1 // SPDX-License-Identifier: GPL-2.0-only 2 /* 3 * efi.c - EFI subsystem 4 * 5 * Copyright (C) 2001,2003,2004 Dell <Matt_Domsch@dell.com> 6 * Copyright (C) 2004 Intel Corporation <matthew.e.tolentino@intel.com> 7 * Copyright (C) 2013 Tom Gundersen <teg@jklm.no> 8 * 9 * This code registers /sys/firmware/efi{,/efivars} when EFI is supported, 10 * allowing the efivarfs to be mounted or the efivars module to be loaded. 11 * The existance of /sys/firmware/efi may also be used by userspace to 12 * determine that the system supports EFI. 13 */ 14 15 #define pr_fmt(fmt) KBUILD_MODNAME ": " fmt 16 17 #include <linux/kobject.h> 18 #include <linux/module.h> 19 #include <linux/init.h> 20 #include <linux/debugfs.h> 21 #include <linux/device.h> 22 #include <linux/efi.h> 23 #include <linux/of.h> 24 #include <linux/initrd.h> 25 #include <linux/io.h> 26 #include <linux/kexec.h> 27 #include <linux/platform_device.h> 28 #include <linux/random.h> 29 #include <linux/reboot.h> 30 #include <linux/slab.h> 31 #include <linux/acpi.h> 32 #include <linux/ucs2_string.h> 33 #include <linux/memblock.h> 34 #include <linux/security.h> 35 #include <linux/notifier.h> 36 37 #include <asm/early_ioremap.h> 38 39 struct efi __read_mostly efi = { 40 .runtime_supported_mask = EFI_RT_SUPPORTED_ALL, 41 .acpi = EFI_INVALID_TABLE_ADDR, 42 .acpi20 = EFI_INVALID_TABLE_ADDR, 43 .smbios = EFI_INVALID_TABLE_ADDR, 44 .smbios3 = EFI_INVALID_TABLE_ADDR, 45 .esrt = EFI_INVALID_TABLE_ADDR, 46 .tpm_log = EFI_INVALID_TABLE_ADDR, 47 .tpm_final_log = EFI_INVALID_TABLE_ADDR, 48 #ifdef CONFIG_LOAD_UEFI_KEYS 49 .mokvar_table = EFI_INVALID_TABLE_ADDR, 50 #endif 51 #ifdef CONFIG_EFI_COCO_SECRET 52 .coco_secret = EFI_INVALID_TABLE_ADDR, 53 #endif 54 #ifdef CONFIG_UNACCEPTED_MEMORY 55 .unaccepted = EFI_INVALID_TABLE_ADDR, 56 #endif 57 }; 58 EXPORT_SYMBOL(efi); 59 60 unsigned long __ro_after_init efi_rng_seed = EFI_INVALID_TABLE_ADDR; 61 static unsigned long __initdata mem_reserve = EFI_INVALID_TABLE_ADDR; 62 static unsigned long __initdata rt_prop = EFI_INVALID_TABLE_ADDR; 63 static unsigned long __initdata initrd = EFI_INVALID_TABLE_ADDR; 64 65 extern unsigned long screen_info_table; 66 67 struct mm_struct efi_mm = { 68 .mm_mt = MTREE_INIT_EXT(mm_mt, MM_MT_FLAGS, efi_mm.mmap_lock), 69 .mm_users = ATOMIC_INIT(2), 70 .mm_count = ATOMIC_INIT(1), 71 .write_protect_seq = SEQCNT_ZERO(efi_mm.write_protect_seq), 72 MMAP_LOCK_INITIALIZER(efi_mm) 73 .page_table_lock = __SPIN_LOCK_UNLOCKED(efi_mm.page_table_lock), 74 .mmlist = LIST_HEAD_INIT(efi_mm.mmlist), 75 .cpu_bitmap = { [BITS_TO_LONGS(NR_CPUS)] = 0}, 76 }; 77 78 struct workqueue_struct *efi_rts_wq; 79 80 static bool disable_runtime = IS_ENABLED(CONFIG_EFI_DISABLE_RUNTIME); setup_noefi(char * arg)81 static int __init setup_noefi(char *arg) 82 { 83 disable_runtime = true; 84 return 0; 85 } 86 early_param("noefi", setup_noefi); 87 efi_runtime_disabled(void)88 bool efi_runtime_disabled(void) 89 { 90 return disable_runtime; 91 } 92 __efi_soft_reserve_enabled(void)93 bool __pure __efi_soft_reserve_enabled(void) 94 { 95 return !efi_enabled(EFI_MEM_NO_SOFT_RESERVE); 96 } 97 parse_efi_cmdline(char * str)98 static int __init parse_efi_cmdline(char *str) 99 { 100 if (!str) { 101 pr_warn("need at least one option\n"); 102 return -EINVAL; 103 } 104 105 if (parse_option_str(str, "debug")) 106 set_bit(EFI_DBG, &efi.flags); 107 108 if (parse_option_str(str, "noruntime")) 109 disable_runtime = true; 110 111 if (parse_option_str(str, "runtime")) 112 disable_runtime = false; 113 114 if (parse_option_str(str, "nosoftreserve")) 115 set_bit(EFI_MEM_NO_SOFT_RESERVE, &efi.flags); 116 117 return 0; 118 } 119 early_param("efi", parse_efi_cmdline); 120 121 struct kobject *efi_kobj; 122 123 /* 124 * Let's not leave out systab information that snuck into 125 * the efivars driver 126 * Note, do not add more fields in systab sysfs file as it breaks sysfs 127 * one value per file rule! 128 */ systab_show(struct kobject * kobj,struct kobj_attribute * attr,char * buf)129 static ssize_t systab_show(struct kobject *kobj, 130 struct kobj_attribute *attr, char *buf) 131 { 132 char *str = buf; 133 134 if (!kobj || !buf) 135 return -EINVAL; 136 137 if (efi.acpi20 != EFI_INVALID_TABLE_ADDR) 138 str += sprintf(str, "ACPI20=0x%lx\n", efi.acpi20); 139 if (efi.acpi != EFI_INVALID_TABLE_ADDR) 140 str += sprintf(str, "ACPI=0x%lx\n", efi.acpi); 141 /* 142 * If both SMBIOS and SMBIOS3 entry points are implemented, the 143 * SMBIOS3 entry point shall be preferred, so we list it first to 144 * let applications stop parsing after the first match. 