fdt_boot.c revision 1.3
1 1.3 rin /* $NetBSD: fdt_boot.c,v 1.3 2023/07/10 07:01:48 rin Exp $ */ 2 1.1 skrll 3 1.1 skrll /*- 4 1.1 skrll * Copyright (c) 2015-2017 Jared McNeill <jmcneill (at) invisible.ca> 5 1.1 skrll * All rights reserved. 6 1.1 skrll * 7 1.1 skrll * Redistribution and use in source and binary forms, with or without 8 1.1 skrll * modification, are permitted provided that the following conditions 9 1.1 skrll * are met: 10 1.1 skrll * 1. Redistributions of source code must retain the above copyright 11 1.1 skrll * notice, this list of conditions and the following disclaimer. 12 1.1 skrll * 2. Redistributions in binary form must reproduce the above copyright 13 1.1 skrll * notice, this list of conditions and the following disclaimer in the 14 1.1 skrll * documentation and/or other materials provided with the distribution. 15 1.1 skrll * 16 1.1 skrll * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR 17 1.1 skrll * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES 18 1.1 skrll * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. 19 1.1 skrll * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, 20 1.1 skrll * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, 21 1.1 skrll * BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; 22 1.1 skrll * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED 23 1.1 skrll * AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, 24 1.1 skrll * OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 25 1.1 skrll * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 26 1.1 skrll * SUCH DAMAGE. 27 1.1 skrll */ 28 1.1 skrll 29 1.1 skrll /*- 30 1.1 skrll * Copyright (c) 2022 The NetBSD Foundation, Inc. 31 1.1 skrll * All rights reserved. 32 1.1 skrll * 33 1.1 skrll * This code is derived from software contributed to The NetBSD Foundation 34 1.1 skrll * by Nick Hudson 35 1.1 skrll * 36 1.1 skrll * Redistribution and use in source and binary forms, with or without 37 1.1 skrll * modification, are permitted provided that the following conditions 38 1.1 skrll * are met: 39 1.1 skrll * 1. Redistributions of source code must retain the above copyright 40 1.1 skrll * notice, this list of conditions and the following disclaimer. 41 1.1 skrll * 2. Redistributions in binary form must reproduce the above copyright 42 1.1 skrll * notice, this list of conditions and the following disclaimer in the 43 1.1 skrll * documentation and/or other materials provided with the distribution. 44 1.1 skrll * 45 1.1 skrll * THIS SOFTWARE IS PROVIDED BY THE NETBSD FOUNDATION, INC. AND CONTRIBUTORS 46 1.1 skrll * ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED 47 1.1 skrll * TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR 48 1.1 skrll * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE FOUNDATION OR CONTRIBUTORS 49 1.1 skrll * BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR 50 1.1 skrll * CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF 51 1.1 skrll * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS 52 1.1 skrll * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN 53 1.1 skrll * CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) 54 1.1 skrll * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE 55 1.1 skrll * POSSIBILITY OF SUCH DAMAGE. 