]> git.ipfire.org Git - people/ms/u-boot.git/blob - disk/part_efi.c
projects / people / ms / u-boot.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
disk: part_efi: range-check partition number
[people/ms/u-boot.git] / disk / part_efi.c
1 /*
2 * Copyright (C) 2008 RuggedCom, Inc.
3 * Richard Retanubun <RichardRetanubun@RuggedCom.com>
4 *
5 * See file CREDITS for list of people who contributed to this
6 * project.
7 *
8 * This program is free software; you can redistribute it and/or
9 * modify it under the terms of the GNU General Public License as
10 * published by the Free Software Foundation; either version 2 of
11 * the License, or (at your option) any later version.
12 *
13 * This program is distributed in the hope that it will be useful,
14 * but WITHOUT ANY WARRANTY; without even the implied warranty of
15 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
16 * GNU General Public License for more details.
17 *
18 * You should have received a copy of the GNU General Public License
19 * along with this program; if not, write to the Free Software
20 * Foundation, Inc., 59 Temple Place, Suite 330, Boston,
21 * MA 02111-1307 USA
22 */
23
24 /*
25 * Problems with CONFIG_SYS_64BIT_LBA:
26 *
27 * struct disk_partition.start in include/part.h is sized as ulong.
28 * When CONFIG_SYS_64BIT_LBA is activated, lbaint_t changes from ulong to uint64_t.
29 * For now, it is cast back to ulong at assignment.
30 *
31 * This limits the maximum size of addressable storage to < 2 Terra Bytes
32 */
33 #include <common.h>
34 #include <command.h>
35 #include <ide.h>
36 #include <malloc.h>
37 #include "part_efi.h"
38 #include <linux/ctype.h>
39
40 #if defined(CONFIG_CMD_IDE) || \
41 defined(CONFIG_CMD_SATA) || \
42 defined(CONFIG_CMD_SCSI) || \
43 defined(CONFIG_CMD_USB) || \
44 defined(CONFIG_MMC) || \
45 defined(CONFIG_SYSTEMACE)
46
47 /* Convert char[2] in little endian format to the host format integer
48 */
49 static inline unsigned short le16_to_int(unsigned char *le16)
50 {
51 return ((le16[1] << 8) + le16[0]);
52 }
53
54 /* Convert char[4] in little endian format to the host format integer
55 */
56 static inline unsigned long le32_to_int(unsigned char *le32)
57 {
58 return ((le32[3] << 24) + (le32[2] << 16) + (le32[1] << 8) + le32[0]);
59 }
60
61 /* Convert char[8] in little endian format to the host format integer
62 */
63 static inline unsigned long long le64_to_int(unsigned char *le64)
64 {
65 return (((unsigned long long)le64[7] << 56) +
66 ((unsigned long long)le64[6] << 48) +
67 ((unsigned long long)le64[5] << 40) +
68 ((unsigned long long)le64[4] << 32) +
69 ((unsigned long long)le64[3] << 24) +
70 ((unsigned long long)le64[2] << 16) +
71 ((unsigned long long)le64[1] << 8) +
72 (unsigned long long)le64[0]);
73 }
74
75 /**
76 * efi_crc32() - EFI version of crc32 function
77 * @buf: buffer to calculate crc32 of
78 * @len - length of buf
79 *
80 * Description: Returns EFI-style CRC32 value for @buf
81 */
82 static inline unsigned long efi_crc32(const void *buf, unsigned long len)
83 {
84 return crc32(0, buf, len);
85 }
86
87 /*
88 * Private function prototypes
89 */
90
91 static int pmbr_part_valid(struct partition *part);
92 static int is_pmbr_valid(legacy_mbr * mbr);
93
94 static int is_gpt_valid(block_dev_desc_t * dev_desc, unsigned long long lba,
95 gpt_header * pgpt_head, gpt_entry ** pgpt_pte);
96
97 static gpt_entry *alloc_read_gpt_entries(block_dev_desc_t * dev_desc,
