fdt_boot.c revision 1.2
1 1.2 rin /* $NetBSD: fdt_boot.c,v 1.2 2023/07/10 07:00:12 rin Exp $ */ 2 1.1 skrll 3 1.1 skrll /*- 4 1.1 skrll * Copyright (c) 2015-2017 Jared McNeill <jmcneill (at) invisible.ca> 5 1.1 skrll * All rights reserved. 6 1.1 skrll * 7 1.1 skrll * Redistribution and use in source and binary forms, with or without 8 1.1 skrll * modification, are permitted provided that the following conditions 9 1.1 skrll * are met: 10 1.1 skrll * 1. Redistributions of source code must retain the above copyright 11 1.1 skrll * notice, this list of conditions and the following disclaimer. 12 1.1 skrll * 2. Redistributions in binary form must reproduce the above copyright 13 1.1 skrll * notice, this list of conditions and the following disclaimer in the 14 1.1 skrll * documentation and/or other materials provided with the distribution. 15 1.1 skrll * 16 1.1 skrll * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR 17 1.1 skrll * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES 18 1.1 skrll * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. 19 1.1 skrll * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, 20 1.1 skrll * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, 21 1.1 skrll * BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; 22 1.1 skrll * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED 23 1.1 skrll * AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, 24 1.1 skrll * OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 25 1.1 skrll * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 26 1.1 skrll * SUCH DAMAGE. 27 1.1 skrll */ 28 1.1 skrll 29 1.1 skrll /*- 30 1.1 skrll * Copyright (c) 2022 The NetBSD Foundation, Inc. 31 1.1 skrll * All rights reserved. 32 1.1 skrll * 33 1.1 skrll * This code is derived from software contributed to The NetBSD Foundation 34 1.1 skrll * by Nick Hudson 35 1.1 skrll * 36 1.1 skrll * Redistribution and use in source and binary forms, with or without 37 1.1 skrll * modification, are permitted provided that the following conditions 38 1.1 skrll * are met: 39 1.1 skrll * 1. Redistributions of source code must retain the above copyright 40 1.1 skrll * notice, this list of conditions and the following disclaimer. 41 1.1 skrll * 2. Redistributions in binary form must reproduce the above copyright 42 1.1 skrll * notice, this list of conditions and the following disclaimer in the 43 1.1 skrll * documentation and/or other materials provided with the distribution. 44 1.1 skrll * 45 1.1 skrll * THIS SOFTWARE IS PROVIDED BY THE NETBSD FOUNDATION, INC. AND CONTRIBUTORS 46 1.1 skrll * ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED 47 1.1 skrll * TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR 48 1.1 skrll * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE FOUNDATION OR CONTRIBUTORS 49 1.1 skrll * BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR 50 1.1 skrll * CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF 51 1.1 skrll * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS 52 1.1 skrll * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN 53 1.1 skrll * CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) 54 1.1 skrll * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE 55 1.1 skrll * POSSIBILITY OF SUCH DAMAGE. 