[thirdparty/systemd.git] / src / shared / efivars.c

/* SPDX-License-Identifier: LGPL-2.1+ */

#include <dirent.h>
#include <errno.h>
#include <fcntl.h>
#include <limits.h>
#include <stdio.h>
#include <stdlib.h>
#include <string.h>
#include <sys/stat.h>
#include <unistd.h>

#include "sd-id128.h"

#include "alloc-util.h"
#include "dirent-util.h"
#include "efivars.h"
#include "fd-util.h"
#include "io-util.h"
#include "macro.h"
#include "parse-util.h"
#include "stdio-util.h"
#include "time-util.h"
#include "utf8.h"
#include "util.h"
#include "virt.h"

#if ENABLE_EFI

#define LOAD_OPTION_ACTIVE            0x00000001
#define MEDIA_DEVICE_PATH                   0x04
#define MEDIA_HARDDRIVE_DP                  0x01
#define MEDIA_FILEPATH_DP                   0x04
#define SIGNATURE_TYPE_GUID                 0x02
#define MBR_TYPE_EFI_PARTITION_TABLE_HEADER 0x02
#define END_DEVICE_PATH_TYPE                0x7f
#define END_ENTIRE_DEVICE_PATH_SUBTYPE      0xff
#define EFI_OS_INDICATIONS_BOOT_TO_FW_UI    0x0000000000000001

struct boot_option {
        uint32_t attr;
        uint16_t path_len;
        uint16_t title[];
} _packed_;

struct drive_path {
        uint32_t part_nr;
        uint64_t part_start;
        uint64_t part_size;
        char signature[16];
        uint8_t mbr_type;
        uint8_t signature_type;
} _packed_;

struct device_path {
        uint8_t type;
        uint8_t sub_type;
        uint16_t length;
        union {
                uint16_t path[0];
                struct drive_path drive;
        };
} _packed_;

bool is_efi_boot(void) {
        if (detect_container() > 0)
                return false;

        return access("/sys/firmware/efi/", F_OK) >= 0;
}

static int read_flag(const char *varname) {
        _cleanup_free_ void *v = NULL;
        uint8_t b;
        size_t s;
        int r;

        r = efi_get_variable(EFI_VENDOR_GLOBAL, varname, NULL, &v, &s);
        if (r < 0)
                return r;

        if (s != 1)
                return -EINVAL;

        b = *(uint8_t *)v;
        return b > 0;
}

bool is_efi_secure_boot(void) {
        return read_flag("SecureBoot") > 0;
}

bool is_efi_secure_boot_setup_mode(void) {
        return read_flag("SetupMode") > 0;
}

int efi_reboot_to_firmware_supported(void) {
        _cleanup_free_ void *v = NULL;
        uint64_t b;
        size_t s;
        int r;

        if (!is_efi_boot())
                return -EOPNOTSUPP;

        r = efi_get_variable(EFI_VENDOR_GLOBAL, "OsIndicationsSupported", NULL, &v, &s);
        if (r == -ENOENT) /* variable doesn't exist? it's not supported then */
                return -EOPNOTSUPP;
        if (r < 0)
                return r;
        if (s != sizeof(uint64_t))
                return -EINVAL;

        b = *(uint64_t*) v;
        if (!(b & EFI_OS_INDICATIONS_BOOT_TO_FW_UI))
                return -EOPNOTSUPP; /* bit unset? it's not supported then */

        return 0;
}

static int get_os_indications(uint64_t *os_indication) {
        _cleanup_free_ void *v = NULL;
        size_t s;
        int r;

        r = efi_reboot_to_firmware_supported();
        if (r < 0)
                return r;

        r = efi_get_variable(EFI_VENDOR_GLOBAL, "OsIndications", NULL, &v, &s);
        if (r == -ENOENT) {
                /* Some firmware implementations that do support
                 * OsIndications and report that with
                 * OsIndicationsSupported will remove the
                 * OsIndications variable when it is unset. Let's
                 * pretend it's 0 then, to hide this implementation
                 * detail. Note that this call will return -ENOENT
                 * then only if the support for OsIndications is
                 * missing entirely, as determined by
                 * efi_reboot_to_firmware_supported() above. */
                *os_indication = 0;
                return 0;
        } else if (r < 0)
                return r;
        else if (s != sizeof(uint64_t))
                return -EINVAL;

        *os_indication = *(uint64_t *)v;
        return 0;
}

int efi_get_reboot_to_firmware(void) {
        int r;
        uint64_t b;

        r = get_os_indications(&b);
        if (r < 0)
                return r;

        return !!(b & EFI_OS_INDICATIONS_BOOT_TO_FW_UI);
}

int efi_set_reboot_to_firmware(bool value) {
        int r;
        uint64_t b, b_new;

        r = get_os_indications(&b);
        if (r < 0)
                return r;

        if (value)
                b_new = b | EFI_OS_INDICATIONS_BOOT_TO_FW_UI;
        else
                b_new = b & ~EFI_OS_INDICATIONS_BOOT_TO_FW_UI;

        /* Avoid writing to efi vars store if we can due to firmware bugs. */
        if (b != b_new)
                return efi_set_variable(EFI_VENDOR_GLOBAL, "OsIndications", &b_new, sizeof(uint64_t));

        return 0;
}

int efi_get_variable(
                sd_id128_t vendor,
                const char *name,
                uint32_t *attribute,
                void **value,
                size_t *size) {

        _cleanup_close_ int fd = -1;
        _cleanup_free_ char *p = NULL;
        uint32_t a;
        ssize_t n;
        struct stat st;
        _cleanup_free_ void *buf = NULL;

        assert(name);
        assert(value);
        assert(size);

        if (asprintf(&p,
                     "/sys/firmware/efi/efivars/%s-%02x%02x%02x%02x-%02x%02x-%02x%02x-%02x%02x-%02x%02x%02x%02x%02x%02x",
                     name, SD_ID128_FORMAT_VAL(vendor)) < 0)
                return -ENOMEM;

        fd = open(p, O_RDONLY|O_NOCTTY|O_CLOEXEC);
        if (fd < 0)
                return -errno;

        if (fstat(fd, &st) < 0)
                return -errno;
        if (st.st_size < 4)
                return -EIO;
        if (st.st_size > 4*1024*1024 + 4)
                return -E2BIG;

        n = read(fd, &a, sizeof(a));
        if (n < 0)
                return -errno;
        if (n != sizeof(a))
                return -EIO;

        buf = malloc(st.st_size - 4 + 2);
        if (!buf)
                return -ENOMEM;

        n = read(fd, buf, (size_t) st.st_size - 4);
        if (n < 0)
                return -errno;
        if (n != (ssize_t) st.st_size - 4)
                return -EIO;