145 */ 146 if (efi.smbios3 != EFI_INVALID_TABLE_ADDR) 147 str += sprintf(str, "SMBIOS3=0x%lx\n", efi.smbios3); 148 if (efi.smbios != EFI_INVALID_TABLE_ADDR) 149 str += sprintf(str, "SMBIOS=0x%lx\n", efi.smbios); 150 151 if (IS_ENABLED(CONFIG_X86)) 152 str = efi_systab_show_arch(str); 153 154 return str - buf; 155 } 156 157 static struct kobj_attribute efi_attr_systab = __ATTR_RO_MODE(systab, 0400); 158 fw_platform_size_show(struct kobject * kobj,struct kobj_attribute * attr,char * buf)159 static ssize_t fw_platform_size_show(struct kobject *kobj, 160 struct kobj_attribute *attr, char *buf) 161 { 162 return sprintf(buf, "%d\n", efi_enabled(EFI_64BIT) ? 64 : 32); 163 } 164 165 extern __weak struct kobj_attribute efi_attr_fw_vendor; 166 extern __weak struct kobj_attribute efi_attr_runtime; 167 extern __weak struct kobj_attribute efi_attr_config_table; 168 static struct kobj_attribute efi_attr_fw_platform_size = 169 __ATTR_RO(fw_platform_size); 170 171 static struct attribute *efi_subsys_attrs[] = { 172 &efi_attr_systab.attr, 173 &efi_attr_fw_platform_size.attr, 174 &efi_attr_fw_vendor.attr, 175 &efi_attr_runtime.attr, 176 &efi_attr_config_table.attr, 177 NULL, 178 }; 179 efi_attr_is_visible(struct kobject * kobj,struct attribute * attr,int n)180 umode_t __weak efi_attr_is_visible(struct kobject *kobj, struct attribute *attr, 181 int n) 182 { 183 return attr->mode; 184 } 185 186 static const struct attribute_group efi_subsys_attr_group = { 187 .attrs = efi_subsys_attrs, 188 .is_visible = efi_attr_is_visible, 189 }; 190 191 struct blocking_notifier_head efivar_ops_nh; 192 EXPORT_SYMBOL_GPL(efivar_ops_nh); 193 194 static struct efivars generic_efivars; 195 static struct efivar_operations generic_ops; 196 generic_ops_supported(void)197 static bool generic_ops_supported(void) 198 { 199 unsigned long name_size; 200 efi_status_t status; 201 efi_char16_t name; 202 efi_guid_t guid; 203 204 name_size = sizeof(name); 205 206 if (!efi.get_next_variable) 207 return false; 208 status = efi.get_next_variable(&name_size, &name, &guid); 209 if (status == EFI_UNSUPPORTED) 210 return false; 211 212 return true; 213 } 214 generic_ops_register(void)215 static int generic_ops_register(void) 216 { 217 if (!generic_ops_supported()) 218 return 0; 219 220 generic_ops.get_variable = efi.get_variable; 221 generic_ops.get_next_variable = efi.get_next_variable; 222 generic_ops.query_variable_store = efi_query_variable_store; 223 generic_ops.query_variable_info = efi.query_variable_info; 224 225 if (efi_rt_services_supported(EFI_RT_SUPPORTED_SET_VARIABLE)) { 226 generic_ops.set_variable = efi.set_variable; 227 generic_ops.set_variable_nonblocking = efi.set_variable_nonblocking; 228 } 229 return efivars_register(&generic_efivars, &generic_ops); 230 } 231 generic_ops_unregister(void)232 static void generic_ops_unregister(void) 233 { 234 if (!generic_ops.get_variable) 235 return; 236 237 efivars_unregister(&generic_efivars); 238 } 239 efivars_generic_ops_register(void)240 void efivars_generic_ops_register(void) 241 { 242 generic_ops_register(); 243 } 244 EXPORT_SYMBOL_GPL(efivars_generic_ops_register); 245 efivars_generic_ops_unregister(void)246 void efivars_generic_ops_unregister(void) 247 { 248 generic_ops_unregister(); 249 } 250 EXPORT_SYMBOL_GPL(efivars_generic_ops_unregister); 251 252 #ifdef CONFIG_EFI_CUSTOM_SSDT_OVERLAYS 253 #define EFIVAR_SSDT_NAME_MAX 16UL 254 static char efivar_ssdt[EFIVAR_SSDT_NAME_MAX] __initdata; efivar_ssdt_setup(char * str)255 static int __init efivar_ssdt_setup(char *str) 256 { 257 int ret = security_locked_down(LOCKDOWN_ACPI_TABLES); 258 259 if (ret) 260 return ret; 261 262 if (strlen(str) < sizeof(efivar_ssdt)) 263 memcpy(efivar_ssdt, str, strlen(str)); 264 else 265 pr_warn("efivar_ssdt: name too long: %s\n", str); 266 return 1; 267 } 268 __setup("efivar_ssdt=", efivar_ssdt_setup); 269 efivar_ssdt_load(void)270 static __init int efivar_ssdt_load(void) 271 { 272 unsigned long name_size = 256; 273 efi_char16_t *name = NULL; 274 efi_status_t status; 275 efi_guid_t guid; 276 277 if (!efivar_ssdt[0]) 278 return 0; 279 280 name = kzalloc(name_size, GFP_KERNEL); 281 if (!name) 282 return -ENOMEM; 283 284 for (;;) { 285 char utf8_name[EFIVAR_SSDT_NAME_MAX]; 286 unsigned long data_size = 0; 287 void *data; 288 int limit; 289 290 status = efi.get_next_variable(&name_size, name, &guid); 291 if (status == EFI_NOT_FOUND) { 