56 1.1 skrll */ 57 1.1 skrll 58 1.1 skrll #include <sys/cdefs.h> 59 1.3 rin __KERNEL_RCSID(0, "$NetBSD: fdt_boot.c,v 1.3 2023/07/10 07:01:48 rin Exp $"); 60 1.2 rin 61 1.2 rin #include "opt_efi.h" 62 1.2 rin #include "opt_md.h" 63 1.1 skrll 64 1.1 skrll #include <sys/param.h> 65 1.1 skrll 66 1.2 rin #include <sys/disk.h> 67 1.2 rin #include <sys/disklabel.h> 68 1.2 rin #include <sys/fcntl.h> 69 1.2 rin #include <sys/md5.h> 70 1.1 skrll #include <sys/optstr.h> 71 1.2 rin #include <sys/rnd.h> 72 1.2 rin #include <sys/rndsource.h> 73 1.2 rin #include <sys/uuid.h> 74 1.2 rin #include <sys/vnode.h> 75 1.2 rin 76 1.2 rin #include <net/if.h> 77 1.2 rin #include <net/if_dl.h> 78 1.2 rin 79 1.2 rin #include <uvm/uvm_extern.h> 80 1.1 skrll 81 1.1 skrll #include <libfdt.h> 82 1.1 skrll 83 1.1 skrll #include <dev/fdt/fdtvar.h> 84 1.1 skrll #include <dev/fdt/fdt_boot.h> 85 1.2 rin #if 0 86 1.2 rin #include <dev/fdt/fdt_ddb.h> 87 1.2 rin #endif 88 1.2 rin #include <dev/fdt/fdt_memory.h> 89 1.2 rin 90 1.3 rin #ifndef FDT_MAX_BOOT_STRING 91 1.3 rin #define FDT_MAX_BOOT_STRING 1024 92 1.3 rin #endif 93 1.3 rin static char bootargs[FDT_MAX_BOOT_STRING] = ""; 94 1.3 rin 95 1.2 rin #ifdef EFI_RUNTIME 96 1.2 rin #include <machine/efirt.h> 97 1.2 rin 98 1.2 rin void fdt_map_efi_runtime(const char *, enum cpu_efirt_mem_type); 99 1.2 rin 100 1.2 rin #endif 101 1.2 rin 102 1.2 rin #ifdef MEMORY_DISK_DYNAMIC 103 1.2 rin #include <dev/md.h> 104 1.2 rin 105 1.2 rin static uint64_t initrd_start, initrd_end; 106 1.2 rin #endif 107 1.2 rin 108 1.2 rin static uint64_t rndseed_start, rndseed_end; /* our on-disk seed */ 109 1.2 rin static uint64_t efirng_start, efirng_end; /* firmware's EFI RNG output */ 110 1.2 rin static struct krndsource efirng_source; 111 1.2 rin 112 1.2 rin 113 1.2 rin static void 114 1.2 rin fdt_probe_range(const char *startname, const char *endname, 115 1.2 rin uint64_t *pstart, uint64_t *pend) 116 1.2 rin { 117 1.2 rin int chosen, len; 118 1.2 rin const void *start_data, *end_data; 119 1.2 rin 120 1.2 rin *pstart = *pend = 0; 121 1.2 rin 122 1.2 rin chosen = OF_finddevice("/chosen"); 123 1.2 rin if (chosen < 0) 124 1.2 rin return; 125 1.2 rin 126 1.2 rin start_data = fdtbus_get_prop(chosen, startname, &len); 127 1.2 rin end_data = fdtbus_get_prop(chosen, endname, NULL); 128 1.2 rin if (start_data == NULL || end_data == NULL) 129 1.2 rin return; 130 1.2 rin 131 1.2 rin switch (len) { 132 1.2 rin case 4: 133 1.2 rin *pstart = be32dec(start_data); 134 1.2 rin *pend = be32dec(end_data); 135 1.2 rin break; 136 1.2 rin case 8: 137 1.2 rin *pstart = be64dec(start_data); 138 1.2 rin *pend = be64dec(end_data); 139 1.2 rin break; 140 1.2 rin default: 141 1.2 rin printf("Unsupported len %d for /chosen `%s'\n", 142 1.2 rin len, startname); 143 1.2 rin return; 