        /* Always NUL terminate (2 bytes, to protect UTF-16) */
        ((char*) buf)[st.st_size - 4] = 0;
        ((char*) buf)[st.st_size - 4 + 1] = 0;

        *value = TAKE_PTR(buf);
        *size = (size_t) st.st_size - 4;

        if (attribute)
                *attribute = a;

        return 0;
}

int efi_set_variable(
                sd_id128_t vendor,
                const char *name,
                const void *value,
                size_t size) {

        struct var {
                uint32_t attr;
                char buf[];
        } _packed_ * _cleanup_free_ buf = NULL;
        _cleanup_free_ char *p = NULL;
        _cleanup_close_ int fd = -1;

        assert(name);
        assert(value || size == 0);

        if (asprintf(&p,
                     "/sys/firmware/efi/efivars/%s-%02x%02x%02x%02x-%02x%02x-%02x%02x-%02x%02x-%02x%02x%02x%02x%02x%02x",
                     name, SD_ID128_FORMAT_VAL(vendor)) < 0)
                return -ENOMEM;

        if (size == 0) {
                if (unlink(p) < 0)
                        return -errno;
                return 0;
        }

        fd = open(p, O_WRONLY|O_CREAT|O_NOCTTY|O_CLOEXEC, 0644);
        if (fd < 0)
                return -errno;

        buf = malloc(sizeof(uint32_t) + size);
        if (!buf)
                return -ENOMEM;

        buf->attr = EFI_VARIABLE_NON_VOLATILE|EFI_VARIABLE_BOOTSERVICE_ACCESS|EFI_VARIABLE_RUNTIME_ACCESS;
        memcpy(buf->buf, value, size);

        return loop_write(fd, buf, sizeof(uint32_t) + size, false);
}

int efi_get_variable_string(sd_id128_t vendor, const char *name, char **p) {
        _cleanup_free_ void *s = NULL;
        size_t ss = 0;
        int r;
        char *x;

        r = efi_get_variable(vendor, name, NULL, &s, &ss);
        if (r < 0)
                return r;

        x = utf16_to_utf8(s, ss);
        if (!x)
                return -ENOMEM;

        *p = x;
        return 0;
}

static size_t utf16_size(const uint16_t *s) {
        size_t l = 0;

        while (s[l] > 0)
                l++;

        return (l+1) * sizeof(uint16_t);
}

static void efi_guid_to_id128(const void *guid, sd_id128_t *id128) {
        struct uuid {
                uint32_t u1;
                uint16_t u2;
                uint16_t u3;
                uint8_t u4[8];
        } _packed_;
        const struct uuid *uuid = guid;

        id128->bytes[0] = (uuid->u1 >> 24) & 0xff;
        id128->bytes[1] = (uuid->u1 >> 16) & 0xff;
        id128->bytes[2] = (uuid->u1 >> 8) & 0xff;
        id128->bytes[3] = (uuid->u1) & 0xff;
        id128->bytes[4] = (uuid->u2 >> 8) & 0xff;
        id128->bytes[5] = (uuid->u2) & 0xff;
        id128->bytes[6] = (uuid->u3 >> 8) & 0xff;
        id128->bytes[7] = (uuid->u3) & 0xff;
        memcpy(&id128->bytes[8], uuid->u4, sizeof(uuid->u4));
}

int efi_get_boot_option(
                uint16_t id,
                char **title,
                sd_id128_t *part_uuid,
                char **path,
                bool *active) {

        char boot_id[9];
        _cleanup_free_ uint8_t *buf = NULL;
        size_t l;
        struct boot_option *header;
        size_t title_size;
        _cleanup_free_ char *s = NULL, *p = NULL;
        sd_id128_t p_uuid = SD_ID128_NULL;
        int r;

        xsprintf(boot_id, "Boot%04X", id);
        r = efi_get_variable(EFI_VENDOR_GLOBAL, boot_id, NULL, (void **)&buf, &l);
        if (r < 0)
                return r;
        if (l < sizeof(struct boot_option))
                return -ENOENT;

        header = (struct boot_option *)buf;
        title_size = utf16_size(header->title);
        if (title_size > l - offsetof(struct boot_option, title))
                return -EINVAL;

        if (title) {
                s = utf16_to_utf8(header->title, title_size);
                if (!s)
                        return -ENOMEM;
        }

        if (header->path_len > 0) {
                uint8_t *dbuf;
                size_t dnext;

                dbuf = buf + offsetof(struct boot_option, title) + title_size;
                dnext = 0;
                while (dnext < header->path_len) {
                        struct device_path *dpath;

                        dpath = (struct device_path *)(dbuf + dnext);
                        if (dpath->length < 4)
                                break;

                        /* Type 0x7F – End of Hardware Device Path, Sub-Type 0xFF – End Entire Device Path */
                        if (dpath->type == END_DEVICE_PATH_TYPE && dpath->sub_type == END_ENTIRE_DEVICE_PATH_SUBTYPE)
                                break;

                        dnext += dpath->length;

                        /* Type 0x04 – Media Device Path */
                        if (dpath->type != MEDIA_DEVICE_PATH)
                                continue;

                        /* Sub-Type 1 – Hard Drive */
                        if (dpath->sub_type == MEDIA_HARDDRIVE_DP) {
                                /* 0x02 – GUID Partition Table */
                                if (dpath->drive.mbr_type != MBR_TYPE_EFI_PARTITION_TABLE_HEADER)
                                        continue;

                                /* 0x02 – GUID signature */
                                if (dpath->drive.signature_type != SIGNATURE_TYPE_GUID)
                                        continue;

                                if (part_uuid)
                                        efi_guid_to_id128(dpath->drive.signature, &p_uuid);
                                continue;
                        }