292 break; 293 } else if (status == EFI_BUFFER_TOO_SMALL) { 294 efi_char16_t *name_tmp = 295 krealloc(name, name_size, GFP_KERNEL); 296 if (!name_tmp) { 297 kfree(name); 298 return -ENOMEM; 299 } 300 name = name_tmp; 301 continue; 302 } 303 304 limit = min(EFIVAR_SSDT_NAME_MAX, name_size); 305 ucs2_as_utf8(utf8_name, name, limit - 1); 306 if (strncmp(utf8_name, efivar_ssdt, limit) != 0) 307 continue; 308 309 pr_info("loading SSDT from variable %s-%pUl\n", efivar_ssdt, &guid); 310 311 status = efi.get_variable(name, &guid, NULL, &data_size, NULL); 312 if (status != EFI_BUFFER_TOO_SMALL || !data_size) 313 return -EIO; 314 315 data = kmalloc(data_size, GFP_KERNEL); 316 if (!data) 317 return -ENOMEM; 318 319 status = efi.get_variable(name, &guid, NULL, &data_size, data); 320 if (status == EFI_SUCCESS) { 321 acpi_status ret = acpi_load_table(data, NULL); 322 if (ret) 323 pr_err("failed to load table: %u\n", ret); 324 else 325 continue; 326 } else { 327 pr_err("failed to get var data: 0x%lx\n", status); 328 } 329 kfree(data); 330 } 331 return 0; 332 } 333 #else efivar_ssdt_load(void)334 static inline int efivar_ssdt_load(void) { return 0; } 335 #endif 336 337 #ifdef CONFIG_DEBUG_FS 338 339 #define EFI_DEBUGFS_MAX_BLOBS 32 340 341 static struct debugfs_blob_wrapper debugfs_blob[EFI_DEBUGFS_MAX_BLOBS]; 342 efi_debugfs_init(void)343 static void __init efi_debugfs_init(void) 344 { 345 struct dentry *efi_debugfs; 346 efi_memory_desc_t *md; 347 char name[32]; 348 int type_count[EFI_BOOT_SERVICES_DATA + 1] = {}; 349 int i = 0; 350 351 efi_debugfs = debugfs_create_dir("efi", NULL); 352 if (IS_ERR(efi_debugfs)) 353 return; 354 355 for_each_efi_memory_desc(md) { 356 switch (md->type) { 357 case EFI_BOOT_SERVICES_CODE: 358 snprintf(name, sizeof(name), "boot_services_code%d", 359 type_count[md->type]++); 360 break; 361 case EFI_BOOT_SERVICES_DATA: 362 snprintf(name, sizeof(name), "boot_services_data%d", 363 type_count[md->type]++); 364 break; 365 default: 366 continue; 367 } 368 369 if (i >= EFI_DEBUGFS_MAX_BLOBS) { 370 pr_warn("More then %d EFI boot service segments, only showing first %d in debugfs\n", 371 EFI_DEBUGFS_MAX_BLOBS, EFI_DEBUGFS_MAX_BLOBS); 372 break; 373 } 374 375 debugfs_blob[i].size = md->num_pages << EFI_PAGE_SHIFT; 376 debugfs_blob[i].data = memremap(md->phys_addr, 377 debugfs_blob[i].size, 378 MEMREMAP_WB); 379 if (!debugfs_blob[i].data) 380 continue; 381 382 debugfs_create_blob(name, 0400, efi_debugfs, &debugfs_blob[i]); 383 i++; 384 } 385 } 386 #else efi_debugfs_init(void)387 static inline void efi_debugfs_init(void) {} 388 #endif 389 390 /* 391 * We register the efi subsystem with the firmware subsystem and the 392 * efivars subsystem with the efi subsystem, if the system was booted with 393 * EFI. 394 */ efisubsys_init(void)395 static int __init efisubsys_init(void) 396 { 397 int error; 398 399 if (!efi_enabled(EFI_RUNTIME_SERVICES)) 400 efi.runtime_supported_mask = 0; 401 402 if (!efi_enabled(EFI_BOOT)) 403 return 0; 404 405 if (efi.runtime_supported_mask) { 406 /* 407 * Since we process only one efi_runtime_service() at a time, an 408 * ordered workqueue (which creates only one execution context) 409 * should suffice for all our needs. 410 */ 411 efi_rts_wq = alloc_ordered_workqueue("efi_rts_wq", 0); 412 if (!efi_rts_wq) { 413 pr_err("Creating efi_rts_wq failed, EFI runtime services disabled.\n"); 414 clear_bit(EFI_RUNTIME_SERVICES, &efi.flags); 415 efi.runtime_supported_mask = 0; 416 return 0; 417 } 418 } 419 420 if (efi_rt_services_supported(EFI_RT_SUPPORTED_TIME_SERVICES)) 421 platform_device_register_simple("rtc-efi", 0, NULL, 0); 422 423 /* We register the efi directory at /sys/firmware/efi */ 424 efi_kobj = kobject_create_and_add("efi", firmware_kobj); 425 if (!efi_kobj) { 426 pr_err("efi: Firmware registration failed.\n"); 427 error = -ENOMEM; 428 goto err_destroy_wq; 429 } 430 431 if (efi_rt_services_supported(EFI_RT_SUPPORTED_GET_VARIABLE | 432 EFI_RT_SUPPORTED_GET_NEXT_VARIABLE_NAME)) { 433 error = generic_ops_register(); 434 if (error) 435 goto err_put; 436 efivar_ssdt_load(); 437 platform_device_register_simple("efivars", 0, NULL, 0); 438 } 439 440 BLOCKING_INIT_NOTIFIER_HEAD(&efivar_ops_nh); 441 442 error = sysfs_create_group(efi_kobj, &efi_subsys_attr_group); 443 if (error) { 444 pr_err("efi: Sysfs attribute export failed with error %d.\n", 445 error); 446 goto err_unregister; 447 } 448 449 /* and the standard mountpoint for efivarfs */ 450 error = sysfs_create_mount_point(efi_kobj, "efivars"); 451 if (error) { 452 pr_err("efivars: Subsystem registration failed.