fdt_boot.c revision 1.4
1 1.4 skrll /* $NetBSD: fdt_boot.c,v 1.4 2023/07/11 05:57:44 skrll Exp $ */ 2 1.1 skrll 3 1.1 skrll /*- 4 1.1 skrll * Copyright (c) 2015-2017 Jared McNeill <jmcneill (at) invisible.ca> 5 1.1 skrll * All rights reserved. 6 1.1 skrll * 7 1.1 skrll * Redistribution and use in source and binary forms, with or without 8 1.1 skrll * modification, are permitted provided that the following conditions 9 1.1 skrll * are met: 10 1.1 skrll * 1. Redistributions of source code must retain the above copyright 11 1.1 skrll * notice, this list of conditions and the following disclaimer. 12 1.1 skrll * 2. Redistributions in binary form must reproduce the above copyright 13 1.1 skrll * notice, this list of conditions and the following disclaimer in the 14 1.1 skrll * documentation and/or other materials provided with the distribution. 15 1.1 skrll * 16 1.1 skrll * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR 17 1.1 skrll * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES 18 1.1 skrll * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. 19 1.1 skrll * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, 20 1.1 skrll * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, 21 1.1 skrll * BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; 22 1.1 skrll * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED 23 1.1 skrll * AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, 24 1.1 skrll * OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 25 1.1 skrll * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 26 1.1 skrll * SUCH DAMAGE. 27 1.1 skrll */ 28 1.1 skrll 29 1.1 skrll /*- 30 1.1 skrll * Copyright (c) 2022 The NetBSD Foundation, Inc. 31 1.1 skrll * All rights reserved. 32 1.1 skrll * 33 1.1 skrll * This code is derived from software contributed to The NetBSD Foundation 34 1.1 skrll * by Nick Hudson 35 1.1 skrll * 36 1.1 skrll * Redistribution and use in source and binary forms, with or without 37 1.1 skrll * modification, are permitted provided that the following conditions 38 1.1 skrll * are met: 39 1.1 skrll * 1. Redistributions of source code must retain the above copyright 40 1.1 skrll * notice, this list of conditions and the following disclaimer. 41 1.1 skrll * 2. Redistributions in binary form must reproduce the above copyright 42 1.1 skrll * notice, this list of conditions and the following disclaimer in the 43 1.1 skrll * documentation and/or other materials provided with the distribution. 44 1.1 skrll * 45 1.1 skrll * THIS SOFTWARE IS PROVIDED BY THE NETBSD FOUNDATION, INC. AND CONTRIBUTORS 46 1.1 skrll * ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED 47 1.1 skrll * TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR 48 1.1 skrll * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE FOUNDATION OR CONTRIBUTORS 49 1.1 skrll * BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR 50 1.1 skrll * CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF 51 1.1 skrll * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS 52 1.1 skrll * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN 53 1.1 skrll * CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) 54 1.1 skrll * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE 55 1.1 skrll * POSSIBILITY OF SUCH DAMAGE. 