144 1.2 rin } 145 1.2 rin } 146 1.2 rin 147 1.2 rin 148 1.2 rin static void * 149 1.2 rin fdt_map_range(uint64_t start, uint64_t end, uint64_t *psize, 150 1.2 rin const char *purpose) 151 1.2 rin { 152 1.2 rin const paddr_t startpa = trunc_page(start); 153 1.2 rin const paddr_t endpa = round_page(end); 154 1.2 rin paddr_t pa; 155 1.2 rin vaddr_t va; 156 1.2 rin void *ptr; 157 1.2 rin 158 1.2 rin *psize = end - start; 159 1.2 rin if (*psize == 0) 160 1.2 rin return NULL; 161 1.2 rin 162 1.2 rin const vaddr_t voff = start & PAGE_MASK; 163 1.2 rin 164 1.2 rin // XXX NH add an align so map_chunk works betterer? 165 1.2 rin va = uvm_km_alloc(kernel_map, *psize, 0, UVM_KMF_VAONLY | UVM_KMF_NOWAIT); 166 1.2 rin if (va == 0) { 167 1.2 rin printf("Failed to allocate VA for %s\n", purpose); 168 1.2 rin return NULL; 169 1.2 rin } 170 1.2 rin ptr = (void *)(va + voff); 171 1.2 rin 172 1.2 rin // XXX NH map chunk 173 1.2 rin for (pa = startpa; pa < endpa; pa += PAGE_SIZE, va += PAGE_SIZE) 174 1.2 rin pmap_kenter_pa(va, pa, VM_PROT_READ | VM_PROT_WRITE, 0); 175 1.2 rin pmap_update(pmap_kernel()); 176 1.2 rin 177 1.2 rin return ptr; 178 1.2 rin } 179 1.2 rin 180 1.2 rin static void 181 1.2 rin fdt_unmap_range(void *ptr, uint64_t size) 182 1.2 rin { 183 1.2 rin const char *start = ptr, *end = start + size; 184 1.2 rin const vaddr_t startva = trunc_page((vaddr_t)(uintptr_t)start); 185 1.2 rin const vaddr_t endva = round_page((vaddr_t)(uintptr_t)end); 186 1.2 rin const vsize_t sz = endva - startva; 187 1.2 rin 188 1.2 rin pmap_kremove(startva, sz); 189 1.2 rin pmap_update(pmap_kernel()); 190 1.2 rin 191 1.2 rin uvm_km_free(kernel_map, startva, sz, UVM_KMF_VAONLY); 192 1.2 rin } 193 1.2 rin 194 1.3 rin char * 195 1.3 rin fdt_get_bootargs(void) 196 1.3 rin { 197 1.3 rin const int chosen = OF_finddevice("/chosen"); 198 1.3 rin 199 1.3 rin if (chosen >= 0) 200 1.3 rin OF_getprop(chosen, "bootargs", bootargs, sizeof(bootargs)); 201 1.3 rin return bootargs; 202 1.3 rin } 203 1.3 rin 204 1.2 rin void 205 1.2 rin fdt_probe_initrd(void) 206 1.2 rin { 207 1.2 rin 208 1.2 rin #ifdef MEMORY_DISK_DYNAMIC 209 1.2 rin fdt_probe_range("linux,initrd-start", "linux,initrd-end", 210 1.2 rin &initrd_start, &initrd_end); 211 1.2 rin #endif 212 1.2 rin } 213 1.2 rin 214 1.2 rin void 215 1.2 rin fdt_setup_initrd(void) 216 1.2 rin { 217 1.2 rin #ifdef MEMORY_DISK_DYNAMIC 218 1.2 rin void *md_start; 219 1.2 rin uint64_t initrd_size; 220 1.2 rin 221 1.2 rin md_start = fdt_map_range(initrd_start, initrd_end, &initrd_size, 222 1.2 rin "initrd"); 223 1.2 rin if (md_start == NULL) 224 1.2 rin return; 225 1.2 rin md_root_setconf(md_start, initrd_size); 226 1.2 rin #endif 227 1.2 rin } 228 1.2 rin 229 1.2 rin void 230 1.2 rin fdt_reserve_initrd(void) 231 1.2 rin { 232 1.2 rin #ifdef MEMORY_DISK_DYNAMIC 233 1.2 rin const uint64_t initrd_size = 234 1.2 rin round_page(initrd_end) - trunc_page(initrd_start); 235 1.2 rin 236 1.2 rin if (initrd_size > 0) 237 1.2 rin fdt_memory_remove_range(trunc_page(initrd_start), initrd_size); 238 