\n"); 453 goto err_remove_group; 454 } 455 456 if (efi_enabled(EFI_DBG) && efi_enabled(EFI_PRESERVE_BS_REGIONS)) 457 efi_debugfs_init(); 458 459 #ifdef CONFIG_EFI_COCO_SECRET 460 if (efi.coco_secret != EFI_INVALID_TABLE_ADDR) 461 platform_device_register_simple("efi_secret", 0, NULL, 0); 462 #endif 463 464 return 0; 465 466 err_remove_group: 467 sysfs_remove_group(efi_kobj, &efi_subsys_attr_group); 468 err_unregister: 469 if (efi_rt_services_supported(EFI_RT_SUPPORTED_GET_VARIABLE | 470 EFI_RT_SUPPORTED_GET_NEXT_VARIABLE_NAME)) 471 generic_ops_unregister(); 472 err_put: 473 kobject_put(efi_kobj); 474 efi_kobj = NULL; 475 err_destroy_wq: 476 if (efi_rts_wq) 477 destroy_workqueue(efi_rts_wq); 478 479 return error; 480 } 481 482 subsys_initcall(efisubsys_init); 483 efi_find_mirror(void)484 void __init efi_find_mirror(void) 485 { 486 efi_memory_desc_t *md; 487 u64 mirror_size = 0, total_size = 0; 488 489 if (!efi_enabled(EFI_MEMMAP)) 490 return; 491 492 for_each_efi_memory_desc(md) { 493 unsigned long long start = md->phys_addr; 494 unsigned long long size = md->num_pages << EFI_PAGE_SHIFT; 495 496 total_size += size; 497 if (md->attribute & EFI_MEMORY_MORE_RELIABLE) { 498 memblock_mark_mirror(start, size); 499 mirror_size += size; 500 } 501 } 502 if (mirror_size) 503 pr_info("Memory: %lldM/%lldM mirrored memory\n", 504 mirror_size>>20, total_size>>20); 505 } 506 507 /* 508 * Find the efi memory descriptor for a given physical address. Given a 509 * physical address, determine if it exists within an EFI Memory Map entry, 510 * and if so, populate the supplied memory descriptor with the appropriate 511 * data. 512 */ __efi_mem_desc_lookup(u64 phys_addr,efi_memory_desc_t * out_md)513 int __efi_mem_desc_lookup(u64 phys_addr, efi_memory_desc_t *out_md) 514 { 515 efi_memory_desc_t *md; 516 517 if (!efi_enabled(EFI_MEMMAP)) { 518 pr_err_once("EFI_MEMMAP is not enabled.\n"); 519 return -EINVAL; 520 } 521 522 if (!out_md) { 523 pr_err_once("out_md is null.\n"); 524 return -EINVAL; 525 } 526 527 for_each_efi_memory_desc(md) { 528 u64 size; 529 u64 end; 530 531 /* skip bogus entries (including empty ones) */ 532 if ((md->phys_addr & (EFI_PAGE_SIZE - 1)) || 533 (md->num_pages <= 0) || 534 (md->num_pages > (U64_MAX - md->phys_addr) >> EFI_PAGE_SHIFT)) 535 continue; 536 537 size = md->num_pages << EFI_PAGE_SHIFT; 538 end = md->phys_addr + size; 539 if (phys_addr >= md->phys_addr && phys_addr < end) { 540 memcpy(out_md, md, sizeof(*out_md)); 541 return 0; 542 } 543 } 544 return -ENOENT; 545 } 546 547 extern int efi_mem_desc_lookup(u64 phys_addr, efi_memory_desc_t *out_md) 548 __weak __alias(__efi_mem_desc_lookup); 549 550 /* 551 * Calculate the highest address of an efi memory descriptor. 552 */ efi_mem_desc_end(efi_memory_desc_t * md)553 u64 __init efi_mem_desc_end(efi_memory_desc_t *md) 554 { 555 u64 size = md->num_pages << EFI_PAGE_SHIFT; 556 u64 end = md->phys_addr + size; 557 return end; 558 } 559 efi_arch_mem_reserve(phys_addr_t addr,u64 size)560 void __init __weak efi_arch_mem_reserve(phys_addr_t addr, u64 size) {} 561 562 /** 563 * efi_mem_reserve - Reserve an EFI memory region 564 * @addr: Physical address to reserve 565 * @size: Size of reservation 566 * 567 * Mark a region as reserved from general kernel allocation and 568 * prevent it being released by efi_free_boot_services(). 569 * 570 * This function should be called drivers once they've parsed EFI 571 * configuration tables to figure out where their data lives, e.g. 572 * efi_esrt_init(). 573 */ efi_mem_reserve(phys_addr_t addr,u64 size)574 void __init efi_mem_reserve(phys_addr_t addr, u64 size) 575 { 576 /* efi_mem_reserve() does not work under Xen */ 577 if (WARN_ON_ONCE(efi_enabled(EFI_PARAVIRT))) 578 return; 579 580 if (!memblock_is_region_reserved(addr, size)) 581 memblock_reserve(addr, size); 582 583 /* 584 * Some architectures (x86) reserve all boot services ranges 585 * until efi_free_boot_services() because of buggy firmware 586 * implementations. This means the above memblock_reserve() is 587 * superfluous on x86 and instead what it needs to do is 588 * ensure the @start, @size is not freed. 