56 1.1 skrll */ 57 1.1 skrll 58 1.1 skrll #include <sys/cdefs.h> 59 1.2 rin __KERNEL_RCSID(0, "$NetBSD: fdt_boot.c,v 1.2 2023/07/10 07:00:12 rin Exp $"); 60 1.2 rin 61 1.2 rin #include "opt_efi.h" 62 1.2 rin #include "opt_md.h" 63 1.1 skrll 64 1.1 skrll #include <sys/param.h> 65 1.1 skrll 66 1.2 rin #include <sys/disk.h> 67 1.2 rin #include <sys/disklabel.h> 68 1.2 rin #include <sys/fcntl.h> 69 1.2 rin #include <sys/md5.h> 70 1.1 skrll #include <sys/optstr.h> 71 1.2 rin #include <sys/rnd.h> 72 1.2 rin #include <sys/rndsource.h> 73 1.2 rin #include <sys/uuid.h> 74 1.2 rin #include <sys/vnode.h> 75 1.2 rin 76 1.2 rin #include <net/if.h> 77 1.2 rin #include <net/if_dl.h> 78 1.2 rin 79 1.2 rin #include <uvm/uvm_extern.h> 80 1.1 skrll 81 1.1 skrll #include <libfdt.h> 82 1.1 skrll 83 1.1 skrll #include <dev/fdt/fdtvar.h> 84 1.1 skrll #include <dev/fdt/fdt_boot.h> 85 1.2 rin #if 0 86 1.2 rin #include <dev/fdt/fdt_ddb.h> 87 1.2 rin #endif 88 1.2 rin #include <dev/fdt/fdt_memory.h> 89 1.2 rin 90 1.2 rin #ifdef EFI_RUNTIME 91 1.2 rin #include <machine/efirt.h> 92 1.2 rin 93 1.2 rin void fdt_map_efi_runtime(const char *, enum cpu_efirt_mem_type); 94 1.2 rin 95 1.2 rin #endif 96 1.2 rin 97 1.2 rin #ifdef MEMORY_DISK_DYNAMIC 98 1.2 rin #include <dev/md.h> 99 1.2 rin 100 1.2 rin static uint64_t initrd_start, initrd_end; 101 1.2 rin #endif 102 1.2 rin 103 1.2 rin static uint64_t rndseed_start, rndseed_end; /* our on-disk seed */ 104 1.2 rin static uint64_t efirng_start, efirng_end; /* firmware's EFI RNG output */ 105 1.2 rin static struct krndsource efirng_source; 106 1.2 rin 107 1.2 rin 108 1.2 rin static void 109 1.2 rin fdt_probe_range(const char *startname, const char *endname, 110 1.2 rin uint64_t *pstart, uint64_t *pend) 111 1.2 rin { 112 1.2 rin int chosen, len; 113 1.2 rin const void *start_data, *end_data; 114 1.2 rin 115 1.2 rin *pstart = *pend = 0; 116 1.2 rin 117 1.2 rin chosen = OF_finddevice("/chosen"); 118 1.2 rin if (chosen < 0) 119 1.2 rin return; 120 1.2 rin 121 1.2 rin start_data = fdtbus_get_prop(chosen, startname, &len); 122 1.2 rin end_data = fdtbus_get_prop(chosen, endname, NULL); 123 1.2 rin if (start_data == NULL || end_data == NULL) 124 1.2 rin return; 125 1.2 rin 126 1.2 rin switch (len) { 127 1.2 rin case 4: 128 1.2 rin *pstart = be32dec(start_data); 129 1.2 rin *pend = be32dec(end_data); 130 1.2 rin break; 131 1.2 rin case 8: 132 1.2 rin *pstart = be64dec(start_data); 133 1.2 rin *pend = be64dec(end_data); 134 1.2 rin break; 135 1.2 rin default: 136 1.2 rin printf("Unsupported len %d for /chosen `%s'\n", 137 1.2 rin len, startname); 138 1.2 