2015-11-30 12:28:18 +00:00
|
|
|
/*
|
|
|
|
|
* Extensible Firmware Interface
|
|
|
|
|
*
|
|
|
|
|
* Based on Extensible Firmware Interface Specification version 2.4
|
|
|
|
|
*
|
|
|
|
|
* Copyright (C) 2013 - 2015 Linaro Ltd.
|
|
|
|
|
*
|
|
|
|
|
* This program is free software; you can redistribute it and/or modify
|
|
|
|
|
* it under the terms of the GNU General Public License version 2 as
|
|
|
|
|
* published by the Free Software Foundation.
|
|
|
|
|
*
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
#include <linux/efi.h>
|
|
|
|
|
#include <linux/init.h>
|
|
|
|
|
#include <linux/memblock.h>
|
|
|
|
|
#include <linux/mm_types.h>
|
|
|
|
|
#include <linux/of.h>
|
|
|
|
|
#include <linux/of_fdt.h>
|
|
|
|
|
|
|
|
|
|
#include <asm/efi.h>
|
|
|
|
|
|
|
|
|
|
u64 efi_system_table;
|
|
|
|
|
|
|
|
|
|
static int __init is_normal_ram(efi_memory_desc_t *md)
|
|
|
|
|
{
|
|
|
|
|
if (md->attribute & EFI_MEMORY_WB)
|
|
|
|
|
return 1;
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Translate a EFI virtual address into a physical address: this is necessary,
|
|
|
|
|
* as some data members of the EFI system table are virtually remapped after
|
|
|
|
|
* SetVirtualAddressMap() has been called.
|
|
|
|
|
*/
|
|
|
|
|
static phys_addr_t efi_to_phys(unsigned long addr)
|
|
|
|
|
{
|
|
|
|
|
efi_memory_desc_t *md;
|
|
|
|
|
|
2016-04-25 20:06:39 +00:00
|
|
|
for_each_efi_memory_desc(md) {
|
2015-11-30 12:28:18 +00:00
|
|
|
if (!(md->attribute & EFI_MEMORY_RUNTIME))
|
|
|
|
|
continue;
|
|
|
|
|
if (md->virt_addr == 0)
|
|
|
|
|
/* no virtual mapping has been installed by the stub */
|
|
|
|
|
break;
|
|
|
|
|
if (md->virt_addr <= addr &&
|
|
|
|
|
(addr - md->virt_addr) < (md->num_pages << EFI_PAGE_SHIFT))
|
|
|
|
|
return md->phys_addr + addr - md->virt_addr;
|
|
|
|
|
}
|
|
|
|
|
return addr;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static int __init uefi_init(void)
|
|
|
|
|
{
|
|
|
|
|
efi_char16_t *c16;
|
|
|
|
|
void *config_tables;
|
2015-11-30 12:28:19 +00:00
|
|
|
size_t table_size;
|
2015-11-30 12:28:18 +00:00
|
|
|
char vendor[100] = "unknown";
|
|
|
|
|
int i, retval;
|
|
|
|
|
|
2016-02-17 12:36:00 +00:00
|
|
|
efi.systab = early_memremap_ro(efi_system_table,
|
|
|
|
|
sizeof(efi_system_table_t));
|
2015-11-30 12:28:18 +00:00
|
|
|
if (efi.systab == NULL) {
|
|
|
|
|
pr_warn("Unable to map EFI system table.\n");
|
|
|
|
|
return -ENOMEM;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
set_bit(EFI_BOOT, &efi.flags);
|
2015-11-30 12:28:19 +00:00
|
|
|
if (IS_ENABLED(CONFIG_64BIT))
|
|
|
|
|
set_bit(EFI_64BIT, &efi.flags);
|
2015-11-30 12:28:18 +00:00
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Verify the EFI Table
|
|
|
|
|
*/
|
|
|
|
|
if (efi.systab->hdr.signature != EFI_SYSTEM_TABLE_SIGNATURE) {
|
|
|
|
|
pr_err("System table signature incorrect\n");
|
|
|
|
|
retval = -EINVAL;
|
|
|
|
|
goto out;
|
|
|
|
|
}
|
|
|
|
|
if ((efi.systab->hdr.revision >> 16) < 2)
|
|
|
|
|
pr_warn("Warning: EFI system table version %d.%02d, expected 2.00 or greater\n",
|
|
|
|
|
efi.systab->hdr.revision >> 16,
|
|
|
|
|
efi.systab->hdr.revision & 0xffff);
|
|
|
|
|
|
efi/arm*: Drop writable mapping of the UEFI System table
Commit:
2eec5dedf770 ("efi/arm-init: Use read-only early mappings")
updated the early ARM UEFI init code to create the temporary, early
mapping of the UEFI System table using read-only attributes, as a
hardening measure against inadvertent modification.