589 */ 590 efi_arch_mem_reserve(addr, size); 591 } 592 593 static const efi_config_table_type_t common_tables[] __initconst = { 594 {ACPI_20_TABLE_GUID, &efi.acpi20, "ACPI 2.0" }, 595 {ACPI_TABLE_GUID, &efi.acpi, "ACPI" }, 596 {SMBIOS_TABLE_GUID, &efi.smbios, "SMBIOS" }, 597 {SMBIOS3_TABLE_GUID, &efi.smbios3, "SMBIOS 3.0" }, 598 {EFI_SYSTEM_RESOURCE_TABLE_GUID, &efi.esrt, "ESRT" }, 599 {EFI_MEMORY_ATTRIBUTES_TABLE_GUID, &efi_mem_attr_table, "MEMATTR" }, 600 {LINUX_EFI_RANDOM_SEED_TABLE_GUID, &efi_rng_seed, "RNG" }, 601 {LINUX_EFI_TPM_EVENT_LOG_GUID, &efi.tpm_log, "TPMEventLog" }, 602 {EFI_TCG2_FINAL_EVENTS_TABLE_GUID, &efi.tpm_final_log, "TPMFinalLog" }, 603 {EFI_CC_FINAL_EVENTS_TABLE_GUID, &efi.tpm_final_log, "CCFinalLog" }, 604 {LINUX_EFI_MEMRESERVE_TABLE_GUID, &mem_reserve, "MEMRESERVE" }, 605 {LINUX_EFI_INITRD_MEDIA_GUID, &initrd, "INITRD" }, 606 {EFI_RT_PROPERTIES_TABLE_GUID, &rt_prop, "RTPROP" }, 607 #ifdef CONFIG_EFI_RCI2_TABLE 608 {DELLEMC_EFI_RCI2_TABLE_GUID, &rci2_table_phys }, 609 #endif 610 #ifdef CONFIG_LOAD_UEFI_KEYS 611 {LINUX_EFI_MOK_VARIABLE_TABLE_GUID, &efi.mokvar_table, "MOKvar" }, 612 #endif 613 #ifdef CONFIG_EFI_COCO_SECRET 614 {LINUX_EFI_COCO_SECRET_AREA_GUID, &efi.coco_secret, "CocoSecret" }, 615 #endif 616 #ifdef CONFIG_UNACCEPTED_MEMORY 617 {LINUX_EFI_UNACCEPTED_MEM_TABLE_GUID, &efi.unaccepted, "Unaccepted" }, 618 #endif 619 #ifdef CONFIG_EFI_GENERIC_STUB 620 {LINUX_EFI_SCREEN_INFO_TABLE_GUID, &screen_info_table }, 621 #endif 622 {}, 623 }; 624 match_config_table(const efi_guid_t * guid,unsigned long table,const efi_config_table_type_t * table_types)625 static __init int match_config_table(const efi_guid_t *guid, 626 unsigned long table, 627 const efi_config_table_type_t *table_types) 628 { 629 int i; 630 631 for (i = 0; efi_guidcmp(table_types[i].guid, NULL_GUID); i++) { 632 if (efi_guidcmp(*guid, table_types[i].guid)) 633 continue; 634 635 if (!efi_config_table_is_usable(guid, table)) { 636 if (table_types[i].name[0]) 637 pr_cont("(%s=0x%lx unusable) ", 638 table_types[i].name, table); 639 return 1; 640 } 641 642 *(table_types[i].ptr) = table; 643 if (table_types[i].name[0]) 644 pr_cont("%s=0x%lx ", table_types[i].name, table); 645 return 1; 646 } 647 648 return 0; 649 } 650 651 /** 652 * reserve_unaccepted - Map and reserve unaccepted configuration table 653 * @unaccepted: Pointer to unaccepted memory table 654 * 655 * memblock_add() makes sure that the table is mapped in direct mapping. During 656 * normal boot it happens automatically because the table is allocated from 657 * usable memory. But during crashkernel boot only memory specifically reserved 658 * for crash scenario is mapped. memblock_add() forces the table to be mapped 659 * in crashkernel case. 660 * 661 * Align the range to the nearest page borders. Ranges smaller than page size 662 * are not going to be mapped. 663 * 664 * memblock_reserve() makes sure that future allocations will not touch the 665 * table. 666 */ 667 reserve_unaccepted(struct efi_unaccepted_memory * unaccepted)668 static __init void reserve_unaccepted(struct efi_unaccepted_memory *unaccepted) 669 { 670 phys_addr_t start, size; 671 672 start = PAGE_ALIGN_DOWN(efi.unaccepted); 673 size = PAGE_ALIGN(sizeof(*unaccepted) + unaccepted->size); 674 675 memblock_add(start, size); 676 memblock_reserve(start, size); 677 } 678 efi_config_parse_tables(const efi_config_table_t * config_tables,int count,const efi_config_table_type_t * arch_tables)679 int __init efi_config_parse_tables(const efi_config_table_t *config_tables, 680 int count, 681 const efi_config_table_type_t *arch_tables) 682 { 683 const efi_config_table_64_t *tbl64 = (void *)config_tables; 684 const efi_config_table_32_t *tbl32 = (void *)config_tables; 685 const efi_guid_t *guid; 686 unsigned long table; 687 int i; 688 689 pr_info(""); 690 for (i = 0; i < count; i++) { 691 if (!IS_ENABLED(CONFIG_X86)) { 692 guid = &config_tables[i].guid; 693 table = (unsigned long)config_tables[i].table; 694 } else if (efi_enabled(EFI_64BIT)) { 695 guid = &tbl64[i].guid; 696 table = tbl64[i].table; 697 698 if (IS_ENABLED(CONFIG_X86_32) && 699 tbl64[i].table > U32_MAX) { 700 pr_cont("\n"); 701 pr_err("Table located above 4GB, disabling EFI.\n"); 702 return -EINVAL; 703 } 704 } else { 705 guid = &tbl32[i].guid; 706 table = tbl32[i].table; 707 } 708 709 if (!match_config_table(guid, table, common_tables) && arch_tables) 710 match_config_table(guid, table, arch_tables); 711 } 712 pr_cont("\n"); 713 set_bit(EFI_CONFIG_TABLES, &efi.flags); 714 715 if (efi_rng_seed != EFI_INVALID_TABLE_ADDR) { 716 struct linux_efi_random_seed *seed; 717 u32 size = 0; 718 719 seed = early_memremap(efi_rng_seed, sizeof(*seed)); 720 if (seed != NULL) { 721 size = min_t(u32, seed->size, SZ_1K); // sanity check 722 early_memunmap(seed, sizeof(*seed)); 723 } else { 724 pr_err("Could not map UEFI random seed!