                        /* Sub-Type 4 – File Path */
                        if (dpath->sub_type == MEDIA_FILEPATH_DP && !p && path) {
                                p = utf16_to_utf8(dpath->path, dpath->length-4);
                                efi_tilt_backslashes(p);
                                continue;
                        }
                }
        }

        if (title)
                *title = TAKE_PTR(s);
        if (part_uuid)
                *part_uuid = p_uuid;
        if (path)
                *path = TAKE_PTR(p);
        if (active)
                *active = !!(header->attr & LOAD_OPTION_ACTIVE);

        return 0;
}

static void to_utf16(uint16_t *dest, const char *src) {
        int i;

        for (i = 0; src[i] != '\0'; i++)
                dest[i] = src[i];
        dest[i] = '\0';
}

struct guid {
        uint32_t u1;
        uint16_t u2;
        uint16_t u3;
        uint8_t u4[8];
} _packed_;

static void id128_to_efi_guid(sd_id128_t id, void *guid) {
        struct guid *uuid = guid;

        uuid->u1 = id.bytes[0] << 24 | id.bytes[1] << 16 | id.bytes[2] << 8 | id.bytes[3];
        uuid->u2 = id.bytes[4] << 8 | id.bytes[5];
        uuid->u3 = id.bytes[6] << 8 | id.bytes[7];
        memcpy(uuid->u4, id.bytes+8, sizeof(uuid->u4));
}

static uint16_t *tilt_slashes(uint16_t *s) {
        uint16_t *p;

        for (p = s; *p; p++)
                if (*p == '/')
                        *p = '\\';

        return s;
}

int efi_add_boot_option(uint16_t id, const char *title,
                        uint32_t part, uint64_t pstart, uint64_t psize,
                        sd_id128_t part_uuid, const char *path) {
        char boot_id[9];
        size_t size;
        size_t title_len;
        size_t path_len;
        struct boot_option *option;
        struct device_path *devicep;
        _cleanup_free_ char *buf = NULL;

        title_len = (strlen(title)+1) * 2;
        path_len = (strlen(path)+1) * 2;

        buf = calloc(sizeof(struct boot_option) + title_len +
                     sizeof(struct drive_path) +
                     sizeof(struct device_path) + path_len, 1);
        if (!buf)
                return -ENOMEM;

        /* header */
        option = (struct boot_option *)buf;
        option->attr = LOAD_OPTION_ACTIVE;
        option->path_len = offsetof(struct device_path, drive) + sizeof(struct drive_path) +
                           offsetof(struct device_path, path) + path_len +
                           offsetof(struct device_path, path);
        to_utf16(option->title, title);
        size = offsetof(struct boot_option, title) + title_len;

        /* partition info */
        devicep = (struct device_path *)(buf + size);
        devicep->type = MEDIA_DEVICE_PATH;
        devicep->sub_type = MEDIA_HARDDRIVE_DP;
        devicep->length = offsetof(struct device_path, drive) + sizeof(struct drive_path);
        devicep->drive.part_nr = part;
        devicep->drive.part_start = pstart;
        devicep->drive.part_size = psize;
        devicep->drive.signature_type = SIGNATURE_TYPE_GUID;
        devicep->drive.mbr_type = MBR_TYPE_EFI_PARTITION_TABLE_HEADER;
        id128_to_efi_guid(part_uuid, devicep->drive.signature);
        size += devicep->length;

        /* path to loader */
        devicep = (struct device_path *)(buf + size);
        devicep->type = MEDIA_DEVICE_PATH;
        devicep->sub_type = MEDIA_FILEPATH_DP;
        devicep->length = offsetof(struct device_path, path) + path_len;
        to_utf16(devicep->path, path);
        tilt_slashes(devicep->path);
        size += devicep->length;

        /* end of path */
        devicep = (struct device_path *)(buf + size);
        devicep->type = END_DEVICE_PATH_TYPE;
        devicep->sub_type = END_ENTIRE_DEVICE_PATH_SUBTYPE;
        devicep->length = offsetof(struct device_path, path);
        size += devicep->length;

        xsprintf(boot_id, "Boot%04X", id);
        return efi_set_variable(EFI_VENDOR_GLOBAL, boot_id, buf, size);
}

int efi_remove_boot_option(uint16_t id) {
        char boot_id[9];

        xsprintf(boot_id, "Boot%04X", id);
        return efi_set_variable(EFI_VENDOR_GLOBAL, boot_id, NULL, 0);
}

int efi_get_boot_order(uint16_t **order) {
        _cleanup_free_ void *buf = NULL;
        size_t l;
        int r;

        r = efi_get_variable(EFI_VENDOR_GLOBAL, "BootOrder", NULL, &buf, &l);
        if (r < 0)
                return r;

        if (l <= 0)
                return -ENOENT;

        if (l % sizeof(uint16_t) > 0 ||
            l / sizeof(uint16_t) > INT_MAX)
                return -EINVAL;

        *order = TAKE_PTR(buf);
        return (int) (l / sizeof(uint16_t));
}

int efi_set_boot_order(uint16_t *order, size_t n) {
        return efi_set_variable(EFI_VENDOR_GLOBAL, "BootOrder", order, n * sizeof(uint16_t));
}

static int boot_id_hex(const char s[4]) {
        int i;
        int id = 0;

        for (i = 0; i < 4; i++)
                if (s[i] >= '0' && s[i] <= '9')
                        id |= (s[i] - '0') << (3 - i) * 4;
                else if (s[i] >= 'A' && s[i] <= 'F')
                        id |= (s[i] - 'A' + 10) << (3 - i) * 4;
                else
                        return -EINVAL;

        return id;
}

static int cmp_uint16(const uint16_t *a, const uint16_t *b) {
        return CMP(*a, *b);
}

int efi_get_boot_options(uint16_t **options) {
        _cleanup_closedir_ DIR *dir = NULL;
        struct dirent *de;
        _cleanup_free_ uint16_t *list = NULL;
        size_t alloc = 0;
        int count = 0;

        assert(options);

        dir = opendir("/sys/firmware/efi/efivars/");
        if (!dir)
                return -errno;

        FOREACH_DIRENT(de, dir, return -errno) {
                int id;

                if (strncmp(de->d_name, "Boot", 4) != 0)
                        continue;

                if (strlen(de->d_name) != 45)
                        continue;

                if (strcmp(de->d_name + 8, "-8be4df61-93ca-11d2-aa0d-00e098032b8c") != 0)
                        continue;

                id = boot_id_hex(de->d_name + 4);
                if (id < 0)
                        continue;

                if (!GREEDY_REALLOC(list, alloc, count + 1))
                        return -ENOMEM;

                list[count++] = id;
        }

        typesafe_qsort(list, count, cmp_uint16);

        *options = TAKE_PTR(list);

        return count;
}

static int read_usec(sd_id128_t vendor, const char *name, usec_t *u) {
        _cleanup_free_ char *j = NULL;
        int r;
        uint64_t x = 0;

        assert(name);
        assert(u);

        r = efi_get_variable_string(EFI_VENDOR_LOADER, name, &j);
        if (r < 0)
                return r;

        r = safe_atou64(j, &x);
        if (r < 0)
                return r;

