((err = cbfs_boot_lookup(prog_name(pstage), false, &mdata, &rdev)))
				396	return err;
				397
				398	assert(be32toh(mdata.h.type) == CBFS_TYPE_STAGE);
				399	pstage->cbfs_type = CBFS_TYPE_STAGE;
				400
Julius Werner	81dc20e	2020-10-15 17:37:57 -0700	[diff] [blame]	401	enum cbfs_compression compression = CBFS_COMPRESS_NONE;
				402	const struct cbfs_file_attr_compression *cattr = cbfs_find_attr(&mdata,
				403	CBFS_FILE_ATTR_TAG_COMPRESSION, sizeof(*cattr));
				404	if (cattr)
				405	compression = be32toh(cattr->compression);
Julius Werner	1de8708	2020-12-23 17:38:11 -0800	[diff] [blame]	406
Julius Werner	81dc20e	2020-10-15 17:37:57 -0700	[diff] [blame]	407	const struct cbfs_file_attr_stageheader *sattr = cbfs_find_attr(&mdata,
				408	CBFS_FILE_ATTR_TAG_STAGEHEADER, sizeof(*sattr));
				409	if (!sattr)
				410	return CB_ERR;
				411	prog_set_area(pstage, (void *)(uintptr_t)be64toh(sattr->loadaddr),
				412	be32toh(sattr->memlen));
				413	prog_set_entry(pstage, prog_start(pstage) +
				414	be32toh(sattr->entry_offset), NULL);
Aaron Durbin	899d13d	2015-05-15 23:39:23 -0500	[diff] [blame]	415
Julius Werner	fccf122	2021-04-02 15:58:05 -0700	[diff] [blame]	416	const struct vb2_hash *file_hash = NULL;
				417	if (CONFIG(CBFS_VERIFICATION))
				418	file_hash = cbfs_file_hash(&mdata);
				419
Aaron Durbin	ed253c8	2015-10-07 17:22:42 -0500	[diff] [blame]	420	/* Hacky way to not load programs over read only media. The stages
				421	* that would hit this path initialize themselves. */
Julius Werner	21a4053	2020-04-21 16:03:53 -0700	[diff] [blame]	422	if ((ENV_BOOTBLOCK \|\| ENV_SEPARATE_VERSTAGE) &&
				423	!CONFIG(NO_XIP_EARLY_STAGES) && CONFIG(BOOT_DEVICE_MEMORY_MAPPED)) {
Julius Werner	81dc20e	2020-10-15 17:37:57 -0700	[diff] [blame]	424	void *mapping = rdev_mmap_full(&rdev);
Julius Werner	1de8708	2020-12-23 17:38:11 -0800	[diff] [blame]	425	rdev_munmap(&rdev, mapping);
Julius Werner	fccf122	2021-04-02 15:58:05 -0700	[diff] [blame]	426	if (cbfs_file_hash_mismatch(mapping, region_device_sz(&rdev), file_hash))
				427	return CB_CBFS_HASH_MISMATCH;
Julius Werner	81dc20e	2020-10-15 17:37:57 -0700	[diff] [blame]	428	if (mapping == prog_start(pstage))
				429	return CB_SUCCESS;
Aaron Durbin	ed253c8	2015-10-07 17:22:42 -0500	[diff] [blame]	430	}
				431
Julius Werner	eca99af	2021-03-10 18:49:37 -0800	[diff] [blame]	432	/* LZ4 stages can be decompressed in-place to save mapping scratch space. Load the
				433	compressed data to the end of the buffer and point &rdev to that memory location. */
				434	if (cbfs_lz4_enabled() && compression == CBFS_COMPRESS_LZ4) {
				435	size_t in_size = region_device_sz(&rdev);
				436	void *compr_start = prog_start(pstage) + prog_size(pstage) - in_size;
				437	if (rdev_readat(&rdev, compr_start, 0, in_size) != in_size)
				438	return CB_ERR;
Julius Werner	c893197	2021-04-16 16:48:32 -0700	[diff] [blame^]	439	rdev_chain_mem(&rdev, compr_start, in_size);
Julius Werner	eca99af	2021-03-10 18:49:37 -0800	[diff] [blame]	440	}
				441
				442	size_t fsize = cbfs_load_and_decompress(&rdev, prog_start(pstage), prog_size(pstage),
Julius Werner	fccf122	2021-04-02 15:58:05 -0700	[diff] [blame]	443	compression, file_hash);
Julius Werner	09f2921	2015-09-29 13:51:35 -0700	[diff] [blame]	444	if (!fsize)
Julius Werner	1de8708	2020-12-23 17:38:11 -0800	[diff] [blame]	445	return CB_ERR;
Aaron Durbin	899d13d	2015-05-15 23:39:23 -0500	[diff] [blame]	446
				447	/* Clear area not covered by file. */
Julius Werner	81dc20e	2020-10-15 17:37:57 -0700	[diff] [blame]	448	memset(prog_start(pstage) + fsize, 0, prog_size(pstage) - fsize);
Aaron Durbin	899d13d	2015-05-15 23:39:23 -0500	[diff] [blame]	449