\n"); 725 } 726 if (size > 0) { 727 seed = early_memremap(efi_rng_seed, 728 sizeof(*seed) + size); 729 if (seed != NULL) { 730 add_bootloader_randomness(seed->bits, size); 731 memzero_explicit(seed->bits, size); 732 early_memunmap(seed, sizeof(*seed) + size); 733 } else { 734 pr_err("Could not map UEFI random seed!\n"); 735 } 736 } 737 } 738 739 if (!IS_ENABLED(CONFIG_X86_32) && efi_enabled(EFI_MEMMAP)) 740 efi_memattr_init(); 741 742 efi_tpm_eventlog_init(); 743 744 if (mem_reserve != EFI_INVALID_TABLE_ADDR) { 745 unsigned long prsv = mem_reserve; 746 747 while (prsv) { 748 struct linux_efi_memreserve *rsv; 749 u8 *p; 750 751 /* 752 * Just map a full page: that is what we will get 753 * anyway, and it permits us to map the entire entry 754 * before knowing its size. 755 */ 756 p = early_memremap(ALIGN_DOWN(prsv, PAGE_SIZE), 757 PAGE_SIZE); 758 if (p == NULL) { 759 pr_err("Could not map UEFI memreserve entry!\n"); 760 return -ENOMEM; 761 } 762 763 rsv = (void *)(p + prsv % PAGE_SIZE); 764 765 /* reserve the entry itself */ 766 memblock_reserve(prsv, 767 struct_size(rsv, entry, rsv->size)); 768 769 for (i = 0; i < atomic_read(&rsv->count); i++) { 770 memblock_reserve(rsv->entry[i].base, 771 rsv->entry[i].size); 772 } 773 774 prsv = rsv->next; 775 early_memunmap(p, PAGE_SIZE); 776 } 777 } 778 779 if (rt_prop != EFI_INVALID_TABLE_ADDR) { 780 efi_rt_properties_table_t *tbl; 781 782 tbl = early_memremap(rt_prop, sizeof(*tbl)); 783 if (tbl) { 784 efi.runtime_supported_mask &= tbl->runtime_services_supported; 785 early_memunmap(tbl, sizeof(*tbl)); 786 } 787 } 788 789 if (IS_ENABLED(CONFIG_BLK_DEV_INITRD) && 790 initrd != EFI_INVALID_TABLE_ADDR && phys_initrd_size == 0) { 791 struct linux_efi_initrd *tbl; 792 793 tbl = early_memremap(initrd, sizeof(*tbl)); 794 if (tbl) { 795 phys_initrd_start = tbl->base; 796 phys_initrd_size = tbl->size; 797 early_memunmap(tbl, sizeof(*tbl)); 798 } 799 } 800 801 if (IS_ENABLED(CONFIG_UNACCEPTED_MEMORY) && 802 efi.unaccepted != EFI_INVALID_TABLE_ADDR) { 803 struct efi_unaccepted_memory *unaccepted; 804 805 unaccepted = early_memremap(efi.unaccepted, sizeof(*unaccepted)); 806 if (unaccepted) { 807 808 if (unaccepted->version == 1) { 809 reserve_unaccepted(unaccepted); 810 } else { 811 efi.unaccepted = EFI_INVALID_TABLE_ADDR; 812 } 813 814 early_memunmap(unaccepted, sizeof(*unaccepted)); 815 } 816 } 817 818 return 0; 819 } 820 efi_systab_check_header(const efi_table_hdr_t * systab_hdr)821 int __init efi_systab_check_header(const efi_table_hdr_t *systab_hdr) 822 { 823 if (systab_hdr->signature != EFI_SYSTEM_TABLE_SIGNATURE) { 824 pr_err("System table signature incorrect!\n"); 825 return -EINVAL; 826 } 827 828 return 0; 829 } 830 map_fw_vendor(unsigned long fw_vendor,size_t size)831 static const efi_char16_t *__init map_fw_vendor(unsigned long fw_vendor, 832 size_t size) 833 { 834 const efi_char16_t *ret; 835 836 ret = early_memremap_ro(fw_vendor, size); 837 if (!ret) 838 pr_err("Could not map the firmware vendor!\n"); 839 return ret; 840 } 841 unmap_fw_vendor(const void * fw_vendor,size_t size)842 static void __init unmap_fw_vendor(const void *fw_vendor, size_t size) 843 { 844 early_memunmap((void *)fw_vendor, size); 845 } 846 efi_systab_report_header(const efi_table_hdr_t * systab_hdr,unsigned long fw_vendor)847 void __init efi_systab_report_header(const efi_table_hdr_t *systab_hdr, 848 unsigned long fw_vendor) 849 { 850 char vendor[100] = "unknown"; 851 const efi_char16_t *c16; 852 size_t i; 853 u16 rev; 854 855 c16 = map_fw_vendor(fw_vendor, sizeof(vendor) * sizeof(efi_char16_t)); 856 if (c16) { 857 for (i = 0; i < sizeof(vendor) - 1 && c16[i]; ++i) 858 vendor[i] = c16[i]; 859 vendor[i] = '\0'; 860 861 unmap_fw_vendor(c16, sizeof(vendor) * sizeof(efi_char16_t)); 862 } 863 864 rev = (u16)systab_hdr->revision; 865 pr_info("EFI v%u.%u", systab_hdr->revision >> 16, rev / 10); 866 867 rev %= 10; 868 if (rev) 869 pr_cont(".