#include <sys/wait.h>
#include <sys/stat.h>
#include <asm/byteorder.h>
+#include <limits.h>
#include <file/file.h>
#include <talloc/talloc.h>
#include <list/list.h>
#include <log/log.h>
#include <process/process.h>
+#include <crypt/crypt.h>
#include "hostboot.h"
#include "platform.h"
static const char *devtree_dir = "/proc/device-tree/";
struct platform_powerpc {
- struct param_list params;
+ struct param_list *params;
struct ipmi *ipmi;
- bool ipmi_bootdev_persistent;
+ char *ipmi_mailbox_original_config;
int (*get_ipmi_bootdev)(
struct platform_powerpc *platform,
uint8_t *bootdev, bool *persistent);
int (*clear_ipmi_bootdev)(
struct platform_powerpc *platform,
bool persistent);
+ int (*get_ipmi_boot_mailbox)(
+ struct platform_powerpc *platform,
+ char **buf);
+ int (*clear_ipmi_boot_mailbox)(
+ struct platform_powerpc *platform);
int (*set_os_boot_sensor)(
struct platform_powerpc *platform);
void (*get_platform_versions)(struct system_info *info);
if (namelen == 0)
continue;
- if (!param_list_is_known_n(&platform->params, name, namelen))
+ if (!param_list_is_known_n(platform->params, name, namelen))
continue;
*value = '\0';
value++;
- param_list_set(&platform->params, name, value, false);
+ param_list_set(platform->params, name, value, false);
}
return 0;
process->path = "nvram";
process->argv = argv;
- param_list_for_each(&platform->params, param) {
+ param_list_for_each(platform->params, param) {
char *paramstr;
if (!param->modified)
return rc;
}
-static char *interface_config_str(void *ctx, struct interface_config *config)
-{
- char *str;
-
- /* todo: HWADDR size is hardcoded as 6, but we may need to handle
- * different hardware address formats */
- str = talloc_asprintf(ctx, "%02x:%02x:%02x:%02x:%02x:%02x,",
- config->hwaddr[0], config->hwaddr[1],
- config->hwaddr[2], config->hwaddr[3],
- config->hwaddr[4], config->hwaddr[5]);
-
- if (config->ignore) {
- str = talloc_asprintf_append(str, "ignore");
-
- } else if (config->method == CONFIG_METHOD_DHCP) {
- str = talloc_asprintf_append(str, "dhcp");
-
- } else if (config->method == CONFIG_METHOD_STATIC) {
- str = talloc_asprintf_append(str, "static,%s%s%s%s%s",
- config->static_config.address,
- config->static_config.gateway ? "," : "",
- config->static_config.gateway ?: "",
- config->static_config.url ? "," : "",
- config->static_config.url ?: "");
- }
- return str;
-}
-
-static char *dns_config_str(void *ctx, const char **dns_servers, int n)
-{
- char *str;
- int i;
-
- str = talloc_strdup(ctx, "dns,");
- for (i = 0; i < n; i++) {
- str = talloc_asprintf_append(str, "%s%s",
- i == 0 ? "" : ",",
- dns_servers[i]);
- }
-
- return str;
-}
-
-static void update_network_config(struct param_list *pl, const char *param_name,
- const struct config *config)
-{
- unsigned int i;
- char *val;
-
- /*
- * Don't store IPMI overrides to NVRAM. If this was a persistent
- * override it was already stored in NVRAM by
- * get_ipmi_network_override()
- */
- if (config->network.n_interfaces &&
- config->network.interfaces[0]->override)