1.2 rin #endif 239 1.2 rin } 240 1.2 rin 241 1.2 rin void 242 1.2 rin fdt_probe_rndseed(void) 243 1.2 rin { 244 1.2 rin 245 1.2 rin fdt_probe_range("netbsd,rndseed-start", "netbsd,rndseed-end", 246 1.2 rin &rndseed_start, &rndseed_end); 247 1.2 rin } 248 1.2 rin 249 1.2 rin void 250 1.2 rin fdt_setup_rndseed(void) 251 1.2 rin { 252 1.2 rin uint64_t rndseed_size; 253 1.2 rin void *rndseed; 254 1.2 rin 255 1.2 rin rndseed = fdt_map_range(rndseed_start, rndseed_end, &rndseed_size, 256 1.2 rin "rndseed"); 257 1.2 rin if (rndseed == NULL) 258 1.2 rin return; 259 1.2 rin rnd_seed(rndseed, rndseed_size); 260 1.2 rin fdt_unmap_range(rndseed, rndseed_size); 261 1.2 rin } 262 1.2 rin 263 1.2 rin void 264 1.2 rin fdt_reserve_rndseed(void) 265 1.2 rin { 266 1.2 rin const uint64_t rndseed_size = 267 1.2 rin round_page(rndseed_end) - trunc_page(rndseed_start); 268 1.2 rin 269 1.2 rin if (rndseed_size > 0) 270 1.2 rin fdt_memory_remove_range(trunc_page(rndseed_start), 271 1.2 rin rndseed_size); 272 1.2 rin } 273 1.2 rin 274 1.2 rin void 275 1.2 rin fdt_probe_efirng(void) 276 1.2 rin { 277 1.2 rin 278 1.2 rin fdt_probe_range("netbsd,efirng-start", "netbsd,efirng-end", 279 1.2 rin &efirng_start, &efirng_end); 280 1.2 rin } 281 1.2 rin 282 1.2 rin void 283 1.2 rin fdt_setup_efirng(void) 284 1.2 rin { 285 1.2 rin uint64_t efirng_size; 286 1.2 rin void *efirng; 287 1.2 rin 288 1.2 rin efirng = fdt_map_range(efirng_start, efirng_end, &efirng_size, 289 1.2 rin "efirng"); 290 1.2 rin if (efirng == NULL) 291 1.2 rin return; 292 1.2 rin 293 1.2 rin rnd_attach_source(&efirng_source, "efirng", RND_TYPE_RNG, 294 1.2 rin RND_FLAG_DEFAULT); 295 1.2 rin 296 1.2 rin /* 297 1.2 rin * We don't really have specific information about the physical 298 1.2 rin * process underlying the data provided by the firmware via the 299 1.2 rin * EFI RNG API, so the entropy estimate here is heuristic. 300 1.2 rin * What efiboot provides us is up to 4096 bytes of data from 301 1.2 rin * the EFI RNG API, although in principle it may return short. 302 1.2 rin * 303 1.2 rin * The UEFI Specification (2.8 Errata A, February 2020[1]) says 304 1.2 rin * 305 1.2 rin * When a Deterministic Random Bit Generator (DRBG) is 306 1.2 rin * used on the output of a (raw) entropy source, its 307 1.2 rin * security level must be at least 256 bits. 308 1.2 rin * 309 1.2 rin * It's not entirely clear whether `it' refers to the DRBG or 310 1.2 rin * the entropy source; if it refers to the DRBG, it's not 311 1.2 rin * entirely clear how ANSI X9.31 3DES, one of the options for 312 1.2 rin * DRBG in the UEFI spec, can provide a `256-bit security 313 1.2 rin * level' because it has only 232 bits of inputs (three 56-bit 314 1.2 rin * keys and one 64-bit block). That said, even if it provides 315 1.2 rin * only 232 bits of entropy, that's enough to prevent all 316 1.2 rin * attacks and we probably get a few more bits from sampling 317 1.2 rin * the clock anyway. 