However, this still leaves the permanent, writable mapping of the UEFI
System table, which is only ever referenced during invocations of UEFI
Runtime Services, at which time the UEFI virtual mapping is available,
which also covers the system table. (This is guaranteed by the fact that
SetVirtualAddressMap(), which is a runtime service itself, converts
various entries in the table to their virtual equivalents, which implies
that the table must be covered by a RuntimeServicesData region that has
the EFI_MEMORY_RUNTIME attribute.)
So instead of creating this permanent mapping, record the virtual address
of the system table inside the UEFI virtual mapping, and dereference that
when accessing the table. This protects the contents of the system table
from inadvertent (or deliberate) modification when no UEFI Runtime
Services calls are in progress.
Signed-off-by: Ard Biesheuvel <ard.biesheuvel@linaro.org>
Signed-off-by: Matt Fleming <matt@codeblueprint.co.uk>
Cc: Borislav Petkov <bp@alien8.de>
Cc: Leif Lindholm <leif.lindholm@linaro.org>
Cc: Mark Rutland <mark.rutland@arm.com>
Cc: Peter Zijlstra <peterz@infradead.org>
Cc: Thomas Gleixner <tglx@linutronix.de>
Cc: linux-efi@vger.kernel.org
Link: http://lkml.kernel.org/r/1461614832-17633-3-git-send-email-matt@codeblueprint.co.uk
Signed-off-by: Ingo Molnar <mingo@kernel.org>
2016-04-25 20:06:34 +00:00
|
|
|
efi.runtime_version = efi.systab->hdr.revision;
|
|
|
|
|
|
2015-11-30 12:28:18 +00:00
|
|
|
/* Show what we know for posterity */
|
2016-02-17 12:36:00 +00:00
|
|
|
c16 = early_memremap_ro(efi_to_phys(efi.systab->fw_vendor),
|
|
|
|
|
sizeof(vendor) * sizeof(efi_char16_t));
|
2015-11-30 12:28:18 +00:00
|
|
|
if (c16) {
|
|
|
|
|
for (i = 0; i < (int) sizeof(vendor) - 1 && *c16; ++i)
|
|
|
|
|
vendor[i] = c16[i];
|
|
|
|
|
vendor[i] = '\0';
|
|
|
|
|
early_memunmap(c16, sizeof(vendor) * sizeof(efi_char16_t));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
pr_info("EFI v%u.%.02u by %s\n",
|
|
|
|
|
efi.systab->hdr.revision >> 16,
|
|
|
|
|
efi.systab->hdr.revision & 0xffff, vendor);
|
|
|
|
|
|
|
|
|
|
table_size = sizeof(efi_config_table_64_t) * efi.systab->nr_tables;
|
2016-02-17 12:36:00 +00:00
|
|
|
config_tables = early_memremap_ro(efi_to_phys(efi.systab->tables),
|
|
|
|
|
table_size);
|
2015-11-30 12:28:18 +00:00
|
|
|
if (config_tables == NULL) {
|
|
|
|
|
pr_warn("Unable to map EFI config table array.\n");
|
|
|
|
|
retval = -ENOMEM;
|
|
|
|
|
goto out;
|
|
|
|
|
}
|
|
|
|
|
retval = efi_config_parse_tables(config_tables, efi.systab->nr_tables,
|
2015-11-30 12:28:19 +00:00
|
|
|
sizeof(efi_config_table_t), NULL);
|
2015-11-30 12:28:18 +00:00
|
|
|
|
|
|
|
|
early_memunmap(config_tables, table_size);
|
|
|
|
|
out:
|
|
|
|
|
early_memunmap(efi.systab, sizeof(efi_system_table_t));
|
|
|
|
|
return retval;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Return true for RAM regions we want to permanently reserve.