- return;
-
- val = talloc_strdup(pl, "");
-
- for (i = 0; i < config->network.n_interfaces; i++) {
- char *iface_str = interface_config_str(pl,
- config->network.interfaces[i]);
- val = talloc_asprintf_append(val, "%s%s",
- *val == '\0' ? "" : " ", iface_str);
- talloc_free(iface_str);
- }
-
- if (config->network.n_dns_servers) {
- char *dns_str = dns_config_str(pl,
- config->network.dns_servers,
- config->network.n_dns_servers);
- val = talloc_asprintf_append(val, "%s%s",
- *val == '\0' ? "" : " ", dns_str);
- talloc_free(dns_str);
- }
-
- param_list_set_non_empty(pl, param_name, val, true);
-
- talloc_free(val);
-}
-
-static void update_bootdev_config(struct param_list *pl, const char *param_name,
- const struct config *config)
-{
- char *val = NULL, *boot_str = NULL, *tmp = NULL;
- struct autoboot_option *opt;
- const char delim = ' ';
- unsigned int i;
-
- if (!config->n_autoboot_opts)
- val = "";
-
- for (i = 0; i < config->n_autoboot_opts; i++) {
- opt = &config->autoboot_opts[i];
- switch (opt->boot_type) {
- case BOOT_DEVICE_TYPE:
- boot_str = talloc_asprintf(config, "%s%c",
- device_type_name(opt->type),
- delim);
- break;
- case BOOT_DEVICE_UUID:
- boot_str = talloc_asprintf(config, "uuid:%s%c",
- opt->uuid, delim);
- break;
- }
- tmp = val = talloc_asprintf_append(val, "%s", boot_str);
- }
-
- param_list_set_non_empty(pl, param_name, val, true);
-
- talloc_free(tmp);
- if (boot_str)
- talloc_free(boot_str);
-}
-
-static void update_config(struct param_list *pl, struct config *config,
- const struct config *defaults)
+static void params_update_all(struct param_list *pl,
+ const struct config *config, const struct config *defaults)
{
char *tmp = NULL;
const char *val;
val = config->https_proxy ?: "";
param_list_set_non_empty(pl, "petitboot,https_proxy", val, true);
- update_network_config(pl, "petitboot,network", config);
- update_bootdev_config(pl, "petitboot,bootdevs", config);
+ params_update_network_values(pl, "petitboot,network", config);
+ params_update_bootdev_values(pl, "petitboot,bootdevs", config);
}
static void config_set_ipmi_bootdev(struct config *config, enum ipmi_bootdev bootdev,
{
uint16_t resp_len;
uint8_t resp[8];
+ char *debug_buf;
int rc;
uint8_t req[] = {
0x05, /* parameter selector: boot flags */
return -1;
}
- pb_debug("IPMI get_bootdev response:\n");
- for (int i = 0; i < resp_len; i++)
- pb_debug("%x ", resp[i]);
- pb_debug("\n");
+ debug_buf = format_buffer(platform, resp, resp_len);
+ pb_debug_fn("IPMI get_bootdev response:\n%s\n", debug_buf);
+ talloc_free(debug_buf);
if (resp[0] != 0) {
pb_log("platform: non-zero completion code %d from IPMI req\n",
return 0;
}
+static int get_ipmi_boot_mailbox_block(struct platform_powerpc *platform,
+ char *buf, uint8_t block)
+{
+ size_t blocksize = 16;
+ uint8_t resp[3 + 16];
+ uint16_t resp_len;
+ char *debug_buf;
+ int rc;
+ uint8_t req[] = {
+ 0x07, /* parameter selector: boot initiator mailbox */
+ block, /* set selector */
+ 0x00, /* no block selector */