318 1.2 rin * 319 1.2 rin * In the event we get raw samples, e.g. the bits sampled by a 320 1.2 rin * ring oscillator, we hope that the samples have at least half 321 1.2 rin * a bit of entropy per bit of data -- and efiboot tries to 322 1.2 rin * draw 4096 bytes to provide plenty of slop. Hence we divide 323 1.2 rin * the total number of bits by two and clamp at 256. There are 324 1.2 rin * ways this could go wrong, but on most machines it should 325 1.2 rin * behave reasonably. 326 1.2 rin * 327 1.2 rin * [1] https://uefi.org/sites/default/files/resources/UEFI_Spec_2_8_A_Feb14.pdf 328 1.2 rin */ 329 1.2 rin rnd_add_data(&efirng_source, efirng, efirng_size, 330 1.2 rin MIN(256, efirng_size*NBBY/2)); 331 1.2 rin 332 1.2 rin explicit_memset(efirng, 0, efirng_size); 333 1.2 rin fdt_unmap_range(efirng, efirng_size); 334 1.2 rin } 335 1.2 rin 336 1.2 rin void 337 1.2 rin fdt_reserve_efirng(void) 338 1.2 rin { 339 1.2 rin const uint64_t efirng_size = 340 1.2 rin round_page(efirng_end) - trunc_page(efirng_start); 341 1.2 rin 342 1.2 rin if (efirng_size > 0) 343 1.2 rin fdt_memory_remove_range(trunc_page(efirng_start), efirng_size); 344 1.2 rin } 345 1.2 rin 346 1.2 rin #ifdef EFI_RUNTIME 347 1.2 rin void 348 1.2 rin fdt_map_efi_runtime(const char *prop, enum cpu_efirt_mem_type type) 349 1.2 rin { 350 1.2 rin int len; 351 1.2 rin 352 1.2 rin const int chosen_off = fdt_path_offset(fdtbus_get_data(), "/chosen"); 353 1.2 rin if (chosen_off < 0) 354 1.2 rin return; 355 1.2 rin 356 1.2 rin const uint64_t *map = fdt_getprop(fdtbus_get_data(), chosen_off, prop, &len); 357 1.2 rin if (map == NULL) 358 1.2 rin return; 359 1.2 rin 360 1.2 rin while (len >= 24) { 361 1.2 rin const paddr_t pa = be64toh(map[0]); 362 1.2 rin const vaddr_t va = be64toh(map[1]); 363 1.2 rin const size_t sz = be64toh(map[2]); 364 1.2 rin #if 0 365 1.2 rin VPRINTF("%s: %s %#" PRIxPADDR "-%#" PRIxVADDR " (%#" PRIxVADDR 366 1.2 rin "-%#" PRIxVSIZE ")\n", __func__, prop, pa, pa + sz - 1, 367 1.2 rin va, va + sz - 1); 368 1.2 rin #endif 369 1.2 rin cpu_efirt_map_range(va, pa, sz, type); 370 1.2 rin map += 3; 371 1.2 rin len -= 24; 372 1.2 rin } 373 1.2 rin } 374 1.2 rin #endif 375 1.1 skrll 376 1.1 skrll void 377 1.1 skrll fdt_update_stdout_path(void *fdt, const char *boot_args) 378 1.1 skrll { 379 1.1 skrll const char *stdout_path; 380 1.1 skrll char buf[256]; 381 1.1 skrll 382 1.1 skrll const int chosen_off = fdt_path_offset(fdt, "/chosen"); 383 1.1 skrll if (chosen_off == -1) 384 1.1 skrll return; 385 1.1 skrll 386 1.1 skrll if (optstr_get_string(boot_args, "stdout-path", &stdout_path) == false) 387 1.1 skrll return; 388 1.1 skrll 389 1.1 skrll const char *ep = strchr(stdout_path, ' '); 390 1.1 skrll size_t stdout_path_len = ep ? (ep - stdout_path) : strlen(stdout_path); 391 1.1 skrll if (stdout_path_len >= sizeof(buf)) 392 1.1 skrll return; 393 1.1 skrll 394 1.1 skrll strncpy(buf, stdout_path, stdout_path_len); 395 1.1 skrll buf[stdout_path_len] = '\0'; 396 1.1 skrll fdt_setprop(fdt, chosen_off, "stdout-path", 397 1.1 skrll buf, stdout_path_len + 1); 398 1.1 skrll } 399
Indexes created Sun Sep 21 20:09:37 GMT 2025