        *u = x;
        return 0;
}

int efi_loader_get_boot_usec(usec_t *firmware, usec_t *loader) {
        uint64_t x, y;
        int r;

        assert(firmware);
        assert(loader);

        r = read_usec(EFI_VENDOR_LOADER, "LoaderTimeInitUSec", &x);
        if (r < 0)
                return r;

        r = read_usec(EFI_VENDOR_LOADER, "LoaderTimeExecUSec", &y);
        if (r < 0)
                return r;

        if (y == 0 || y < x)
                return -EIO;

        if (y > USEC_PER_HOUR)
                return -EIO;

        *firmware = x;
        *loader = y;

        return 0;
}

int efi_loader_get_device_part_uuid(sd_id128_t *u) {
        _cleanup_free_ char *p = NULL;
        int r, parsed[16];

        r = efi_get_variable_string(EFI_VENDOR_LOADER, "LoaderDevicePartUUID", &p);
        if (r < 0)
                return r;

        if (sscanf(p, "%02x%02x%02x%02x-%02x%02x-%02x%02x-%02x%02x-%02x%02x%02x%02x%02x%02x",
                   &parsed[0], &parsed[1], &parsed[2], &parsed[3],
                   &parsed[4], &parsed[5], &parsed[6], &parsed[7],
                   &parsed[8], &parsed[9], &parsed[10], &parsed[11],
                   &parsed[12], &parsed[13], &parsed[14], &parsed[15]) != 16)
                return -EIO;

        if (u) {
                unsigned i;

                for (i = 0; i < ELEMENTSOF(parsed); i++)
                        u->bytes[i] = parsed[i];
        }

        return 0;
}

#endif

char *efi_tilt_backslashes(char *s) {
        char *p;

        for (p = s; *p; p++)
                if (*p == '\\')
                        *p = '/';