+ };
+
+ resp_len = sizeof(resp);
+ rc = ipmi_transaction(platform->ipmi, IPMI_NETFN_CHASSIS,
+ IPMI_CMD_CHASSIS_GET_SYSTEM_BOOT_OPTIONS,
+ req, sizeof(req),
+ resp, &resp_len,
+ ipmi_timeout);
+ if (rc) {
+ pb_log("platform: error reading IPMI boot options\n");
+ return -1;
+ }
+
+ if (resp_len < sizeof(resp)) {
+ if (resp_len < 3) {
+ pb_log("platform: unexpected length (%d) in "
+ "boot options mailbox response\n",
+ resp_len);
+ return -1;
+ }
+
+ if (resp_len == 4) {
+ pb_debug_fn("block %hu empty\n", block);
+ return 0;
+ }
+
+ blocksize = sizeof(resp) - 3;
+ pb_debug_fn("Mailbox block %hu returns only %zu bytes in block\n",
+ block, blocksize);
+ }
+
+ debug_buf = format_buffer(platform, resp, resp_len);
+ pb_debug_fn("IPMI bootdev mailbox block %hu:\n%s\n", block, debug_buf);
+ talloc_free(debug_buf);
+
+ if (resp[0] != 0) {
+ pb_log("platform: non-zero completion code %d from IPMI req\n",
+ resp[0]);
+ return -1;
+ }
+
+ /* check for correct parameter version */
+ if ((resp[1] & 0xf) != 0x1) {
+ pb_log("platform: unexpected version (0x%x) in "
+ "boot mailbox response\n", resp[0]);
+ return -1;
+ }
+
+ /* check for valid paramters */
+ if (resp[2] & 0x80) {
+ pb_debug("platform: boot mailbox parameters are invalid/locked\n");
+ return -1;
+ }
+
+ memcpy(buf, &resp[3], blocksize);
+
+ return blocksize;
+}
+
+static int get_ipmi_boot_mailbox(struct platform_powerpc *platform,
+ char **buf)
+{
+ char *mailbox_buffer, *prefix;
+ const size_t blocksize = 16;
+ char block_buffer[blocksize];
+ size_t mailbox_size;
+ int content_size;
+ uint8_t i;
+ int rc;
+
+ mailbox_buffer = NULL;
+ mailbox_size = 0;
+
+ /*
+ * The BMC may hold up to 255 blocks of data but more likely the number
+ * will be closer to the minimum of 5 set by the specification and error
+ * on higher numbers.
+ */
+ for (i = 0; i < UCHAR_MAX; i++) {
+ rc = get_ipmi_boot_mailbox_block(platform, block_buffer, i);
+ if (rc < 3 && i == 0) {
+ /*
+ * Immediate failure, no blocks read or missing IANA
+ * number.
+ */
+ return -1;
+ }
+ if (rc < 1) {
+ /* Error or no bytes read */
+ break;
+ }
+
+ if (i == 0) {
+ /*
+ * The first three bytes of block zero are an IANA
+ * Enterprise ID number. Check it matches the IBM
+ * number, '2'.
+ */
+ if (block_buffer[0] != 0x02 ||
+ block_buffer[1] != 0x00 ||
+ block_buffer[2] != 0x00) {
+ pb_log_fn("IANA number unrecognised: 0x%x:0x%x:0x%x\n",
+ block_buffer[0],
+ block_buffer[1],
+ block_buffer[2]);
+ return -1;
+ }
+ }
+
+ mailbox_buffer = talloc_realloc(platform, mailbox_buffer,
+ char, mailbox_size + rc);
+ if (!mailbox_buffer) {
+ pb_log_fn("Failed to allocate mailbox buffer\n");
+ return -1;
+ }
+ memcpy(mailbox_buffer + mailbox_size, block_buffer, rc);
+ mailbox_size += rc;
+ }
+
+ if (i < 5)
+ pb_log_fn("Only %hu blocks read, spec requires at least 5.\n"
+ "Send a bug report to your preferred BMC vendor!\n",
+ i);
+ else
+ pb_debug_fn("%hu blocks read (%zu bytes)\n", i, mailbox_size);
+
+ if (mailbox_size < 3 + strlen("petitboot,bootdevs="))