98 gpt_header * pgpt_head);
99
100 static int is_pte_valid(gpt_entry * pte);
101
102 static char *print_efiname(gpt_entry *pte)
103 {
104 static char name[PARTNAME_SZ + 1];
105 int i;
106 for (i = 0; i < PARTNAME_SZ; i++) {
107 u8 c;
108 c = pte->partition_name[i] & 0xff;
109 c = (c && !isprint(c)) ? '.' : c;
110 name[i] = c;
111 }
112 name[PARTNAME_SZ] = 0;
113 return name;
114 }
115
116 /*
117 * Public Functions (include/part.h)
118 */
119
120 void print_part_efi(block_dev_desc_t * dev_desc)
121 {
122 ALLOC_CACHE_ALIGN_BUFFER(gpt_header, gpt_head, 1);
123 gpt_entry *gpt_pte = NULL;
124 int i = 0;
125
126 if (!dev_desc) {
127 printf("%s: Invalid Argument(s)\n", __func__);
128 return;
129 }
130 /* This function validates AND fills in the GPT header and PTE */
131 if (is_gpt_valid(dev_desc, GPT_PRIMARY_PARTITION_TABLE_LBA,
132 gpt_head, &gpt_pte) != 1) {
133 printf("%s: *** ERROR: Invalid GPT ***\n", __func__);
134 return;
135 }
136
137 debug("%s: gpt-entry at %p\n", __func__, gpt_pte);
138
139 printf("Part\tName\t\t\tStart LBA\tEnd LBA\n");
140 for (i = 0; i < le32_to_int(gpt_head->num_partition_entries); i++) {
141
142 if (is_pte_valid(&gpt_pte[i])) {
143 printf("%3d\t%-18s\t0x%08llX\t0x%08llX\n", (i + 1),
144 print_efiname(&gpt_pte[i]),
145 le64_to_int(gpt_pte[i].starting_lba),
146 le64_to_int(gpt_pte[i].ending_lba));
147 } else {
148 break; /* Stop at the first non valid PTE */
149 }
150 }
151
152 /* Remember to free pte */
153 free(gpt_pte);
154 return;
155 }
156
157 int get_partition_info_efi(block_dev_desc_t * dev_desc, int part,
158 disk_partition_t * info)
159 {
160 ALLOC_CACHE_ALIGN_BUFFER(gpt_header, gpt_head, 1);
161 gpt_entry *gpt_pte = NULL;
162
163 /* "part" argument must be at least 1 */
164 if (!dev_desc || !info || part < 1) {
165 printf("%s: Invalid Argument(s)\n", __func__);
166 return -1;
167 }
168
169 /* This function validates AND fills in the GPT header and PTE */
170 if (is_gpt_valid(dev_desc, GPT_PRIMARY_PARTITION_TABLE_LBA,
171 gpt_head, &gpt_pte) != 1) {
172 printf("%s: *** ERROR: Invalid GPT ***\n", __func__);
173 return -1;
174 }
175
176 if (part > le32_to_int(gpt_head->num_partition_entries) ||
177 !is_pte_valid(&gpt_pte[part - 1])) {
178 printf("%s: *** ERROR: Invalid partition number %d ***\n",
179 __func__, part);
180 return -1;
181 }
182
183 /* The ulong casting limits the maximum disk size to 2 TB */
184 info->start = (ulong) le64_to_int(gpt_pte[part - 1].starting_lba);
185 /* The ending LBA is inclusive, to calculate size, add 1 to it */
186 info->size = ((ulong)le64_to_int(gpt_pte[part - 1].ending_lba) + 1)
187 - info->start;
188 info->blksz = GPT_BLOCK_SIZE;
189
190 sprintf((char *)info->name, "%s",
191 print_efiname(&gpt_pte[part - 1]));
192 sprintf((char *)info->type, "U-Boot");
193
194 debug("%s: start 0x%lX, size 0x%lX, name %s", __func__,
195 info->start, info->size, info->name);
196
197 /* Remember to free pte */
198 free(gpt_pte);
199 return 0;
200 }
201
202 int test_part_efi(block_dev_desc_t * dev_desc)
203 {
204 ALLOC_CACHE_ALIGN_BUFFER(legacy_mbr, legacymbr, 1);
205
206 /* Read legacy MBR from block 0 and validate it */
207 if ((dev_desc->block_read(dev_desc->dev, 0, 1, (ulong *)legacymbr) != 1)
208 || (is_pmbr_valid(legacymbr) != 1)) {
209 return -1;
210 }
211 return 0;
212 }
213
214 /*
215 * Private functions
216 */
217 /*
218 * pmbr_part_valid(): Check for EFI partition signature
219 *
220 * Returns: 1 if EFI GPT partition type is found.