Julius Werner	81dc20e	2020-10-15 17:37:57 -0700	[diff] [blame]	450	prog_segment_loaded((uintptr_t)prog_start(pstage), prog_size(pstage),
				451	SEG_FINAL);
Aaron Durbin	899d13d	2015-05-15 23:39:23 -0500	[diff] [blame]	452
Julius Werner	1de8708	2020-12-23 17:38:11 -0800	[diff] [blame]	453	return CB_SUCCESS;
Hung-Te Lin	6fe0cab	2013-01-22 18:57:56 +0800	[diff] [blame]	454	}
Aaron Durbin	6d720f3	2015-12-08 17:00:23 -0600	[diff] [blame]	455
Julius Werner	1e37c9c	2019-12-11 17:09:39 -0800	[diff] [blame]	456	void cbfs_boot_device_find_mcache(struct cbfs_boot_device *cbd, uint32_t id)
Aaron Durbin	6d720f3	2015-12-08 17:00:23 -0600	[diff] [blame]	457	{
Julius Werner	1e37c9c	2019-12-11 17:09:39 -0800	[diff] [blame]	458	if (CONFIG(NO_CBFS_MCACHE) \|\| ENV_SMM)
				459	return;
				460
Julius Werner	34cf073	2020-12-08 14:21:43 -0800	[diff] [blame]	461	if (cbd->mcache_size)
				462	return;
				463
Julius Werner	1e37c9c	2019-12-11 17:09:39 -0800	[diff] [blame]	464	const struct cbmem_entry *entry;
				465	if (cbmem_possibly_online() &&
				466	(entry = cbmem_entry_find(id))) {
				467	cbd->mcache = cbmem_entry_start(entry);
				468	cbd->mcache_size = cbmem_entry_size(entry);
				469	} else if (ENV_ROMSTAGE_OR_BEFORE) {
				470	u8 boundary = _ecbfs_mcache - REGION_SIZE(cbfs_mcache)
				471	CONFIG_CBFS_MCACHE_RW_PERCENTAGE / 100;
Julius Werner	723e3b1	2020-12-29 17:33:30 -0800	[diff] [blame]	472	boundary = (u8 *)ALIGN_DOWN((uintptr_t)boundary, CBFS_MCACHE_ALIGNMENT);
Julius Werner	1e37c9c	2019-12-11 17:09:39 -0800	[diff] [blame]	473	if (id == CBMEM_ID_CBFS_RO_MCACHE) {
				474	cbd->mcache = _cbfs_mcache;
				475	cbd->mcache_size = boundary - _cbfs_mcache;
				476	} else if (id == CBMEM_ID_CBFS_RW_MCACHE) {
				477	cbd->mcache = boundary;
				478	cbd->mcache_size = _ecbfs_mcache - boundary;
				479	}
				480	}
Aaron Durbin	6d720f3	2015-12-08 17:00:23 -0600	[diff] [blame]	481	}
Julius Werner	1e37c9c	2019-12-11 17:09:39 -0800	[diff] [blame]	482
Julius Werner	fdabf3f	2020-05-06 17:06:35 -0700	[diff] [blame]	483	cb_err_t cbfs_init_boot_device(const struct cbfs_boot_device *cbd,
Julius Werner	723e3b1	2020-12-29 17:33:30 -0800	[diff] [blame]	484	struct vb2_hash *mdata_hash)
Julius Werner	fdabf3f	2020-05-06 17:06:35 -0700	[diff] [blame]	485	{
				486	/* If we have an mcache, mcache_build() will also check mdata hash. */
				487	if (!CONFIG(NO_CBFS_MCACHE) && !ENV_SMM && cbd->mcache_size > 0)
Julius Werner	723e3b1	2020-12-29 17:33:30 -0800	[diff] [blame]	488	return cbfs_mcache_build(&cbd->rdev, cbd->mcache, cbd->mcache_size, mdata_hash);
Julius Werner	fdabf3f	2020-05-06 17:06:35 -0700	[diff] [blame]	489
				490	/* No mcache and no verification means we have nothing special to do. */
Julius Werner	723e3b1	2020-12-29 17:33:30 -0800	[diff] [blame]	491	if (!CONFIG(CBFS_VERIFICATION) \|\| !mdata_hash)
Julius Werner	fdabf3f	2020-05-06 17:06:35 -0700	[diff] [blame]	492	return CB_SUCCESS;
				493
Julius Werner	723e3b1	2020-12-29 17:33:30 -0800	[diff] [blame]	494	/* Verification only: use cbfs_walk() without a walker() function to just run through
				495	the CBFS once, will return NOT_FOUND by default. */
				496	cb_err_t err = cbfs_walk(&cbd->rdev, NULL, NULL, mdata_hash, 0);
Julius Werner	fdabf3f	2020-05-06 17:06:35 -0700	[diff] [blame]	497	if (err == CB_CBFS_NOT_FOUND)
				498	err = CB_SUCCESS;
				499	return err;
				500	}
				501
Julius Werner	1e37c9c	2019-12-11 17:09:39 -0800	[diff] [blame]	502	const struct cbfs_boot_device *cbfs_get_boot_device(bool force_ro)
				503	{
				504	static struct cbfs_boot_device ro;
				505
Julius Werner	723e3b1	2020-12-29 17:33:30 -0800	[diff] [blame]	506	/* Ensure we always init RO mcache, even if the first file is from the RW CBFS.