rin return; 139 1.2 rin } 140 1.2 rin } 141 1.2 rin 142 1.2 rin 143 1.2 rin static void * 144 1.2 rin fdt_map_range(uint64_t start, uint64_t end, uint64_t *psize, 145 1.2 rin const char *purpose) 146 1.2 rin { 147 1.2 rin const paddr_t startpa = trunc_page(start); 148 1.2 rin const paddr_t endpa = round_page(end); 149 1.2 rin paddr_t pa; 150 1.2 rin vaddr_t va; 151 1.2 rin void *ptr; 152 1.2 rin 153 1.2 rin *psize = end - start; 154 1.2 rin if (*psize == 0) 155 1.2 rin return NULL; 156 1.2 rin 157 1.2 rin const vaddr_t voff = start & PAGE_MASK; 158 1.2 rin 159 1.2 rin // XXX NH add an align so map_chunk works betterer? 160 1.2 rin va = uvm_km_alloc(kernel_map, *psize, 0, UVM_KMF_VAONLY | UVM_KMF_NOWAIT); 161 1.2 rin if (va == 0) { 162 1.2 rin printf("Failed to allocate VA for %s\n", purpose); 163 1.2 rin return NULL; 164 1.2 rin } 165 1.2 rin ptr = (void *)(va + voff); 166 1.2 rin 167 1.2 rin // XXX NH map chunk 168 1.2 rin for (pa = startpa; pa < endpa; pa += PAGE_SIZE, va += PAGE_SIZE) 169 1.2 rin pmap_kenter_pa(va, pa, VM_PROT_READ | VM_PROT_WRITE, 0); 170 1.2 rin pmap_update(pmap_kernel()); 171 1.2 rin 172 1.2 rin return ptr; 173 1.2 rin } 174 1.2 rin 175 1.2 rin static void 176 1.2 rin fdt_unmap_range(void *ptr, uint64_t size) 177 1.2 rin { 178 1.2 rin const char *start = ptr, *end = start + size; 179 1.2 rin const vaddr_t startva = trunc_page((vaddr_t)(uintptr_t)start); 180 1.2 rin const vaddr_t endva = round_page((vaddr_t)(uintptr_t)end); 181 1.2 rin const vsize_t sz = endva - startva; 182 1.2 rin 183 1.2 rin pmap_kremove(startva, sz); 184 1.2 rin pmap_update(pmap_kernel()); 185 1.2 rin 186 1.2 rin uvm_km_free(kernel_map, startva, sz, UVM_KMF_VAONLY); 187 1.2 rin } 188 1.2 rin 189 1.2 rin void 190 1.2 rin fdt_probe_initrd(void) 191 1.2 rin { 192 1.2 rin 193 1.2 rin #ifdef MEMORY_DISK_DYNAMIC 194 1.2 rin fdt_probe_range("linux,initrd-start", "linux,initrd-end", 195 1.2 rin &initrd_start, &initrd_end); 196 1.2 rin #endif 197 1.2 rin } 198 1.2 rin 199 1.2 rin void 200 1.2 rin fdt_setup_initrd(void) 201 1.2 rin { 202 1.2 rin #ifdef MEMORY_DISK_DYNAMIC 203 1.2 rin void *md_start; 204 1.2 rin uint64_t initrd_size; 205 1.2 rin 206 1.2 rin md_start = fdt_map_range(initrd_start, initrd_end, &initrd_size, 207 1.2 rin "initrd"); 208 1.2 rin if (md_start == NULL) 209 1.2 rin return; 210 1.2 rin md_root_setconf(md_start, initrd_size); 211 1.2 rin #endif 212 1.2 rin } 213 1.2 rin 214 1.2 rin void 215 1.2 rin fdt_reserve_initrd(void) 216 1.2 rin { 217 1.2 rin #ifdef MEMORY_DISK_DYNAMIC 218 1.2 rin const uint64_t initrd_size = 219 1.2 rin round_page(initrd_end) - trunc_page(initrd_start); 220 1.2 rin 221 1.2 rin if (initrd_size > 0) 222 1.2 rin fdt_memory_remove_range(trunc_page(initrd_start), initrd_size); 223 1.2 rin #endif 224 1.2 rin } 225 1.2 rin 226 1.2 rin void 227 1.2 rin fdt_probe_rndseed(void) 228 1.2 rin { 229 1.2 rin 230 1.2 rin fdt_probe_range("netbsd,rndseed-start", "netbsd,rndseed-end", 