221 */
222 static int pmbr_part_valid(struct partition *part)
223 {
224 if (part->sys_ind == EFI_PMBR_OSTYPE_EFI_GPT &&
225 le32_to_int(part->start_sect) == 1UL) {
226 return 1;
227 }
228
229 return 0;
230 }
231
232 /*
233 * is_pmbr_valid(): test Protective MBR for validity
234 *
235 * Returns: 1 if PMBR is valid, 0 otherwise.
236 * Validity depends on two things:
237 * 1) MSDOS signature is in the last two bytes of the MBR
238 * 2) One partition of type 0xEE is found, checked by pmbr_part_valid()
239 */
240 static int is_pmbr_valid(legacy_mbr * mbr)
241 {
242 int i = 0;
243
244 if (!mbr || le16_to_int(mbr->signature) != MSDOS_MBR_SIGNATURE) {
245 return 0;
246 }
247
248 for (i = 0; i < 4; i++) {
249 if (pmbr_part_valid(&mbr->partition_record[i])) {
250 return 1;
251 }
252 }
253 return 0;
254 }
255
256 /**
257 * is_gpt_valid() - tests one GPT header and PTEs for validity
258 *
259 * lba is the logical block address of the GPT header to test
260 * gpt is a GPT header ptr, filled on return.
261 * ptes is a PTEs ptr, filled on return.
262 *
263 * Description: returns 1 if valid, 0 on error.
264 * If valid, returns pointers to PTEs.
265 */
266 static int is_gpt_valid(block_dev_desc_t * dev_desc, unsigned long long lba,
267 gpt_header * pgpt_head, gpt_entry ** pgpt_pte)
268 {
269 unsigned char crc32_backup[4] = { 0 };
270 unsigned long calc_crc32;
271 unsigned long long lastlba;
272
273 if (!dev_desc || !pgpt_head) {
274 printf("%s: Invalid Argument(s)\n", __func__);
275 return 0;
276 }
277
278 /* Read GPT Header from device */
279 if (dev_desc->block_read(dev_desc->dev, lba, 1, pgpt_head) != 1) {
280 printf("*** ERROR: Can't read GPT header ***\n");
281 return 0;
282 }
283
284 /* Check the GPT header signature */
285 if (le64_to_int(pgpt_head->signature) != GPT_HEADER_SIGNATURE) {
286 printf("GUID Partition Table Header signature is wrong:"
287 "0x%llX != 0x%llX\n",
288 (unsigned long long)le64_to_int(pgpt_head->signature),
289 (unsigned long long)GPT_HEADER_SIGNATURE);
290 return 0;
291 }
292
293 /* Check the GUID Partition Table CRC */
294 memcpy(crc32_backup, pgpt_head->header_crc32, sizeof(crc32_backup));
295 memset(pgpt_head->header_crc32, 0, sizeof(pgpt_head->header_crc32));
296
297 calc_crc32 = efi_crc32((const unsigned char *)pgpt_head,
298 le32_to_int(pgpt_head->header_size));
299
300 memcpy(pgpt_head->header_crc32, crc32_backup, sizeof(crc32_backup));
301
302 if (calc_crc32 != le32_to_int(crc32_backup)) {
303 printf("GUID Partition Table Header CRC is wrong:"
304 "0x%08lX != 0x%08lX\n",
305 le32_to_int(crc32_backup), calc_crc32);
306 return 0;
307 }
308
309 /* Check that the my_lba entry points to the LBA that contains the GPT */
310 if (le64_to_int(pgpt_head->my_lba) != lba) {
311 printf("GPT: my_lba incorrect: %llX != %llX\n",
312 (unsigned long long)le64_to_int(pgpt_head->my_lba),
313 (unsigned long long)lba);
314 return 0;
315 }
316
317 /* Check the first_usable_lba and last_usable_lba are within the disk. */
318 lastlba = (unsigned long long)dev_desc->lba;
319 if (le64_to_int(pgpt_head->first_usable_lba) > lastlba) {
320 printf("GPT: first_usable_lba incorrect: %llX > %llX\n",
321 le64_to_int(pgpt_head->first_usable_lba), lastlba);
322 return 0;
323 }
324 if (le64_to_int(pgpt_head->last_usable_lba) > lastlba) {
325 printf("GPT: last_usable_lba incorrect: %llX > %llX\n",