+ return -1;
+
+ prefix = talloc_strndup(mailbox_buffer, mailbox_buffer + 3,
+ strlen("petitboot,bootdevs="));
+ if (!prefix) {
+ pb_log_fn("Couldn't check prefix\n");
+ talloc_free(mailbox_buffer);
+ return -1;
+ }
+
+ if (strncmp(prefix, "petitboot,bootdevs=",
+ strlen("petitboot,bootdevs=")) != 0 ) {
+ /* Empty or garbage */
+ pb_debug_fn("Buffer looks unconfigured\n");
+ talloc_free(mailbox_buffer);
+ *buf = NULL;
+ return 0;
+ }
+
+ /* Don't include IANA number in buffer */
+ content_size = mailbox_size - 3 - strlen("petitboot,bootdevs=");
+ *buf = talloc_memdup(platform,
+ mailbox_buffer + 3 + strlen("petitboot,bootdevs="),
+ content_size + 1);
+ (*buf)[content_size] = '\0';
+
+ talloc_free(mailbox_buffer);
+ return 0;
+}
+
+static int clear_ipmi_boot_mailbox(struct platform_powerpc *platform)
+{
+ uint8_t req[18] = {0}; /* req (2) + blocksize (16) */
+ uint16_t resp_len;
+ uint8_t resp[1];
+ uint8_t i;
+ int rc;
+
+ req[0] = 0x07; /* parameter selector: boot initiator mailbox */
+
+ resp_len = sizeof(resp);
+
+ for (i = 0; i < UCHAR_MAX; i++) {
+ req[1] = i; /* set selector */
+ rc = ipmi_transaction(platform->ipmi, IPMI_NETFN_CHASSIS,
+ IPMI_CMD_CHASSIS_SET_SYSTEM_BOOT_OPTIONS,
+ req, sizeof(req),
+ resp, &resp_len,
+ ipmi_timeout);
+
+ if (rc || resp[0]) {
+ if (i == 0) {
+ pb_log_fn("error clearing IPMI boot mailbox, "
+ "rc %d resp[0] %hu\n",
+ rc, resp[0]);
+ return -1;
+ }
+ break;
+ }
+ }
+
+ pb_debug_fn("Cleared %hu blocks\n", i);
+
+ return 0;
+}
+
static int set_ipmi_os_boot_sensor(struct platform_powerpc *platform)
{
int sensor_number;
uint16_t min_len = 12, resp_len = 53, version;
const uint32_t magic_value = 0x21706221;
uint8_t resp[resp_len];
+ char *debug_buf;
uint32_t cookie;
bool persistent;
int i, rc;
resp, &resp_len,
ipmi_timeout);
- pb_debug("IPMI net override resp [%d][%d]:\n", rc, resp_len);
- if (resp_len > 0) {
- for (i = 0; i < resp_len; i++) {
- pb_debug(" %02x", resp[i]);
- if (i && (i + 1) % 16 == 0 && i != resp_len - 1)
- pb_debug("\n");
- else if (i && (i + 1) % 8 == 0)
- pb_debug(" ");
- }
- pb_debug("\n");
- }
+ debug_buf = format_buffer(platform, resp, resp_len);
+ pb_debug_fn("IPMI net override response:\n%s\n", debug_buf);
+ talloc_free(debug_buf);
if (rc) {
pb_debug("IPMI network config option unavailable\n");
if (!rc && persistent) {
/* Write this new config to NVRAM */
- update_network_config(&platform->params, "petitboot,network",
- config);
+ params_update_network_values(platform->params,
+ "petitboot,network", config);
rc = write_nvram(platform);
if (rc)
pb_log("platform: Failed to save persistent interface override\n");
static int load_config(struct platform *p, struct config *config)
{
struct platform_powerpc *platform = to_platform_powerpc(p);
+ const char *hash;
int rc;
rc = parse_nvram(platform);
if (rc)
pb_log_fn("Failed to parse nvram\n");
- config_populate_all(config, &platform->params);
+ /*
+ * If we have an IPMI mailbox configuration available use it instead of
+ * the boot order found in NVRAM.