%u", rev); 870 871 pr_cont(" by %s\n", vendor); 872 873 if (IS_ENABLED(CONFIG_X86_64) && 874 systab_hdr->revision > EFI_1_10_SYSTEM_TABLE_REVISION && 875 !strcmp(vendor, "Apple")) { 876 pr_info("Apple Mac detected, using EFI v1.10 runtime services only\n"); 877 efi.runtime_version = EFI_1_10_SYSTEM_TABLE_REVISION; 878 } 879 } 880 881 static __initdata char memory_type_name[][13] = { 882 "Reserved", 883 "Loader Code", 884 "Loader Data", 885 "Boot Code", 886 "Boot Data", 887 "Runtime Code", 888 "Runtime Data", 889 "Conventional", 890 "Unusable", 891 "ACPI Reclaim", 892 "ACPI Mem NVS", 893 "MMIO", 894 "MMIO Port", 895 "PAL Code", 896 "Persistent", 897 "Unaccepted", 898 }; 899 efi_md_typeattr_format(char * buf,size_t size,const efi_memory_desc_t * md)900 char * __init efi_md_typeattr_format(char *buf, size_t size, 901 const efi_memory_desc_t *md) 902 { 903 char *pos; 904 int type_len; 905 u64 attr; 906 907 pos = buf; 908 if (md->type >= ARRAY_SIZE(memory_type_name)) 909 type_len = snprintf(pos, size, "[type=%u", md->type); 910 else 911 type_len = snprintf(pos, size, "[%-*s", 912 (int)(sizeof(memory_type_name[0]) - 1), 913 memory_type_name[md->type]); 914 if (type_len >= size) 915 return buf; 916 917 pos += type_len; 918 size -= type_len; 919 920 attr = md->attribute; 921 if (attr & ~(EFI_MEMORY_UC | EFI_MEMORY_WC | EFI_MEMORY_WT | 922 EFI_MEMORY_WB | EFI_MEMORY_UCE | EFI_MEMORY_RO | 923 EFI_MEMORY_WP | EFI_MEMORY_RP | EFI_MEMORY_XP | 924 EFI_MEMORY_NV | EFI_MEMORY_SP | EFI_MEMORY_CPU_CRYPTO | 925 EFI_MEMORY_RUNTIME | EFI_MEMORY_MORE_RELIABLE)) 926 snprintf(pos, size, "|attr=0x%016llx]", 927 (unsigned long long)attr); 928 else 929 snprintf(pos, size, 930 "|%3s|%2s|%2s|%2s|%2s|%2s|%2s|%2s|%2s|%3s|%2s|%2s|%2s|%2s]", 931 attr & EFI_MEMORY_RUNTIME ? "RUN" : "", 932 attr & EFI_MEMORY_MORE_RELIABLE ? "MR" : "", 933 attr & EFI_MEMORY_CPU_CRYPTO ? "CC" : "", 934 attr & EFI_MEMORY_SP ? "SP" : "", 935 attr & EFI_MEMORY_NV ? "NV" : "", 936 attr & EFI_MEMORY_XP ? "XP" : "", 937 attr & EFI_MEMORY_RP ? "RP" : "", 938 attr & EFI_MEMORY_WP ? "WP" : "", 939 attr & EFI_MEMORY_RO ? "RO" : "", 940 attr & EFI_MEMORY_UCE ? "UCE" : "", 941 attr & EFI_MEMORY_WB ? "WB" : "", 942 attr & EFI_MEMORY_WT ? "WT" : "", 943 attr & EFI_MEMORY_WC ? "WC" : "", 944 attr & EFI_MEMORY_UC ? "UC" : ""); 945 return buf; 946 } 947 948 /* 949 * efi_mem_attributes - lookup memmap attributes for physical address 950 * @phys_addr: the physical address to lookup 951 * 952 * Search in the EFI memory map for the region covering 953 * @phys_addr. Returns the EFI memory attributes if the region 954 * was found in the memory map, 0 otherwise. 955 */ efi_mem_attributes(unsigned long phys_addr)956 u64 efi_mem_attributes(unsigned long phys_addr) 957 { 958 efi_memory_desc_t *md; 959 960 if (!efi_enabled(EFI_MEMMAP)) 961 return 0; 962 963 for_each_efi_memory_desc(md) { 964 if ((md->phys_addr <= phys_addr) && 965 (phys_addr < (md->phys_addr + 966 (md->num_pages << EFI_PAGE_SHIFT)))) 967 return md->attribute; 968 } 969 return 0; 970 } 971 972 /* 973 * efi_mem_type - lookup memmap type for physical address 974 * @phys_addr: the physical address to lookup 975 * 976 * Search in the EFI memory map for the region covering @phys_addr. 977 * Returns the EFI memory type if the region was found in the memory 978 * map, -EINVAL otherwise. 979 */ efi_mem_type(unsigned long phys_addr)980 int efi_mem_type(unsigned long phys_addr) 981 { 982 const efi_memory_desc_t *md; 983 984 if (!efi_enabled(EFI_MEMMAP)) 985 return -ENOTSUPP; 986 987 for_each_efi_memory_desc(md) { 988 if ((md->phys_addr <= phys_addr) && 989 (phys_addr < (md->phys_addr + 990 (md->num_pages << EFI_PAGE_SHIFT)))) 991 return md->type; 992 } 993 return -EINVAL; 994 } 995 efi_status_to_err(efi_status_t status)996 int efi_status_to_err(efi_status_t status) 997 { 998 int err; 999 1000 switch (status) { 1001 case EFI_SUCCESS: 1002 err = 0; 1003 break; 1004 case EFI_INVALID_PARAMETER: 1005 err = -EINVAL; 1006 break; 1007 case EFI_OUT_OF_RESOURCES: 1008 err = -ENOSPC; 1009 break; 1010 case EFI_DEVICE_ERROR: 1011 err = -EIO; 1012 break; 1013 case EFI_WRITE_PROTECTED: 1014 err = -EROFS; 1015 break; 1016 case EFI_SECURITY_VIOLATION: 1017 err = -EACCES; 1018 break; 1019 case EFI_NOT_FOUND: 1020 err = -ENOENT; 1021 break; 1022 case EFI_ABORTED: 1023 err = -EINTR; 1024 break; 1025 default: 1026 err = -EINVAL; 1027 } 1028 1029 return err; 1030 } 1031 EXPORT_SYMBOL_GPL(efi_status_to_err); 1032 1033 static DEFINE_SPINLOCK(efi_mem_reserve_persistent_lock); 1034 static struct linux_efi_memreserve *efi_memreserve_root __ro_after_init; 1035 efi_memreserve_map_root(void)1036 static int __init efi_memreserve_map_root(void) 1037 { 1038 if (mem_reserve == EFI_INVALID_TABLE_ADDR) 1039 return -ENODEV; 1040 1041 efi_memreserve_root = memremap(mem_reserve, 1042 sizeof(*efi_memreserve_root), 1043 MEMREMAP_WB); 1044 if (WARN_ON_ONCE(!efi_memreserve_root)) 1045 