326 le64_to_int(pgpt_head->last_usable_lba), lastlba);
327 return 0;
328 }
329
330 debug("GPT: first_usable_lba: %llX last_usable_lba %llX last lba %llX\n",
331 le64_to_int(pgpt_head->first_usable_lba),
332 le64_to_int(pgpt_head->last_usable_lba), lastlba);
333
334 /* Read and allocate Partition Table Entries */
335 *pgpt_pte = alloc_read_gpt_entries(dev_desc, pgpt_head);
336 if (*pgpt_pte == NULL) {
337 printf("GPT: Failed to allocate memory for PTE\n");
338 return 0;
339 }
340
341 /* Check the GUID Partition Table Entry Array CRC */
342 calc_crc32 = efi_crc32((const unsigned char *)*pgpt_pte,
343 le32_to_int(pgpt_head->num_partition_entries) *
344 le32_to_int(pgpt_head->sizeof_partition_entry));
345
346 if (calc_crc32 != le32_to_int(pgpt_head->partition_entry_array_crc32)) {
347 printf("GUID Partition Table Entry Array CRC is wrong:"
348 "0x%08lX != 0x%08lX\n",
349 le32_to_int(pgpt_head->partition_entry_array_crc32),
350 calc_crc32);
351
352 free(*pgpt_pte);
353 return 0;
354 }
355
356 /* We're done, all's well */
357 return 1;
358 }
359
360 /**
361 * alloc_read_gpt_entries(): reads partition entries from disk
362 * @dev_desc
363 * @gpt - GPT header
364 *
365 * Description: Returns ptes on success, NULL on error.
366 * Allocates space for PTEs based on information found in @gpt.
367 * Notes: remember to free pte when you're done!
368 */
369 static gpt_entry *alloc_read_gpt_entries(block_dev_desc_t * dev_desc,
370 gpt_header * pgpt_head)
371 {
372 size_t count = 0;
373 gpt_entry *pte = NULL;
374
375 if (!dev_desc || !pgpt_head) {
376 printf("%s: Invalid Argument(s)\n", __func__);
377 return NULL;
378 }
379
380 count = le32_to_int(pgpt_head->num_partition_entries) *
381 le32_to_int(pgpt_head->sizeof_partition_entry);
382
383 debug("%s: count = %lu * %lu = %u\n", __func__,
384 le32_to_int(pgpt_head->num_partition_entries),
385 le32_to_int(pgpt_head->sizeof_partition_entry), count);
386
387 /* Allocate memory for PTE, remember to FREE */
388 if (count != 0) {
389 pte = memalign(ARCH_DMA_MINALIGN, count);
390 }
391
392 if (count == 0 || pte == NULL) {
393 printf("%s: ERROR: Can't allocate 0x%X bytes for GPT Entries\n",
394 __func__, count);
395 return NULL;
396 }
397
398 /* Read GPT Entries from device */
399 if (dev_desc->block_read (dev_desc->dev,
400 (unsigned long)le64_to_int(pgpt_head->partition_entry_lba),
401 (lbaint_t) (count / GPT_BLOCK_SIZE), pte)
402 != (count / GPT_BLOCK_SIZE)) {
403
404 printf("*** ERROR: Can't read GPT Entries ***\n");
405 free(pte);
406 return NULL;
407 }
408 return pte;
409 }
410
411 /**
412 * is_pte_valid(): validates a single Partition Table Entry
413 * @gpt_entry - Pointer to a single Partition Table Entry
414 *
415 * Description: returns 1 if valid, 0 on error.
416 */
417 static int is_pte_valid(gpt_entry * pte)
418 {
419 efi_guid_t unused_guid;
420
421 if (!pte) {
422 printf("%s: Invalid Argument(s)\n", __func__);
423 return 0;
424 }
425
426 /* Only one validation for now:
427 * The GUID Partition Type != Unused Entry (ALL-ZERO)
428 */
429 memset(unused_guid.b, 0, sizeof(unused_guid.b));
430
431 if (memcmp(pte->partition_type_guid.b, unused_guid.b,
432 sizeof(unused_guid.b)) == 0) {
433
434 debug("%s: Found an unused PTE GUID at 0x%08X\n", __func__,
435 (unsigned int)pte);
436
437 return 0;
438 } else {
439 return 1;
440 }
441 }
442 #endif
"Das U-Boot" Source Tree