|
|
|
|
|
*/
|
|
|
|
|
static __init int is_reserve_region(efi_memory_desc_t *md)
|
|
|
|
|
{
|
|
|
|
|
switch (md->type) {
|
|
|
|
|
case EFI_LOADER_CODE:
|
|
|
|
|
case EFI_LOADER_DATA:
|
|
|
|
|
case EFI_BOOT_SERVICES_CODE:
|
|
|
|
|
case EFI_BOOT_SERVICES_DATA:
|
|
|
|
|
case EFI_CONVENTIONAL_MEMORY:
|
|
|
|
|
case EFI_PERSISTENT_MEMORY:
|
|
|
|
|
return 0;
|
|
|
|
|
default:
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
return is_normal_ram(md);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static __init void reserve_regions(void)
|
|
|
|
|
{
|
|
|
|
|
efi_memory_desc_t *md;
|
|
|
|
|
u64 paddr, npages, size;
|
|
|
|
|
|
|
|
|
|
if (efi_enabled(EFI_DBG))
|
|
|
|
|
pr_info("Processing EFI memory map:\n");
|
|
|
|
|
|
2016-04-25 20:06:39 +00:00
|
|
|
for_each_efi_memory_desc(md) {
|
2015-11-30 12:28:18 +00:00
|
|
|
paddr = md->phys_addr;
|
|
|
|
|
npages = md->num_pages;
|
|
|
|
|
|
|
|
|
|
if (efi_enabled(EFI_DBG)) {
|
|
|
|
|
char buf[64];
|
|
|
|
|
|
|
|
|
|
pr_info(" 0x%012llx-0x%012llx %s",
|
|
|
|
|
paddr, paddr + (npages << EFI_PAGE_SHIFT) - 1,
|
|
|
|
|
efi_md_typeattr_format(buf, sizeof(buf), md));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
memrange_efi_to_native(&paddr, &npages);
|
|
|
|
|
size = npages << PAGE_SHIFT;
|
|
|
|
|
|
|
|
|
|
if (is_normal_ram(md))
|
|
|
|
|
early_init_dt_add_memory_arch(paddr, size);
|
|
|
|
|
|
|
|
|
|
if (is_reserve_region(md)) {
|
|
|
|
|
memblock_mark_nomap(paddr, size);
|
|
|
|
|
if (efi_enabled(EFI_DBG))
|
|
|
|
|
pr_cont("*");
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (efi_enabled(EFI_DBG))
|
|
|
|
|
pr_cont("\n");
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
set_bit(EFI_MEMMAP, &efi.flags);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
void __init efi_init(void)
|
|
|
|
|
{
|
|
|
|
|
struct efi_fdt_params params;
|
|
|
|
|
|
|
|
|
|
/* Grab UEFI information placed in FDT by stub */
|
|
|
|
|
if (!efi_get_fdt_params(¶ms))
|
|
|
|
|
return;
|
|
|
|
|
|
|
|
|
|
efi_system_table = params.system_table;
|
|
|
|
|
|
2016-04-25 20:06:39 +00:00
|
|
|
efi.memmap.phys_map = params.mmap;
|
|
|
|
|
efi.memmap.map = early_memremap_ro(params.mmap, params.mmap_size);
|
|
|
|
|
if (efi.memmap.map == NULL) {
|
2015-11-30 12:28:18 +00:00
|
|
|
/*
|
|
|
|
|
* If we are booting via UEFI, the UEFI memory map is the only
|
|
|
|
|
* description of memory we have, so there is little point in
|
|
|
|
|
* proceeding if we cannot access it.