        return s;
}
Commit	Line	Data
53e1b683	1	/* SPDX-License-Identifier: LGPL-2.1+ */
2e3d0692	2
a8fbdf54 TA	3	#include <dirent.h>
a8fbdf54 TA	4	#include <errno.h>
2e3d0692	5	#include <fcntl.h>
a8fbdf54 TA	6	#include <limits.h>
	7	#include <stdio.h>
	8	#include <stdlib.h>
cf0fbc49	9	#include <string.h>
a8fbdf54	10	#include <sys/stat.h>
cf0fbc49	11	#include <unistd.h>
2e3d0692	12
a8fbdf54 TA	13	#include "sd-id128.h"
a8fbdf54 TA	14
b5efdb8a	15	#include "alloc-util.h"
a0956174	16	#include "dirent-util.h"
3ffd4af2 LP	17	#include "efivars.h"
3ffd4af2 LP	18	#include "fd-util.h"
c004493c	19	#include "io-util.h"
a8fbdf54	20	#include "macro.h"
6bedfcbb	21	#include "parse-util.h"
15a5e950	22	#include "stdio-util.h"
a8fbdf54	23	#include "time-util.h"
2e3d0692	24	#include "utf8.h"
3ffd4af2	25	#include "util.h"
5bdf2243	26	#include "virt.h"
2e3d0692	27
349cc4a5	28	#if ENABLE_EFI
b872e9a0	29
0974a682 KS	30	#define LOAD_OPTION_ACTIVE 0x00000001
	31	#define MEDIA_DEVICE_PATH 0x04
	32	#define MEDIA_HARDDRIVE_DP 0x01
	33	#define MEDIA_FILEPATH_DP 0x04
	34	#define SIGNATURE_TYPE_GUID 0x02
	35	#define MBR_TYPE_EFI_PARTITION_TABLE_HEADER 0x02
	36	#define END_DEVICE_PATH_TYPE 0x7f
	37	#define END_ENTIRE_DEVICE_PATH_SUBTYPE 0xff
5bdf2243	38	#define EFI_OS_INDICATIONS_BOOT_TO_FW_UI 0x0000000000000001
0974a682 KS	39
	40	struct boot_option {
	41	uint32_t attr;
	42	uint16_t path_len;
	43	uint16_t title[];
885fdebc	44	} _packed_;
0974a682 KS	45
	46	struct drive_path {
	47	uint32_t part_nr;
	48	uint64_t part_start;
	49	uint64_t part_size;
	50	char signature[16];
	51	uint8_t mbr_type;
	52	uint8_t signature_type;
885fdebc	53	} _packed_;
0974a682 KS	54
	55	struct device_path {
	56	uint8_t type;
	57	uint8_t sub_type;
	58	uint16_t length;
	59	union {
	60	uint16_t path[0];
	61	struct drive_path drive;
	62	};
885fdebc	63	} _packed_;
0974a682	64
9cde64ff	65	bool is_efi_boot(void) {
bb161cdc LP	66	if (detect_container() > 0)
	67	return false;
	68
	69	return access("/sys/firmware/efi/", F_OK) >= 0;
34e5a31e LP	70	}
34e5a31e LP	71
bc6f2e7c	72	static int read_flag(const char *varname) {
b47d419c	73	_cleanup_free_ void *v = NULL;
bc6f2e7c	74	uint8_t b;
e22c567f LP	75	size_t s;
e22c567f LP	76	int r;
bc6f2e7c KS	77
	78	r = efi_get_variable(EFI_VENDOR_GLOBAL, varname, NULL, &v, &s);
	79	if (r < 0)
	80	return r;
	81
b47d419c ZJS	82	if (s != 1)
b47d419c ZJS	83	return -EINVAL;
bc6f2e7c KS	84
bc6f2e7c KS	85	b = (uint8_t )v;
e22c567f	86	return b > 0;
bc6f2e7c KS	87	}
bc6f2e7c KS	88
9df49b33 TG	89	bool is_efi_secure_boot(void) {
9df49b33 TG	90	return read_flag("SecureBoot") > 0;
bc6f2e7c KS	91	}
bc6f2e7c KS	92
9df49b33 TG	93	bool is_efi_secure_boot_setup_mode(void) {
9df49b33 TG	94	return read_flag("SetupMode") > 0;
bc6f2e7c KS	95	}
bc6f2e7c KS	96
5bdf2243	97	int efi_reboot_to_firmware_supported(void) {
5bdf2243	98	_cleanup_free_ void *v = NULL;
e22c567f LP	99	uint64_t b;
	100	size_t s;
	101	int r;
5bdf2243	102
bb161cdc	103	if (!is_efi_boot())
5bdf2243 JJ	104	return -EOPNOTSUPP;
	105
	106	r = efi_get_variable(EFI_VENDOR_GLOBAL, "OsIndicationsSupported", NULL, &v, &s);
846ab104 LP	107	if (r == -ENOENT) /* variable doesn't exist? it's not supported then */
846ab104 LP	108	return -EOPNOTSUPP;
5bdf2243 JJ	109	if (r < 0)
5bdf2243 JJ	110	return r;
e22c567f	111	if (s != sizeof(uint64_t))
5bdf2243 JJ	112	return -EINVAL;
5bdf2243 JJ	113
e22c567f LP	114	b = (uint64_t) v;
	115	if (!(b & EFI_OS_INDICATIONS_BOOT_TO_FW_UI))
	116	return -EOPNOTSUPP; /* bit unset? it's not supported then */
	117
	118	return 0;
5bdf2243 JJ	119	}
	120
	121	static int get_os_indications(uint64_t *os_indication) {
5bdf2243	122	_cleanup_free_ void *v = NULL;
e22c567f LP	123	size_t s;
e22c567f LP	124	int r;
5bdf2243 JJ	125
	126	r = efi_reboot_to_firmware_supported();
	127	if (r < 0)
	128	return r;
	129
	130	r = efi_get_variable(EFI_VENDOR_GLOBAL, "OsIndications", NULL, &v, &s);
6b62bbbc LP	131	if (r == -ENOENT) {
	132	/* Some firmware implementations that do support
	133	* OsIndications and report that with
	134	* OsIndicationsSupported will remove the
	135	* OsIndications variable when it is unset. Let's
	136	* pretend it's 0 then, to hide this implementation
	137	* detail. Note that this call will return -ENOENT
	138	* then only if the support for OsIndications is
	139	* missing entirely, as determined by
	140	* efi_reboot_to_firmware_supported() above. */
	141	*os_indication = 0;
	142	return 0;
	143	} else if (r < 0)
5bdf2243 JJ	144	return r;
	145	else if (s != sizeof(uint64_t))
	146	return -EINVAL;
	147
	148	os_indication = (uint64_t *)v;
	149	return 0;
	150	}
	151
	152	int efi_get_reboot_to_firmware(void) {
	153	int r;
	154	uint64_t b;
	155
	156	r = get_os_indications(&b);
	157	if (r < 0)
	158	return r;
	159
	160	return !!(b & EFI_OS_INDICATIONS_BOOT_TO_FW_UI);
	161	}
	162
	163	int efi_set_reboot_to_firmware(bool value) {
	164	int r;
	165	uint64_t b, b_new;
	166
	167	r = get_os_indications(&b);
	168	if (r < 0)
	169	return r;
	170
	171	if (value)
	172	b_new = b \| EFI_OS_INDICATIONS_BOOT_TO_FW_UI;
	173	else
	174	b_new = b & ~EFI_OS_INDICATIONS_BOOT_TO_FW_UI;
	175
	176	/* Avoid writing to efi vars store if we can due to firmware bugs. */