Julius Werner	1e37c9c	2019-12-11 17:09:39 -0800	[diff] [blame]	507	Otherwise it may not be available when needed in later stages. */
				508	if (ENV_INITIAL_STAGE && !force_ro && !region_device_sz(&ro.rdev))
				509	cbfs_get_boot_device(true);
				510
				511	if (!force_ro) {
				512	const struct cbfs_boot_device *rw = vboot_get_cbfs_boot_device();
Julius Werner	723e3b1	2020-12-29 17:33:30 -0800	[diff] [blame]	513	/* This will return NULL if vboot isn't enabled, didn't run yet or decided to
				514	boot into recovery mode. */
Julius Werner	1e37c9c	2019-12-11 17:09:39 -0800	[diff] [blame]	515	if (rw)
				516	return rw;
				517	}
				518
Julius Werner	723e3b1	2020-12-29 17:33:30 -0800	[diff] [blame]	519	/* In rare cases post-RAM stages may run this before cbmem_initialize(), so we can't
				520	lock in the result of find_mcache() on the first try and should keep trying every
				521	time until an mcache is found. */
Julius Werner	34cf073	2020-12-08 14:21:43 -0800	[diff] [blame]	522	cbfs_boot_device_find_mcache(&ro, CBMEM_ID_CBFS_RO_MCACHE);
				523
Julius Werner	1e37c9c	2019-12-11 17:09:39 -0800	[diff] [blame]	524	if (region_device_sz(&ro.rdev))
				525	return &ro;
				526
				527	if (fmap_locate_area_as_rdev("COREBOOT", &ro.rdev))
Julius Werner	fdabf3f	2020-05-06 17:06:35 -0700	[diff] [blame]	528	die("Cannot locate primary CBFS");
Julius Werner	1e37c9c	2019-12-11 17:09:39 -0800	[diff] [blame]	529
Julius Werner	fdabf3f	2020-05-06 17:06:35 -0700	[diff] [blame]	530	if (ENV_INITIAL_STAGE) {
				531	cb_err_t err = cbfs_init_boot_device(&ro, metadata_hash_get());
				532	if (err == CB_CBFS_HASH_MISMATCH)
				533	die("RO CBFS metadata hash verification failure");
				534	else if (CONFIG(TOCTOU_SAFETY) && err == CB_CBFS_CACHE_FULL)
				535	die("RO mcache overflow breaks TOCTOU safety!\n");
				536	else if (err && err != CB_CBFS_CACHE_FULL)
				537	die("RO CBFS initialization error: %d", err);
Julius Werner	1e37c9c	2019-12-11 17:09:39 -0800	[diff] [blame]	538	}
				539
				540	return &ro;
				541	}
				542
				543	#if !CONFIG(NO_CBFS_MCACHE)
				544	static void mcache_to_cbmem(const struct cbfs_boot_device *cbd, u32 cbmem_id)
				545	{
				546	if (!cbd)
				547	return;
				548
				549	size_t real_size = cbfs_mcache_real_size(cbd->mcache, cbd->mcache_size);
				550	void *cbmem_mcache = cbmem_add(cbmem_id, real_size);
				551	if (!cbmem_mcache) {
				552	printk(BIOS_ERR, "ERROR: Cannot allocate CBMEM mcache %#x (%#zx bytes)!\n",
				553	cbmem_id, real_size);
				554	return;
				555	}
				556	memcpy(cbmem_mcache, cbd->mcache, real_size);
				557	}
				558
				559	static void cbfs_mcache_migrate(int unused)
				560	{
				561	mcache_to_cbmem(vboot_get_cbfs_boot_device(), CBMEM_ID_CBFS_RW_MCACHE);
				562	mcache_to_cbmem(cbfs_get_boot_device(true), CBMEM_ID_CBFS_RO_MCACHE);
				563	}
				564	ROMSTAGE_CBMEM_INIT_HOOK(cbfs_mcache_migrate)
				565	#endif