56 1.1 skrll */ 57 1.1 skrll 58 1.1 skrll #include <sys/cdefs.h> 59 1.4 skrll __KERNEL_RCSID(0, "$NetBSD: fdt_boot.c,v 1.4 2023/07/11 05:57:44 skrll Exp $"); 60 1.2 rin 61 1.2 rin #include "opt_efi.h" 62 1.2 rin #include "opt_md.h" 63 1.1 skrll 64 1.1 skrll #include <sys/param.h> 65 1.1 skrll 66 1.2 rin #include <sys/disk.h> 67 1.2 rin #include <sys/disklabel.h> 68 1.2 rin #include <sys/fcntl.h> 69 1.2 rin #include <sys/md5.h> 70 1.1 skrll #include <sys/optstr.h> 71 1.2 rin #include <sys/rnd.h> 72 1.2 rin #include <sys/rndsource.h> 73 1.2 rin #include <sys/uuid.h> 74 1.2 rin #include <sys/vnode.h> 75 1.2 rin 76 1.2 rin #include <net/if.h> 77 1.2 rin #include <net/if_dl.h> 78 1.2 rin 79 1.2 rin #include <uvm/uvm_extern.h> 80 1.1 skrll 81 1.1 skrll #include <libfdt.h> 82 1.1 skrll 83 1.1 skrll #include <dev/fdt/fdtvar.h> 84 1.1 skrll #include <dev/fdt/fdt_boot.h> 85 1.2 rin #include <dev/fdt/fdt_memory.h> 86 1.2 rin 87 1.3 rin #ifndef FDT_MAX_BOOT_STRING 88 1.3 rin #define FDT_MAX_BOOT_STRING 1024 89 1.3 rin #endif 90 1.3 rin static char bootargs[FDT_MAX_BOOT_STRING] = ""; 91 1.3 rin 92 1.2 rin #ifdef EFI_RUNTIME 93 1.2 rin #include <machine/efirt.h> 94 1.2 rin 95 1.2 rin void fdt_map_efi_runtime(const char *, enum cpu_efirt_mem_type); 96 1.2 rin 97 1.2 rin #endif 98 1.2 rin 99 1.2 rin #ifdef MEMORY_DISK_DYNAMIC 100 1.2 rin #include <dev/md.h> 101 1.2 rin 102 1.2 rin static uint64_t initrd_start, initrd_end; 103 1.2 rin #endif 104 1.2 rin 105 1.2 rin static uint64_t rndseed_start, rndseed_end; /* our on-disk seed */ 106 1.2 rin static uint64_t efirng_start, efirng_end; /* firmware's EFI RNG output */ 107 1.2 rin static struct krndsource efirng_source; 108 1.2 rin 109 1.2 rin 110 1.2 rin static void 111 1.2 rin fdt_probe_range(const char *startname, const char *endname, 112 1.2 rin uint64_t *pstart, uint64_t *pend) 113 1.2 rin { 114 1.2 rin int chosen, len; 115 1.2 rin const void *start_data, *end_data; 116 1.2 rin 117 1.2 rin *pstart = *pend = 0; 118 1.2 rin 119 1.2 rin chosen = OF_finddevice("/chosen"); 120 1.2 rin if (chosen < 0) 121 1.2 rin return; 122 1.2 rin 123 1.2 rin start_data = fdtbus_get_prop(chosen, startname, &len); 124 1.2 rin end_data = fdtbus_get_prop(chosen, endname, NULL); 125 1.2 rin if (start_data == NULL || end_data == NULL) 126 1.2 rin return; 127 1.2 rin 128 1.2 rin switch (len) { 129 1.2 rin case 4: 130 1.2 rin *pstart = be32dec(start_data); 131 1.2 rin *pend = be32dec(end_data); 132 1.2 rin break; 133 1.2 rin case 8: 134 1.2 rin *pstart = be64dec(start_data); 135 1.2 rin *pend = be64dec(end_data); 136 1.2 rin break; 137 1.2 rin default: 138 1.2 rin printf("Unsupported len %d for /chosen `%s'\n", 139 1.2 rin len, startname); 140 1.2 rin return; 141 1.2 rin } 142 1.2 rin } 143 1.2 rin 