	177	if (b != b_new)
	178	return efi_set_variable(EFI_VENDOR_GLOBAL, "OsIndications", &b_new, sizeof(uint64_t));
	179
	180	return 0;
	181	}
	182
9cde64ff LP	183	int efi_get_variable(
	184	sd_id128_t vendor,
	185	const char *name,
	186	uint32_t *attribute,
	187	void **value,
	188	size_t *size) {
	189
2e3d0692 LP	190	_cleanup_close_ int fd = -1;
	191	_cleanup_free_ char *p = NULL;
	192	uint32_t a;
	193	ssize_t n;
	194	struct stat st;
ad7bcf52	195	_cleanup_free_ void *buf = NULL;
2e3d0692 LP	196
	197	assert(name);
	198	assert(value);
	199	assert(size);
	200
	201	if (asprintf(&p,
	202	"/sys/firmware/efi/efivars/%s-%02x%02x%02x%02x-%02x%02x-%02x%02x-%02x%02x-%02x%02x%02x%02x%02x%02x",
	203	name, SD_ID128_FORMAT_VAL(vendor)) < 0)
	204	return -ENOMEM;
	205
	206	fd = open(p, O_RDONLY\|O_NOCTTY\|O_CLOEXEC);
	207	if (fd < 0)
	208	return -errno;
	209
	210	if (fstat(fd, &st) < 0)
	211	return -errno;
	212	if (st.st_size < 4)
	213	return -EIO;
	214	if (st.st_size > 410241024 + 4)
	215	return -E2BIG;
	216
	217	n = read(fd, &a, sizeof(a));
	218	if (n < 0)
9cde64ff	219	return -errno;
2e3d0692 LP	220	if (n != sizeof(a))
	221	return -EIO;
	222
0797f232 ZJS	223	buf = malloc(st.st_size - 4 + 2);
0797f232 ZJS	224	if (!buf)
2e3d0692 LP	225	return -ENOMEM;
2e3d0692 LP	226
0797f232 ZJS	227	n = read(fd, buf, (size_t) st.st_size - 4);
0797f232 ZJS	228	if (n < 0)
742af54a	229	return -errno;
0797f232	230	if (n != (ssize_t) st.st_size - 4)
2e3d0692	231	return -EIO;
2e3d0692 LP	232
2e3d0692 LP	233	/* Always NUL terminate (2 bytes, to protect UTF-16) */
0797f232 ZJS	234	((char*) buf)[st.st_size - 4] = 0;
0797f232 ZJS	235	((char*) buf)[st.st_size - 4 + 1] = 0;
2e3d0692	236
ae2a15bc	237	*value = TAKE_PTR(buf);
ff47c895	238	*size = (size_t) st.st_size - 4;
2e3d0692 LP	239
	240	if (attribute)
	241	*attribute = a;
	242
	243	return 0;
	244	}
	245
0974a682 KS	246	int efi_set_variable(
	247	sd_id128_t vendor,
	248	const char *name,
	249	const void *value,
	250	size_t size) {
	251
	252	struct var {
	253	uint32_t attr;
	254	char buf[];
b7749eb5 ZJS	255	} _packed_ * _cleanup_free_ buf = NULL;
	256	_cleanup_free_ char *p = NULL;
	257	_cleanup_close_ int fd = -1;
0974a682 KS	258
0974a682 KS	259	assert(name);
e1e26566	260	assert(value \|\| size == 0);
0974a682 KS	261
	262	if (asprintf(&p,
	263	"/sys/firmware/efi/efivars/%s-%02x%02x%02x%02x-%02x%02x-%02x%02x-%02x%02x-%02x%02x%02x%02x%02x%02x",
	264	name, SD_ID128_FORMAT_VAL(vendor)) < 0)
	265	return -ENOMEM;
	266
	267	if (size == 0) {
b7749eb5 ZJS	268	if (unlink(p) < 0)
	269	return -errno;
	270	return 0;
0974a682 KS	271	}
	272
	273	fd = open(p, O_WRONLY\|O_CREAT\|O_NOCTTY\|O_CLOEXEC, 0644);
b7749eb5 ZJS	274	if (fd < 0)
b7749eb5 ZJS	275	return -errno;
0974a682 KS	276
0974a682 KS	277	buf = malloc(sizeof(uint32_t) + size);
b7749eb5 ZJS	278	if (!buf)
b7749eb5 ZJS	279	return -ENOMEM;
0974a682 KS	280
	281	buf->attr = EFI_VARIABLE_NON_VOLATILE\|EFI_VARIABLE_BOOTSERVICE_ACCESS\|EFI_VARIABLE_RUNTIME_ACCESS;
	282	memcpy(buf->buf, value, size);
	283
b7749eb5	284	return loop_write(fd, buf, sizeof(uint32_t) + size, false);
0974a682 KS	285	}
0974a682 KS	286
9cde64ff	287	int efi_get_variable_string(sd_id128_t vendor, const char name, char *p) {
7b4d7cc0	288	_cleanup_free_ void *s = NULL;
39883f62	289	size_t ss = 0;
9cde64ff LP	290	int r;
9cde64ff LP	291	char *x;
7b4d7cc0	292
9cde64ff LP	293	r = efi_get_variable(vendor, name, NULL, &s, &ss);
	294	if (r < 0)
	295	return r;
	296
	297	x = utf16_to_utf8(s, ss);
	298	if (!x)
	299	return -ENOMEM;
	300
	301	*p = x;
	302	return 0;
7b4d7cc0 KS	303	}
	304
	305	static size_t utf16_size(const uint16_t *s) {
	306	size_t l = 0;
	307
	308	while (s[l] > 0)
	309	l++;
9cde64ff	310
7b4d7cc0 KS	311	return (l+1) * sizeof(uint16_t);
	312	}
	313
	314	static void efi_guid_to_id128(const void guid, sd_id128_t id128) {
	315	struct uuid {
	316	uint32_t u1;
	317	uint16_t u2;
	318	uint16_t u3;
	319	uint8_t u4[8];
	320	} _packed_;
	321	const struct uuid *uuid = guid;
	322
	323	id128->bytes[0] = (uuid->u1 >> 24) & 0xff;
	324	id128->bytes[1] = (uuid->u1 >> 16) & 0xff;
	325	id128->bytes[2] = (uuid->u1 >> 8) & 0xff;
	326	id128->bytes[3] = (uuid->u1) & 0xff;
	327	id128->bytes[4] = (uuid->u2 >> 8) & 0xff;
	328	id128->bytes[5] = (uuid->u2) & 0xff;
	329	id128->bytes[6] = (uuid->u3 >> 8) & 0xff;
	330	id128->bytes[7] = (uuid->u3) & 0xff;
	331	memcpy(&id128->bytes[8], uuid->u4, sizeof(uuid->u4));
	332	}
	333
9cde64ff LP	334	int efi_get_boot_option(
	335	uint16_t id,
	336	char **title,
	337	sd_id128_t *part_uuid,
0974a682 KS	338	char **path,
0974a682 KS	339	bool *active) {
7b4d7cc0	340
9cde64ff LP	341	char boot_id[9];
9cde64ff LP	342	_cleanup_free_ uint8_t *buf = NULL;
7b4d7cc0 KS	343	size_t l;
	344	struct boot_option *header;
	345	size_t title_size;
b7749eb5	346	_cleanup_free_ char s = NULL, p = NULL;
7b4d7cc0	347	sd_id128_t p_uuid = SD_ID128_NULL;
a8436474	348	int r;
7b4d7cc0	349
b7749eb5	350	xsprintf(boot_id, "Boot%04X", id);
a8436474 ZJS	351	r = efi_get_variable(EFI_VENDOR_GLOBAL, boot_id, NULL, (void **)&buf, &l);
	352	if (r < 0)
	353	return r;
7b4d7cc0 KS	354	if (l < sizeof(struct boot_option))
	355	return -ENOENT;
	356