231 1.2 rin &rndseed_start, &rndseed_end); 232 1.2 rin } 233 1.2 rin 234 1.2 rin void 235 1.2 rin fdt_setup_rndseed(void) 236 1.2 rin { 237 1.2 rin uint64_t rndseed_size; 238 1.2 rin void *rndseed; 239 1.2 rin 240 1.2 rin rndseed = fdt_map_range(rndseed_start, rndseed_end, &rndseed_size, 241 1.2 rin "rndseed"); 242 1.2 rin if (rndseed == NULL) 243 1.2 rin return; 244 1.2 rin rnd_seed(rndseed, rndseed_size); 245 1.2 rin fdt_unmap_range(rndseed, rndseed_size); 246 1.2 rin } 247 1.2 rin 248 1.2 rin void 249 1.2 rin fdt_reserve_rndseed(void) 250 1.2 rin { 251 1.2 rin const uint64_t rndseed_size = 252 1.2 rin round_page(rndseed_end) - trunc_page(rndseed_start); 253 1.2 rin 254 1.2 rin if (rndseed_size > 0) 255 1.2 rin fdt_memory_remove_range(trunc_page(rndseed_start), 256 1.2 rin rndseed_size); 257 1.2 rin } 258 1.2 rin 259 1.2 rin void 260 1.2 rin fdt_probe_efirng(void) 261 1.2 rin { 262 1.2 rin 263 1.2 rin fdt_probe_range("netbsd,efirng-start", "netbsd,efirng-end", 264 1.2 rin &efirng_start, &efirng_end); 265 1.2 rin } 266 1.2 rin 267 1.2 rin void 268 1.2 rin fdt_setup_efirng(void) 269 1.2 rin { 270 1.2 rin uint64_t efirng_size; 271 1.2 rin void *efirng; 272 1.2 rin 273 1.2 rin efirng = fdt_map_range(efirng_start, efirng_end, &efirng_size, 274 1.2 rin "efirng"); 275 1.2 rin if (efirng == NULL) 276 1.2 rin return; 277 1.2 rin 278 1.2 rin rnd_attach_source(&efirng_source, "efirng", RND_TYPE_RNG, 279 1.2 rin RND_FLAG_DEFAULT); 280 1.2 rin 281 1.2 rin /* 282 1.2 rin * We don't really have specific information about the physical 283 1.2 rin * process underlying the data provided by the firmware via the 284 1.2 rin * EFI RNG API, so the entropy estimate here is heuristic. 285 1.2 rin * What efiboot provides us is up to 4096 bytes of data from 286 1.2 rin * the EFI RNG API, although in principle it may return short. 287 1.2 rin * 288 1.2 rin * The UEFI Specification (2.8 Errata A, February 2020[1]) says 289 1.2 rin * 290 1.2 rin * When a Deterministic Random Bit Generator (DRBG) is 291 1.2 rin * used on the output of a (raw) entropy source, its 292 1.2 rin * security level must be at least 256 bits. 293 1.2 rin * 294 1.2 rin * It's not entirely clear whether `it' refers to the DRBG or 295 1.2 rin * the entropy source; if it refers to the DRBG, it's not 296 1.2 rin * entirely clear how ANSI X9.31 3DES, one of the options for 297 1.2 rin * DRBG in the UEFI spec, can provide a `256-bit security 298 1.2 rin * level' because it has only 232 bits of inputs (three 56-bit 299 1.2 rin * keys and one 64-bit block). That said, even if it provides 300 1.2 rin * only 232 bits of entropy, that's enough to prevent all 301 1.2 rin * attacks and we probably get a few more bits from sampling 302 1.2 rin * the clock anyway. 