144 1.2 rin 145 1.2 rin static void * 146 1.2 rin fdt_map_range(uint64_t start, uint64_t end, uint64_t *psize, 147 1.2 rin const char *purpose) 148 1.2 rin { 149 1.2 rin const paddr_t startpa = trunc_page(start); 150 1.2 rin const paddr_t endpa = round_page(end); 151 1.2 rin paddr_t pa; 152 1.2 rin vaddr_t va; 153 1.2 rin void *ptr; 154 1.2 rin 155 1.2 rin *psize = end - start; 156 1.2 rin if (*psize == 0) 157 1.2 rin return NULL; 158 1.2 rin 159 1.2 rin const vaddr_t voff = start & PAGE_MASK; 160 1.2 rin 161 1.2 rin // XXX NH add an align so map_chunk works betterer? 162 1.2 rin va = uvm_km_alloc(kernel_map, *psize, 0, UVM_KMF_VAONLY | UVM_KMF_NOWAIT); 163 1.2 rin if (va == 0) { 164 1.2 rin printf("Failed to allocate VA for %s\n", purpose); 165 1.2 rin return NULL; 166 1.2 rin } 167 1.2 rin ptr = (void *)(va + voff); 168 1.2 rin 169 1.2 rin // XXX NH map chunk 170 1.2 rin for (pa = startpa; pa < endpa; pa += PAGE_SIZE, va += PAGE_SIZE) 171 1.2 rin pmap_kenter_pa(va, pa, VM_PROT_READ | VM_PROT_WRITE, 0); 172 1.2 rin pmap_update(pmap_kernel()); 173 1.2 rin 174 1.2 rin return ptr; 175 1.2 rin } 176 1.2 rin 177 1.2 rin static void 178 1.2 rin fdt_unmap_range(void *ptr, uint64_t size) 179 1.2 rin { 180 1.2 rin const char *start = ptr, *end = start + size; 181 1.2 rin const vaddr_t startva = trunc_page((vaddr_t)(uintptr_t)start); 182 1.2 rin const vaddr_t endva = round_page((vaddr_t)(uintptr_t)end); 183 1.2 rin const vsize_t sz = endva - startva; 184 1.2 rin 185 1.2 rin pmap_kremove(startva, sz); 186 1.2 rin pmap_update(pmap_kernel()); 187 1.2 rin 188 1.2 rin uvm_km_free(kernel_map, startva, sz, UVM_KMF_VAONLY); 189 1.2 rin } 190 1.2 rin 191 1.3 rin char * 192 1.3 rin fdt_get_bootargs(void) 193 1.3 rin { 194 1.3 rin const int chosen = OF_finddevice("/chosen"); 195 1.3 rin 196 1.3 rin if (chosen >= 0) 197 1.3 rin OF_getprop(chosen, "bootargs", bootargs, sizeof(bootargs)); 198 1.3 rin return bootargs; 199 1.3 rin } 200 1.3 rin 201 1.2 rin void 202 1.2 rin fdt_probe_initrd(void) 203 1.2 rin { 204 1.2 rin 205 1.2 rin #ifdef MEMORY_DISK_DYNAMIC 206 1.2 rin fdt_probe_range("linux,initrd-start", "linux,initrd-end", 207 1.2 rin &initrd_start, &initrd_end); 208 1.2 rin #endif 209 1.2 rin } 210 1.2 rin 211 1.2 rin void 212 1.2 rin fdt_setup_initrd(void) 213 1.2 rin { 214 1.2 rin #ifdef MEMORY_DISK_DYNAMIC 215 1.2 rin void *md_start; 216 1.2 rin uint64_t initrd_size; 217 1.2 rin 218 1.2 rin md_start = fdt_map_range(initrd_start, initrd_end, &initrd_size, 219 1.2 rin "initrd"); 220 1.2 rin if (md_start == NULL) 221 1.2 rin return; 222 1.2 rin md_root_setconf(md_start, initrd_size); 223 1.2 rin #endif 224 1.2 rin } 225 1.2 rin 226 1.2 rin void 227 1.2 rin fdt_reserve_initrd(void) 228 1.2 rin { 229 1.2 rin #ifdef MEMORY_DISK_DYNAMIC 230 1.2 rin const uint64_t initrd_size = 231 1.2 rin round_page(initrd_end) - trunc_page(initrd_start); 232 1.2 rin 233 1.2 rin if (initrd_size > 0) 234 1.2 rin fdt_memory_remove_range(trunc_page(initrd_start), initrd_size); 235 1.2 rin #endif 236 1.2 rin } 237 1.2 rin 238 1.2 rin void 239 1.2 rin fdt_probe_rndseed(void) 240 1.2 rin { 241 1.2 rin 242 1.2 rin fdt_probe_range("netbsd,rndseed-start", "netbsd,rndseed-end", 243 1.2 rin &rndseed_start, &rndseed_end); 244 1.2 rin } 245 1.2 rin 246 1.2 rin void 247 1.2 rin fdt_setup_rndseed(void) 248 1.2 rin { 249 1.2 rin uint64_t rndseed_size; 250 1.2 rin void *rndseed; 251 1.2 rin 252 1.2 rin rndseed = fdt_map_range(rndseed_start, rndseed_end, &rndseed_size, 253 1.2 rin "rndseed"); 254 1.2 rin if (rndseed == NULL) 255 1.2 rin return; 256 1.2 rin rnd_seed(rndseed, rndseed_size); 257 1.2 rin fdt_unmap_range(rndseed, rndseed_size); 258 1.2 rin } 259 1.2 rin 260 1.2 rin void 261 1.2 rin fdt_reserve_rndseed(void) 262 1.2 rin { 263 1.2 rin const uint64_t rndseed_size = 264 1.2 rin round_page(rndseed_end) - trunc_page(rndseed_start); 265 1.2 rin 266 1.2 rin if (rndseed_size > 0) 267 1.2 rin fdt_memory_remove_range(trunc_page(rndseed_start), 268 1.2 rin rndseed_size); 269 1.2 rin } 270 1.2 rin 271 1.2 rin void 272 1.2 rin fdt_probe_efirng(void) 273 1.2 rin { 274 1.2 rin 275 1.2 rin fdt_probe_range("netbsd,efirng-start", "netbsd,efirng-end", 276 1.2 rin &efirng_start, &efirng_end); 277 1.2 rin } 278 1.2 rin 279 1.2 rin void 280 1.2 rin fdt_setup_efirng(void) 281 1.2 rin { 282 1.2 rin uint64_t efirng_size; 283 1.2 rin void *efirng; 284 1.2 rin 285 1.2 rin efirng = fdt_map_range(efirng_start, efirng_end, &efirng_size, 286 1.2 rin "efirng"); 287 1.2 rin if (efirng == NULL) 288 1.2 rin return; 289 1.2 rin 290 1.2 rin rnd_attach_source(&efirng_source, "efirng", RND_TYPE_RNG, 291 1.2 rin RND_FLAG_DEFAULT); 292 1.2 rin 293 1.2 rin /* 294 1.2 rin * We don't really have specific information about the physical 295 1.2 rin * process underlying the data provided by the firmware via the 296 1.2 rin * EFI RNG API, so the entropy estimate here is heuristic. 297 1.2 rin * What efiboot provides us is up to 4096 bytes of data from 298 1.2 rin * the EFI RNG API, although in principle it may return short. 299 1.2 rin * 300 1.2 rin * The UEFI Specification (2.8 Errata A, February 2020[1]) says 301 1.2 rin * 302 1.2 rin * When a Deterministic Random Bit Generator (DRBG) is 303 1.2 rin * used on the output of a (raw) entropy source, its 304 1.2 rin * security level must be at least 256 bits. 305 1.2 rin * 306 1.2 rin * It's not entirely clear whether `it' refers to the DRBG or 307 1.2 rin * the entropy source; if it refers to the DRBG, it's not 308 1.2 rin * entirely clear how ANSI X9.31 3DES, one of the options for 309 1.2 rin * DRBG in the UEFI spec, can provide a `256-bit security 310 1.2 rin * level' because it has only 232 bits of inputs (three 56-bit 311 1.2 rin * keys and one 64-bit block). That said, even if it provides 312 1.2 rin * only 232 bits of entropy, that's enough to prevent all 313 1.2 rin * attacks and we probably get a few more bits from sampling 314 1.2 rin * the clock anyway. 