	357	header = (struct boot_option *)buf;
	358	title_size = utf16_size(header->title);
	359	if (title_size > l - offsetof(struct boot_option, title))
	360	return -EINVAL;
	361
5483a186 ZJS	362	if (title) {
5483a186 ZJS	363	s = utf16_to_utf8(header->title, title_size);
b7749eb5 ZJS	364	if (!s)
b7749eb5 ZJS	365	return -ENOMEM;
7b4d7cc0 KS	366	}
	367
	368	if (header->path_len > 0) {
9cde64ff	369	uint8_t *dbuf;
7b4d7cc0 KS	370	size_t dnext;
	371
	372	dbuf = buf + offsetof(struct boot_option, title) + title_size;
	373	dnext = 0;
	374	while (dnext < header->path_len) {
	375	struct device_path *dpath;
	376
	377	dpath = (struct device_path *)(dbuf + dnext);
	378	if (dpath->length < 4)
	379	break;
	380
	381	/* Type 0x7F – End of Hardware Device Path, Sub-Type 0xFF – End Entire Device Path */
0974a682	382	if (dpath->type == END_DEVICE_PATH_TYPE && dpath->sub_type == END_ENTIRE_DEVICE_PATH_SUBTYPE)
7b4d7cc0 KS	383	break;
	384
	385	dnext += dpath->length;
	386
	387	/* Type 0x04 – Media Device Path */
0974a682	388	if (dpath->type != MEDIA_DEVICE_PATH)
7b4d7cc0 KS	389	continue;
	390
	391	/* Sub-Type 1 – Hard Drive */
0974a682	392	if (dpath->sub_type == MEDIA_HARDDRIVE_DP) {
7b4d7cc0	393	/* 0x02 – GUID Partition Table */
0974a682	394	if (dpath->drive.mbr_type != MBR_TYPE_EFI_PARTITION_TABLE_HEADER)
7b4d7cc0 KS	395	continue;
	396
	397	/* 0x02 – GUID signature */
0974a682	398	if (dpath->drive.signature_type != SIGNATURE_TYPE_GUID)
7b4d7cc0 KS	399	continue;
7b4d7cc0 KS	400
5483a186 ZJS	401	if (part_uuid)
5483a186 ZJS	402	efi_guid_to_id128(dpath->drive.signature, &p_uuid);
7b4d7cc0 KS	403	continue;
	404	}
	405
	406	/* Sub-Type 4 – File Path */
0974a682	407	if (dpath->sub_type == MEDIA_FILEPATH_DP && !p && path) {
7b4d7cc0	408	p = utf16_to_utf8(dpath->path, dpath->length-4);
0974a682	409	efi_tilt_backslashes(p);
7b4d7cc0 KS	410	continue;
	411	}
	412	}
	413	}
	414
1cc6c93a YW	415	if (title)
1cc6c93a YW	416	*title = TAKE_PTR(s);
7b4d7cc0 KS	417	if (part_uuid)
7b4d7cc0 KS	418	*part_uuid = p_uuid;
1cc6c93a YW	419	if (path)
1cc6c93a YW	420	*path = TAKE_PTR(p);
0974a682	421	if (active)
0aa3b783	422	*active = !!(header->attr & LOAD_OPTION_ACTIVE);
9cde64ff	423
7b4d7cc0	424	return 0;
7b4d7cc0 KS	425	}
7b4d7cc0 KS	426
0974a682 KS	427	static void to_utf16(uint16_t dest, const char src) {
	428	int i;
	429
	430	for (i = 0; src[i] != '\0'; i++)
	431	dest[i] = src[i];
	432	dest[i] = '\0';
	433	}
	434
	435	struct guid {
	436	uint32_t u1;
	437	uint16_t u2;
	438	uint16_t u3;
	439	uint8_t u4[8];
885fdebc	440	} _packed_;
0974a682 KS	441
	442	static void id128_to_efi_guid(sd_id128_t id, void *guid) {
	443	struct guid *uuid = guid;
	444
	445	uuid->u1 = id.bytes[0] << 24 \| id.bytes[1] << 16 \| id.bytes[2] << 8 \| id.bytes[3];
	446	uuid->u2 = id.bytes[4] << 8 \| id.bytes[5];
	447	uuid->u3 = id.bytes[6] << 8 \| id.bytes[7];
	448	memcpy(uuid->u4, id.bytes+8, sizeof(uuid->u4));
	449	}
	450
	451	static uint16_t tilt_slashes(uint16_t s) {
	452	uint16_t *p;
	453
	454	for (p = s; *p; p++)
	455	if (*p == '/')
	456	*p = '\\';
	457
	458	return s;
	459	}
	460
0974a682 KS	461	int efi_add_boot_option(uint16_t id, const char *title,
	462	uint32_t part, uint64_t pstart, uint64_t psize,
	463	sd_id128_t part_uuid, const char *path) {
	464	char boot_id[9];
0974a682 KS	465	size_t size;
	466	size_t title_len;
	467	size_t path_len;
	468	struct boot_option *option;
	469	struct device_path *devicep;
b7749eb5	470	_cleanup_free_ char *buf = NULL;
0974a682 KS	471
	472	title_len = (strlen(title)+1) * 2;
	473	path_len = (strlen(path)+1) * 2;
	474
	475	buf = calloc(sizeof(struct boot_option) + title_len +
	476	sizeof(struct drive_path) +
	477	sizeof(struct device_path) + path_len, 1);
b7749eb5 ZJS	478	if (!buf)
b7749eb5 ZJS	479	return -ENOMEM;
0974a682 KS	480
	481	/* header */
	482	option = (struct boot_option *)buf;
	483	option->attr = LOAD_OPTION_ACTIVE;
	484	option->path_len = offsetof(struct device_path, drive) + sizeof(struct drive_path) +
	485	offsetof(struct device_path, path) + path_len +
	486	offsetof(struct device_path, path);
	487	to_utf16(option->title, title);
	488	size = offsetof(struct boot_option, title) + title_len;
	489
	490	/* partition info */
	491	devicep = (struct device_path *)(buf + size);
	492	devicep->type = MEDIA_DEVICE_PATH;
	493	devicep->sub_type = MEDIA_HARDDRIVE_DP;
	494	devicep->length = offsetof(struct device_path, drive) + sizeof(struct drive_path);
	495	devicep->drive.part_nr = part;
	496	devicep->drive.part_start = pstart;
920b52e4	497	devicep->drive.part_size = psize;
0974a682 KS	498	devicep->drive.signature_type = SIGNATURE_TYPE_GUID;
	499	devicep->drive.mbr_type = MBR_TYPE_EFI_PARTITION_TABLE_HEADER;
	500	id128_to_efi_guid(part_uuid, devicep->drive.signature);
	501	size += devicep->length;
	502
	503	/* path to loader */
	504	devicep = (struct device_path *)(buf + size);
	505	devicep->type = MEDIA_DEVICE_PATH;
	506	devicep->sub_type = MEDIA_FILEPATH_DP;
	507	devicep->length = offsetof(struct device_path, path) + path_len;
	508	to_utf16(devicep->path, path);
	509	tilt_slashes(devicep->path);
	510	size += devicep->length;
	511
	512	/* end of path */
	513	devicep = (struct device_path *)(buf + size);