|
|
|
|
|
*/
|
|
|
|
|
panic("Unable to map EFI memory map.\n");
|
|
|
|
|
}
|
2016-04-25 20:06:39 +00:00
|
|
|
efi.memmap.map_end = efi.memmap.map + params.mmap_size;
|
|
|
|
|
efi.memmap.desc_size = params.desc_size;
|
|
|
|
|
efi.memmap.desc_version = params.desc_ver;
|
2015-11-30 12:28:18 +00:00
|
|
|
|
|
|
|
|
if (uefi_init() < 0)
|
|
|
|
|
return;
|
|
|
|
|
|
|
|
|
|
reserve_regions();
|
2016-04-25 20:06:39 +00:00
|
|
|
early_memunmap(efi.memmap.map, params.mmap_size);
|
efi/arm64: Don't apply MEMBLOCK_NOMAP to UEFI memory map mapping
Commit 4dffbfc48d65 ("arm64/efi: mark UEFI reserved regions as
MEMBLOCK_NOMAP") updated the mapping logic of both the RuntimeServices
regions as well as the kernel's copy of the UEFI memory map to set the
MEMBLOCK_NOMAP flag, which causes these regions to be omitted from the
kernel direct mapping, and from being covered by a struct page.
For the RuntimeServices regions, this is an obvious win, since the contents
of these regions have significance to the firmware executable code itself,
and are mapped in the EFI page tables using attributes that are described in
the UEFI memory map, and which may differ from the attributes we use for
mapping system RAM. It also prevents the contents from being modified
inadvertently, since the EFI page tables are only live during runtime
service invocations.
None of these concerns apply to the allocation that covers the UEFI memory
map, since it is entirely owned by the kernel. Setting the MEMBLOCK_NOMAP on
the region did allow us to use ioremap_cache() to map it both on arm64 and
on ARM, since the latter does not allow ioremap_cache() to be used on
regions that are covered by a struct page.
The ioremap_cache() on ARM restriction will be lifted in the v4.7 timeframe,
but in the mean time, it has been reported that commit 4dffbfc48d65 causes
a regression on 64k granule kernels. This is due to the fact that, given
the 64 KB page size, the region that we end up removing from the kernel
direct mapping is rounded up to 64 KB, and this 64 KB page frame may be
shared with the initrd when booting via GRUB (which does not align its
EFI_LOADER_DATA allocations to 64 KB like the stub does). This will crash
the kernel as soon as it tries to access the initrd.
Since the issue is specific to arm64, revert back to memblock_reserve()'ing
the UEFI memory map when running on arm64. This is a temporary fix for v4.5
and v4.6, and will be superseded in the v4.7 timeframe when we will be able
to move back to memblock_reserve() unconditionally.
Fixes: 4dffbfc48d65 ("arm64/efi: mark UEFI reserved regions as MEMBLOCK_NOMAP")
Reported-by: Mark Salter <msalter@redhat.com>
Signed-off-by: Ard Biesheuvel <ard.biesheuvel@linaro.org>
Acked-by: Will Deacon <will.deacon@arm.com>
Cc: Leif Lindholm <leif.lindholm@linaro.org>
Cc: Mark Rutland <mark.rutland@arm.com>
Cc: Jeremy Linton <jeremy.linton@arm.com>
Cc: Mark Langsdorf <mlangsdo@redhat.com>
Cc: <stable@vger.kernel.org> # v4.5
Signed-off-by: Matt Fleming <matt@codeblueprint.co.uk>
2016-03-30 07:46:23 +00:00
|
|
|
|
|
|
|
|
if (IS_ENABLED(CONFIG_ARM)) {
|
|
|
|
|
/*
|
|
|
|
|
* ARM currently does not allow ioremap_cache() to be called on
|
|
|
|
|
* memory regions that are covered by struct page. So remove the
|
|
|
|
|
* UEFI memory map from the linear mapping.
|
|
|
|
|
*/
|
|
|
|
|
memblock_mark_nomap(params.mmap & PAGE_MASK,
|
|
|
|
|
PAGE_ALIGN(params.mmap_size +
|
|
|
|
|
(params.mmap & ~PAGE_MASK)));
|
|
|
|
|
} else {
|
|
|
|
|
memblock_reserve(params.mmap & PAGE_MASK,
|
|
|
|
|
PAGE_ALIGN(params.mmap_size +
|
|
|
|
|
(params.mmap & ~PAGE_MASK)));
|
|
|
|
|
}
|
2015-11-30 12:28:18 +00:00
|
|
|
}
|