315 1.2 rin * 316 1.2 rin * In the event we get raw samples, e.g. the bits sampled by a 317 1.2 rin * ring oscillator, we hope that the samples have at least half 318 1.2 rin * a bit of entropy per bit of data -- and efiboot tries to 319 1.2 rin * draw 4096 bytes to provide plenty of slop. Hence we divide 320 1.2 rin * the total number of bits by two and clamp at 256. There are 321 1.2 rin * ways this could go wrong, but on most machines it should 322 1.2 rin * behave reasonably. 323 1.2 rin * 324 1.2 rin * [1] https://uefi.org/sites/default/files/resources/UEFI_Spec_2_8_A_Feb14.pdf 325 1.2 rin */ 326 1.2 rin rnd_add_data(&efirng_source, efirng, efirng_size, 327 1.2 rin MIN(256, efirng_size*NBBY/2)); 328 1.2 rin 329 1.2 rin explicit_memset(efirng, 0, efirng_size); 330 1.2 rin fdt_unmap_range(efirng, efirng_size); 331 1.2 rin } 332 1.2 rin 333 1.2 rin void 334 1.2 rin fdt_reserve_efirng(void) 335 1.2 rin { 336 1.2 rin const uint64_t efirng_size = 337 1.2 rin round_page(efirng_end) - trunc_page(efirng_start); 338 1.2 rin 339 1.2 rin if (efirng_size > 0) 340 1.2 rin fdt_memory_remove_range(trunc_page(efirng_start), efirng_size); 341 1.2 rin } 342 1.2 rin 343 1.2 rin #ifdef EFI_RUNTIME 344 1.2 rin void 345 1.2 rin fdt_map_efi_runtime(const char *prop, enum cpu_efirt_mem_type type) 346 1.2 rin { 347 1.2 rin int len; 348 1.2 rin 349 1.2 rin const int chosen_off = fdt_path_offset(fdtbus_get_data(), "/chosen"); 350 1.2 rin if (chosen_off < 0) 351 1.2 rin return; 352 1.2 rin 353 1.2 rin const uint64_t *map = fdt_getprop(fdtbus_get_data(), chosen_off, prop, &len); 354 1.2 rin if (map == NULL) 355 1.2 rin return; 356 1.2 rin 357 1.2 rin while (len >= 24) { 358 1.2 rin const paddr_t pa = be64toh(map[0]); 359 1.2 rin const vaddr_t va = be64toh(map[1]); 360 1.2 rin const size_t sz = be64toh(map[2]); 361 1.2 rin #if 0 362 1.2 rin VPRINTF("%s: %s %#" PRIxPADDR "-%#" PRIxVADDR " (%#" PRIxVADDR 363 1.2 rin "-%#" PRIxVSIZE ")\n", __func__, prop, pa, pa + sz - 1, 364 1.2 rin va, va + sz - 1); 365 1.2 rin #endif 366 1.2 rin cpu_efirt_map_range(va, pa, sz, type); 367 1.2 rin map += 3; 368 1.2 rin len -= 24; 369 1.2 rin } 370 1.2 rin } 371 1.2 rin #endif 372 1.1 skrll 373 1.1 skrll void 374 1.1 skrll fdt_update_stdout_path(void *fdt, const char *boot_args) 375 1.1 skrll { 376 1.1 skrll const char *stdout_path; 377 1.1 skrll char buf[256]; 378 1.1 skrll 379 1.1 skrll const int chosen_off = fdt_path_offset(fdt, "/chosen"); 380 1.1 skrll if (chosen_off == -1) 381 1.1 skrll return; 382 1.1 skrll 383 1.1 skrll if (optstr_get_string(boot_args, "stdout-path", &stdout_path) == false) 384 1.1 skrll return; 385 1.1 skrll 386 1.1 skrll const char *ep = strchr(stdout_path, ' '); 387 1.1 skrll size_t stdout_path_len = ep ? (ep - stdout_path) : strlen(stdout_path); 388 1.1 skrll if (stdout_path_len >= sizeof(buf)) 389 1.1 skrll return; 390 1.1 skrll 391 1.1 skrll strncpy(buf, stdout_path, stdout_path_len); 392 1.1 skrll buf[stdout_path_len] = '\0'; 393 1.1 skrll fdt_setprop(fdt, chosen_off, "stdout-path", 394 1.1 skrll buf, stdout_path_len + 1); 395 1.1 skrll } 396
Indexes created Tue Sep 30 11:09:46 GMT 2025