	514	devicep->type = END_DEVICE_PATH_TYPE;
	515	devicep->sub_type = END_ENTIRE_DEVICE_PATH_SUBTYPE;
	516	devicep->length = offsetof(struct device_path, path);
	517	size += devicep->length;
	518
b7749eb5 ZJS	519	xsprintf(boot_id, "Boot%04X", id);
b7749eb5 ZJS	520	return efi_set_variable(EFI_VENDOR_GLOBAL, boot_id, buf, size);
0974a682 KS	521	}
	522
	523	int efi_remove_boot_option(uint16_t id) {
	524	char boot_id[9];
	525
b7749eb5	526	xsprintf(boot_id, "Boot%04X", id);
0974a682 KS	527	return efi_set_variable(EFI_VENDOR_GLOBAL, boot_id, NULL, 0);
	528	}
	529
9cde64ff	530	int efi_get_boot_order(uint16_t **order) {
0797f232	531	_cleanup_free_ void *buf = NULL;
7b4d7cc0	532	size_t l;
9cde64ff	533	int r;
7b4d7cc0	534
9cde64ff LP	535	r = efi_get_variable(EFI_VENDOR_GLOBAL, "BootOrder", NULL, &buf, &l);
	536	if (r < 0)
	537	return r;
7b4d7cc0	538
0797f232	539	if (l <= 0)
7b4d7cc0	540	return -ENOENT;
7b4d7cc0	541
0797f232 ZJS	542	if (l % sizeof(uint16_t) > 0 \|\|
0797f232 ZJS	543	l / sizeof(uint16_t) > INT_MAX)
7b4d7cc0	544	return -EINVAL;
7b4d7cc0	545
ae2a15bc	546	*order = TAKE_PTR(buf);
9cde64ff LP	547	return (int) (l / sizeof(uint16_t));
	548	}
	549
0974a682 KS	550	int efi_set_boot_order(uint16_t *order, size_t n) {
	551	return efi_set_variable(EFI_VENDOR_GLOBAL, "BootOrder", order, n * sizeof(uint16_t));
	552	}
	553
4d34c495 KS	554	static int boot_id_hex(const char s[4]) {
	555	int i;
	556	int id = 0;
	557
	558	for (i = 0; i < 4; i++)
	559	if (s[i] >= '0' && s[i] <= '9')
	560	id \|= (s[i] - '0') << (3 - i) * 4;
	561	else if (s[i] >= 'A' && s[i] <= 'F')
	562	id \|= (s[i] - 'A' + 10) << (3 - i) * 4;
	563	else
7e8185ef	564	return -EINVAL;
4d34c495 KS	565
	566	return id;
	567	}
	568
93bab288 YW	569	static int cmp_uint16(const uint16_t a, const uint16_t b) {
93bab288 YW	570	return CMP(a, b);
9db11a99 LP	571	}
9db11a99 LP	572
9cde64ff LP	573	int efi_get_boot_options(uint16_t **options) {
	574	_cleanup_closedir_ DIR *dir = NULL;
	575	struct dirent *de;
b7749eb5	576	_cleanup_free_ uint16_t *list = NULL;
7432b24b	577	size_t alloc = 0;
b7749eb5	578	int count = 0;
9cde64ff LP	579
	580	assert(options);
	581
	582	dir = opendir("/sys/firmware/efi/efivars/");
	583	if (!dir)
	584	return -errno;
	585
b7749eb5	586	FOREACH_DIRENT(de, dir, return -errno) {
4d34c495	587	int id;
9cde64ff LP	588
	589	if (strncmp(de->d_name, "Boot", 4) != 0)
	590	continue;
	591
4d34c495	592	if (strlen(de->d_name) != 45)
9cde64ff LP	593	continue;
	594
	595	if (strcmp(de->d_name + 8, "-8be4df61-93ca-11d2-aa0d-00e098032b8c") != 0)
	596	continue;
	597
4d34c495 KS	598	id = boot_id_hex(de->d_name + 4);
4d34c495 KS	599	if (id < 0)
9cde64ff LP	600	continue;
9cde64ff LP	601
7432b24b	602	if (!GREEDY_REALLOC(list, alloc, count + 1))
b7749eb5	603	return -ENOMEM;
9cde64ff	604
7432b24b	605	list[count++] = id;
9cde64ff LP	606	}
9cde64ff LP	607
93bab288	608	typesafe_qsort(list, count, cmp_uint16);
9db11a99	609
1cc6c93a YW	610	*options = TAKE_PTR(list);
1cc6c93a YW	611
9cde64ff	612	return count;
7b4d7cc0 KS	613	}
7b4d7cc0 KS	614
5dbe9f53	615	static int read_usec(sd_id128_t vendor, const char name, usec_t u) {
2e3d0692	616	_cleanup_free_ char *j = NULL;
2e3d0692	617	int r;
39883f62	618	uint64_t x = 0;
2e3d0692 LP	619
	620	assert(name);
	621	assert(u);
	622
61cc634b	623	r = efi_get_variable_string(EFI_VENDOR_LOADER, name, &j);
2e3d0692 LP	624	if (r < 0)
	625	return r;
	626
2e3d0692 LP	627	r = safe_atou64(j, &x);
	628	if (r < 0)
	629	return r;
	630
5dbe9f53	631	*u = x;
2e3d0692 LP	632	return 0;
	633	}
	634
c51d84dc	635	int efi_loader_get_boot_usec(usec_t firmware, usec_t loader) {
2e3d0692 LP	636	uint64_t x, y;
2e3d0692 LP	637	int r;
2e3d0692 LP	638
	639	assert(firmware);
	640	assert(loader);
	641
e9cea16d	642	r = read_usec(EFI_VENDOR_LOADER, "LoaderTimeInitUSec", &x);
2e3d0692 LP	643	if (r < 0)
	644	return r;
	645
e9cea16d	646	r = read_usec(EFI_VENDOR_LOADER, "LoaderTimeExecUSec", &y);
2e3d0692 LP	647	if (r < 0)
	648	return r;
	649
	650	if (y == 0 \|\| y < x)
	651	return -EIO;
	652
	653	if (y > USEC_PER_HOUR)
	654	return -EIO;
	655
	656	*firmware = x;
	657	*loader = y;
	658
	659	return 0;
	660	}
	661
c51d84dc	662	int efi_loader_get_device_part_uuid(sd_id128_t *u) {
f4ce2b3e	663	_cleanup_free_ char *p = NULL;
f4ce2b3e	664	int r, parsed[16];
f4ce2b3e	665
61cc634b	666	r = efi_get_variable_string(EFI_VENDOR_LOADER, "LoaderDevicePartUUID", &p);
f4ce2b3e LP	667	if (r < 0)
	668	return r;
	669
f4ce2b3e LP	670	if (sscanf(p, "%02x%02x%02x%02x-%02x%02x-%02x%02x-%02x%02x-%02x%02x%02x%02x%02x%02x",
	671	&parsed[0], &parsed[1], &parsed[2], &parsed[3],
	672	&parsed[4], &parsed[5], &parsed[6], &parsed[7],
	673	&parsed[8], &parsed[9], &parsed[10], &parsed[11],
	674	&parsed[12], &parsed[13], &parsed[14], &parsed[15]) != 16)
	675	return -EIO;
	676
73b80ec2 LP	677	if (u) {
	678	unsigned i;
	679
	680	for (i = 0; i < ELEMENTSOF(parsed); i++)
	681	u->bytes[i] = parsed[i];
	682	}
f4ce2b3e LP	683
	684	return 0;
	685	}
b872e9a0 LP	686
b872e9a0 LP	687	#endif
b28ce7c6 TG	688
	689	char efi_tilt_backslashes(char s) {
	690	char *p;
	691
	692	for (p = s; *p; p++)
	693	if (*p == '\\')
	694	*p = '/';
	695
	696	return s;
	697	}