return -ENOMEM; 1046 return 0; 1047 } 1048 efi_mem_reserve_iomem(phys_addr_t addr,u64 size)1049 static int efi_mem_reserve_iomem(phys_addr_t addr, u64 size) 1050 { 1051 struct resource *res, *parent; 1052 int ret; 1053 1054 res = kzalloc(sizeof(struct resource), GFP_ATOMIC); 1055 if (!res) 1056 return -ENOMEM; 1057 1058 res->name = "reserved"; 1059 res->flags = IORESOURCE_MEM; 1060 res->start = addr; 1061 res->end = addr + size - 1; 1062 1063 /* we expect a conflict with a 'System RAM' region */ 1064 parent = request_resource_conflict(&iomem_resource, res); 1065 ret = parent ? request_resource(parent, res) : 0; 1066 1067 /* 1068 * Given that efi_mem_reserve_iomem() can be called at any 1069 * time, only call memblock_reserve() if the architecture 1070 * keeps the infrastructure around. 1071 */ 1072 if (IS_ENABLED(CONFIG_ARCH_KEEP_MEMBLOCK) && !ret) 1073 memblock_reserve(addr, size); 1074 1075 return ret; 1076 } 1077 efi_mem_reserve_persistent(phys_addr_t addr,u64 size)1078 int __ref efi_mem_reserve_persistent(phys_addr_t addr, u64 size) 1079 { 1080 struct linux_efi_memreserve *rsv; 1081 unsigned long prsv; 1082 int rc, index; 1083 1084 if (efi_memreserve_root == (void *)ULONG_MAX) 1085 return -ENODEV; 1086 1087 if (!efi_memreserve_root) { 1088 rc = efi_memreserve_map_root(); 1089 if (rc) 1090 return rc; 1091 } 1092 1093 /* first try to find a slot in an existing linked list entry */ 1094 for (prsv = efi_memreserve_root->next; prsv; ) { 1095 rsv = memremap(prsv, sizeof(*rsv), MEMREMAP_WB); 1096 if (!rsv) 1097 return -ENOMEM; 1098 index = atomic_fetch_add_unless(&rsv->count, 1, rsv->size); 1099 if (index < rsv->size) { 1100 rsv->entry[index].base = addr; 1101 rsv->entry[index].size = size; 1102 1103 memunmap(rsv); 1104 return efi_mem_reserve_iomem(addr, size); 1105 } 1106 prsv = rsv->next; 1107 memunmap(rsv); 1108 } 1109 1110 /* no slot found - allocate a new linked list entry */ 1111 rsv = (struct linux_efi_memreserve *)__get_free_page(GFP_ATOMIC); 1112 if (!rsv) 1113 return -ENOMEM; 1114 1115 rc = efi_mem_reserve_iomem(__pa(rsv), SZ_4K); 1116 if (rc) { 1117 free_page((unsigned long)rsv); 1118 return rc; 1119 } 1120 1121 /* 1122 * The memremap() call above assumes that a linux_efi_memreserve entry 1123 * never crosses a page boundary, so let's ensure that this remains true 1124 * even when kexec'ing a 4k pages kernel from a >4k pages kernel, by 1125 * using SZ_4K explicitly in the size calculation below. 1126 */ 1127 rsv->size = EFI_MEMRESERVE_COUNT(SZ_4K); 1128 atomic_set(&rsv->count, 1); 1129 rsv->entry[0].base = addr; 1130 rsv->entry[0].size = size; 1131 1132 spin_lock(&efi_mem_reserve_persistent_lock); 1133 rsv->next = efi_memreserve_root->next; 1134 efi_memreserve_root->next = __pa(rsv); 1135 spin_unlock(&efi_mem_reserve_persistent_lock); 1136 1137 return efi_mem_reserve_iomem(addr, size); 1138 } 1139 efi_memreserve_root_init(void)1140 static int __init efi_memreserve_root_init(void) 1141 { 1142 if (efi_memreserve_root) 1143 return 0; 1144 if (efi_memreserve_map_root()) 1145 efi_memreserve_root = (void *)ULONG_MAX; 1146 return 0; 1147 } 1148 early_initcall(efi_memreserve_root_init); 1149 1150 #ifdef CONFIG_KEXEC update_efi_random_seed(struct notifier_block * nb,unsigned long code,void * unused)1151 static int update_efi_random_seed(struct notifier_block *nb, 1152 unsigned long code, void *unused) 1153 { 1154 struct linux_efi_random_seed *seed; 1155 u32 size = 0; 1156 1157 if (!kexec_in_progress) 1158 return NOTIFY_DONE; 1159 1160 seed = memremap(efi_rng_seed, sizeof(*seed), MEMREMAP_WB); 1161 if (seed != NULL) { 1162 size = min(seed->size, EFI_RANDOM_SEED_SIZE); 1163 memunmap(seed); 1164 } else { 1165 pr_err("Could not map UEFI random seed!\n"); 1166 } 1167 if (size > 0) { 1168 seed = memremap(efi_rng_seed, sizeof(*seed) + size, 1169 MEMREMAP_WB); 1170 if (seed != NULL) { 1171 seed->size = size; 1172 get_random_bytes(seed->bits, seed->size); 1173 memunmap(seed); 1174 } else { 1175 pr_err("Could not map UEFI random seed!\n"); 1176 } 1177 } 1178 return NOTIFY_DONE; 1179 } 1180 1181 static struct notifier_block efi_random_seed_nb = { 1182 .notifier_call = update_efi_random_seed, 1183 }; 1184 register_update_efi_random_seed(void)1185 static int __init register_update_efi_random_seed(void) 1186 { 1187 if (efi_rng_seed == EFI_INVALID_TABLE_ADDR) 1188 return 0; 1189 return register_reboot_notifier(&efi_random_seed_nb); 1190 } 1191 late_initcall(register_update_efi_random_seed); 1192 #endif 1193