303 1.2 rin * 304 1.2 rin * In the event we get raw samples, e.g. the bits sampled by a 305 1.2 rin * ring oscillator, we hope that the samples have at least half 306 1.2 rin * a bit of entropy per bit of data -- and efiboot tries to 307 1.2 rin * draw 4096 bytes to provide plenty of slop. Hence we divide 308 1.2 rin * the total number of bits by two and clamp at 256. There are 309 1.2 rin * ways this could go wrong, but on most machines it should 310 1.2 rin * behave reasonably. 311 1.2 rin * 312 1.2 rin * [1] https://uefi.org/sites/default/files/resources/UEFI_Spec_2_8_A_Feb14.pdf 313 1.2 rin */ 314 1.2 rin rnd_add_data(&efirng_source, efirng, efirng_size, 315 1.2 rin MIN(256, efirng_size*NBBY/2)); 316 1.2 rin 317 1.2 rin explicit_memset(efirng, 0, efirng_size); 318 1.2 rin fdt_unmap_range(efirng, efirng_size); 319 1.2 rin } 320 1.2 rin 321 1.2 rin void 322 1.2 rin fdt_reserve_efirng(void) 323 1.2 rin { 324 1.2 rin const uint64_t efirng_size = 325 1.2 rin round_page(efirng_end) - trunc_page(efirng_start); 326 1.2 rin 327 1.2 rin if (efirng_size > 0) 328 1.2 rin fdt_memory_remove_range(trunc_page(efirng_start), efirng_size); 329 1.2 rin } 330 1.2 rin 331 1.2 rin #ifdef EFI_RUNTIME 332 1.2 rin void 333 1.2 rin fdt_map_efi_runtime(const char *prop, enum cpu_efirt_mem_type type) 334 1.2 rin { 335 1.2 rin int len; 336 1.2 rin 337 1.2 rin const int chosen_off = fdt_path_offset(fdtbus_get_data(), "/chosen"); 338 1.2 rin if (chosen_off < 0) 339 1.2 rin return; 340 1.2 rin 341 1.2 rin const uint64_t *map = fdt_getprop(fdtbus_get_data(), chosen_off, prop, &len); 342 1.2 rin if (map == NULL) 343 1.2 rin return; 344 1.2 rin 345 1.2 rin while (len >= 24) { 346 1.2 rin const paddr_t pa = be64toh(map[0]); 347 1.2 rin const vaddr_t va = be64toh(map[1]); 348 1.2 rin const size_t sz = be64toh(map[2]); 349 1.2 rin #if 0 350 1.2 rin VPRINTF("%s: %s %#" PRIxPADDR "-%#" PRIxVADDR " (%#" PRIxVADDR 351 1.2 rin "-%#" PRIxVSIZE ")\n", __func__, prop, pa, pa + sz - 1, 352 1.2 rin va, va + sz - 1); 353 1.2 rin #endif 354 1.2 rin cpu_efirt_map_range(va, pa, sz, type); 355 1.2 rin map += 3; 356 1.2 rin len -= 24; 357 1.2 rin } 358 1.2 rin } 359 1.2 rin #endif 360 1.1 skrll 361 1.1 skrll void 362 1.1 skrll fdt_update_stdout_path(void *fdt, const char *boot_args) 363 1.1 skrll { 364 1.1 skrll const char *stdout_path; 365 1.1 skrll char buf[256]; 366 1.1 skrll 367 1.1 skrll const int chosen_off = fdt_path_offset(fdt, "/chosen"); 368 1.1 skrll if (chosen_off == -1) 369 1.1 skrll return; 370 1.1 skrll 371 1.1 skrll if (optstr_get_string(boot_args, "stdout-path", &stdout_path) == false) 372 1.1 skrll return; 373 1.1 skrll 374 1.1 skrll const char *ep = strchr(stdout_path, ' '); 375 1.1 skrll size_t stdout_path_len = ep ? (ep - stdout_path) : strlen(stdout_path); 376 1.1 skrll if (stdout_path_len >= sizeof(buf)) 377 1.1 skrll return; 378 1.1 skrll 379 1.1 skrll strncpy(buf, stdout_path, stdout_path_len); 380 1.1 skrll buf[stdout_path_len] = '\0'; 381 1.1 skrll fdt_setprop(fdt, chosen_off, "stdout-path", 382 1.1 skrll buf, stdout_path_len + 1); 383 1.1 skrll } 384
Indexes created Mon Sep 22 10:09:38 GMT 2025