+ */
+ if (platform->get_ipmi_boot_mailbox) {
+ char *mailbox;
+ struct param *param;
+ rc = platform->get_ipmi_boot_mailbox(platform, &mailbox);
+ if (!rc && mailbox) {
+ platform->ipmi_mailbox_original_config =
+ talloc_strdup(
+ platform,
+ param_list_get_value(
+ platform->params, "petitboot,bootdevs"));
+ param_list_set(platform->params, "petitboot,bootdevs",
+ mailbox, false);
+ param = param_list_get_param(platform->params,
+ "petitboot,bootdevs");
+ /* Avoid writing this to NVRAM */
+ param->modified = false;
+ config->ipmi_bootdev_mailbox = true;
+ talloc_free(mailbox);
+ }
+ }
+
+ config_populate_all(config, platform->params);
if (platform->get_ipmi_bootdev) {
bool bootdev_persistent;
config_get_active_consoles(config);
+
+ hash = param_list_get_value(platform->params, "petitboot,password");
+ if (hash) {
+ rc = crypt_set_password_hash(platform, hash);
+ if (rc)
+ pb_log("Failed to set password hash\n");
+ }
+
return 0;
}
{
struct platform_powerpc *platform = to_platform_powerpc(p);
struct config *defaults;
+ struct param *param;
if (config->ipmi_bootdev == IPMI_BOOTDEV_INVALID &&
platform->clear_ipmi_bootdev) {
config->ipmi_bootdev_persistent = false;
}
+ if (!config->ipmi_bootdev_mailbox &&
+ platform->ipmi_mailbox_original_config) {
+ param = param_list_get_param(platform->params,
+ "petitboot,bootdevs");
+ /* Restore old boot order if unmodified */
+ if (!param->modified) {
+ param_list_set(platform->params, "petitboot,bootdevs",
+ platform->ipmi_mailbox_original_config,
+ false);
+ param->modified = false;
+ config_populate_bootdev(config, platform->params);
+ }
+ platform->clear_ipmi_boot_mailbox(platform);
+ talloc_free(platform->ipmi_mailbox_original_config);
+ platform->ipmi_mailbox_original_config = NULL;
+ }
+
defaults = talloc_zero(platform, struct config);
config_set_defaults(defaults);
- update_config(&platform->params, config, defaults);
+ params_update_all(platform->params, config, defaults);
talloc_free(defaults);
return write_nvram(platform);
return 0;
}
+static bool restrict_clients(struct platform *p)
+{
+ struct platform_powerpc *platform = to_platform_powerpc(p);
+
+ return param_list_get_value(platform->params, "petitboot,password") != NULL;
+}
+
+static int set_password(struct platform *p, const char *hash)
+{
+ struct platform_powerpc *platform = to_platform_powerpc(p);
+
+ param_list_set(platform->params, "petitboot,password", hash, true);
+ write_nvram(platform);
+
+ return 0;
+}
+
static bool probe(struct platform *p, void *ctx)
{
struct platform_powerpc *platform;
return false;
platform = talloc_zero(ctx, struct platform_powerpc);
- param_list_init(&platform->params, common_known_params());
+ platform->params = talloc_zero(platform, struct param_list);
+ param_list_init(platform->params, common_known_params());
p->platform_data = platform;
platform->ipmi = ipmi_open(platform);
platform->get_ipmi_bootdev = get_ipmi_bootdev_ipmi;
platform->clear_ipmi_bootdev = clear_ipmi_bootdev_ipmi;
+ platform->get_ipmi_boot_mailbox = get_ipmi_boot_mailbox;
+ platform->clear_ipmi_boot_mailbox = clear_ipmi_boot_mailbox;
platform->set_os_boot_sensor = set_ipmi_os_boot_sensor;
} else if (!stat(sysparams_dir, &statbuf)) {
pb_debug("platform: using sysparams for IPMI paramters\n");
.save_config = save_config,
.pre_boot = pre_boot,
.get_sysinfo = get_sysinfo,
+ .restrict_clients = restrict_clients,
+ .set_password = set_password,
};
register_platform(platform_powerpc);