From nobody Fri Nov 29 18:34:52 2024 Delivered-To: importer@patchew.org Received-SPF: pass (zohomail.com: domain of lists.xenproject.org designates 192.237.175.120 as permitted sender) client-ip=192.237.175.120; envelope-from=xen-devel-bounces@lists.xenproject.org; helo=lists.xenproject.org; Authentication-Results: mx.zohomail.com; spf=pass (zohomail.com: domain of lists.xenproject.org designates 192.237.175.120 as permitted sender) smtp.mailfrom=xen-devel-bounces@lists.xenproject.org; dmarc=fail(p=none dis=none) header.from=arm.com Return-Path: Received: from lists.xenproject.org (lists.xenproject.org [192.237.175.120]) by mx.zohomail.com with SMTPS id 1633012162113317.5711589166168; Thu, 30 Sep 2021 07:29:22 -0700 (PDT) Received: from list by lists.xenproject.org with outflank-mailman.199970.354341 (Exim 4.92) (envelope-from ) id 1mVx3d-0005aw-GI; Thu, 30 Sep 2021 14:29:09 +0000 Received: by outflank-mailman (output) from mailman id 199970.354341; Thu, 30 Sep 2021 14:29:09 +0000 Received: from localhost ([127.0.0.1] helo=lists.xenproject.org) by lists.xenproject.org with esmtp (Exim 4.92) (envelope-from ) id 1mVx3d-0005an-C3; Thu, 30 Sep 2021 14:29:09 +0000 Received: by outflank-mailman (input) for mailman id 199970; Thu, 30 Sep 2021 14:29:08 +0000 Received: from all-amaz-eas1.inumbo.com ([34.197.232.57] helo=us1-amaz-eas2.inumbo.com) by lists.xenproject.org with esmtp (Exim 4.92) (envelope-from ) id 1mVx3c-0004wW-1w for xen-devel@lists.xenproject.org; Thu, 30 Sep 2021 14:29:08 +0000 Received: from foss.arm.com (unknown [217.140.110.172]) by us1-amaz-eas2.inumbo.com (Halon) with ESMTP id c09c3825-21fa-11ec-bd4e-12813bfff9fa; Thu, 30 Sep 2021 14:29:01 +0000 (UTC) Received: from usa-sjc-imap-foss1.foss.arm.com (unknown [10.121.207.14]) by usa-sjc-mx-foss1.foss.arm.com (Postfix) with ESMTP id CE57C11FB; Thu, 30 Sep 2021 07:29:00 -0700 (PDT) Received: from e125770.cambridge.arm.com (e125770.cambridge.arm.com [10.1.195.16]) by usa-sjc-imap-foss1.foss.arm.com (Postfix) with ESMTPSA id 62D263F70D; Thu, 30 Sep 2021 07:28:59 -0700 (PDT) X-Outflank-Mailman: Message body and most headers restored to incoming version X-BeenThere: xen-devel@lists.xenproject.org List-Id: Xen developer discussion List-Unsubscribe: , List-Post: List-Help: List-Subscribe: , Errors-To: xen-devel-bounces@lists.xenproject.org Precedence: list Sender: "Xen-devel" X-Inumbo-ID: c09c3825-21fa-11ec-bd4e-12813bfff9fa From: Luca Fancellu To: xen-devel@lists.xenproject.org Cc: bertrand.marquis@arm.com, wei.chen@arm.com, Stefano Stabellini , Julien Grall , Volodymyr Babchuk , Andrew Cooper , George Dunlap , Ian Jackson , Jan Beulich , Wei Liu Subject: [PATCH v4 3/3] arm/efi: load dom0 modules from DT using UEFI Date: Thu, 30 Sep 2021 15:28:46 +0100 Message-Id: <20210930142846.13348-4-luca.fancellu@arm.com> X-Mailer: git-send-email 2.17.1 In-Reply-To: <20210930142846.13348-1-luca.fancellu@arm.com> References: <20210930142846.13348-1-luca.fancellu@arm.com> X-ZM-MESSAGEID: 1633013064435100001 Content-Transfer-Encoding: quoted-printable MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Add support to load Dom0 boot modules from the device tree using the xen,uefi-binary property. Update documentation about that. Signed-off-by: Luca Fancellu Acked-by: Jan Beulich Reviewed-by: Bertrand Marquis Reviewed-by: Stefano Stabellini --- Changes in v4: - Add check to avoid double definition of Dom0 ramdisk from cfg file and DT - Fix if conditions indentation in boot.c - Moved Dom0 kernel verification code after check for presence for Dom0 or DomU(s) - Changed uefi,binary property to xen,uefi-binary Changes in v3: - new patch --- docs/misc/arm/device-tree/booting.txt | 8 ++++ docs/misc/efi.pandoc | 64 +++++++++++++++++++++++++-- xen/arch/arm/efi/efi-boot.h | 47 ++++++++++++++++++-- xen/common/efi/boot.c | 16 ++++--- 4 files changed, 123 insertions(+), 12 deletions(-) diff --git a/docs/misc/arm/device-tree/booting.txt b/docs/misc/arm/device-t= ree/booting.txt index 7258e7e1ec..8e0c327ba4 100644 --- a/docs/misc/arm/device-tree/booting.txt +++ b/docs/misc/arm/device-tree/booting.txt @@ -70,6 +70,14 @@ Each node contains the following properties: priority of this field vs. other mechanisms of specifying the bootargs for the kernel. =20 +- uefi,binary (UEFI boot only) + + String property that specifies the file name to be loaded by the UEFI + boot for this module. If this is specified, there is no need to specify + the reg property because it will be created by the UEFI stub on boot. + This option is needed only when UEFI boot is used, the node needs to be + compatible with multiboot,kernel or multiboot,ramdisk. + Examples =3D=3D=3D=3D=3D=3D=3D=3D =20 diff --git a/docs/misc/efi.pandoc b/docs/misc/efi.pandoc index 876cd55005..4abbb5bb82 100644 --- a/docs/misc/efi.pandoc +++ b/docs/misc/efi.pandoc @@ -167,6 +167,28 @@ sbsign \ --output xen.signed.efi \ xen.unified.efi ``` +## UEFI boot and Dom0 modules on ARM + +When booting using UEFI on ARM, it is possible to specify the Dom0 modules +directly from the device tree without using the Xen configuration file, he= re an +example: + +chosen { + #size-cells =3D <0x1>; + #address-cells =3D <0x1>; + xen,xen-bootargs =3D "[Xen boot arguments]" + + module@1 { + compatible =3D "multiboot,kernel", "multiboot,module"; + xen,uefi-binary =3D "vmlinuz-3.0.31-0.4-xen"; + bootargs =3D "[domain 0 command line options]"; + }; + + module@2 { + compatible =3D "multiboot,ramdisk", "multiboot,module"; + xen,uefi-binary =3D "initrd-3.0.31-0.4-xen"; + }; +} =20 ## UEFI boot and dom0less on ARM =20 @@ -326,10 +348,10 @@ chosen { ### Boot Xen, Dom0 and DomU(s) =20 This configuration is a mix of the two configuration above, to boot this o= ne -the configuration file must be processed so the /chosen node must have the -"xen,uefi-cfg-load" property. +the configuration file can be processed or the Dom0 modules can be read fr= om +the device tree. =20 -Here an example: +Here the first example: =20 Xen configuration file: =20 @@ -369,4 +391,40 @@ chosen { }; ``` =20 +Here the second example: + +Device tree: + +``` +chosen { + #size-cells =3D <0x1>; + #address-cells =3D <0x1>; + xen,xen-bootargs =3D "[Xen boot arguments]" + + module@1 { + compatible =3D "multiboot,kernel", "multiboot,module"; + xen,uefi-binary =3D "vmlinuz-3.0.31-0.4-xen"; + bootargs =3D "[domain 0 command line options]"; + }; + + module@2 { + compatible =3D "multiboot,ramdisk", "multiboot,module"; + xen,uefi-binary =3D "initrd-3.0.31-0.4-xen"; + }; + + domU1 { + #size-cells =3D <0x1>; + #address-cells =3D <0x1>; + compatible =3D "xen,domain"; + cpus =3D <0x1>; + memory =3D <0x0 0xc0000>; + vpl011; =20 + module@1 { + compatible =3D "multiboot,kernel", "multiboot,module"; + xen,uefi-binary =3D "Image-domu1.bin"; + bootargs =3D "console=3DttyAMA0 root=3D/dev/ram0 rw"; + }; + }; +}; +``` diff --git a/xen/arch/arm/efi/efi-boot.h b/xen/arch/arm/efi/efi-boot.h index 50b3829ae0..b122e2846a 100644 --- a/xen/arch/arm/efi/efi-boot.h +++ b/xen/arch/arm/efi/efi-boot.h @@ -31,8 +31,11 @@ static unsigned int __initdata modules_idx; #define ERROR_MISSING_DT_PROPERTY (-3) #define ERROR_RENAME_MODULE_NAME (-4) #define ERROR_SET_REG_PROPERTY (-5) +#define ERROR_DOM0_ALREADY_FOUND (-6) +#define ERROR_DOM0_RAMDISK_FOUND (-7) #define ERROR_DT_MODULE_DOMU (-1) #define ERROR_DT_CHOSEN_NODE (-2) +#define ERROR_DT_MODULE_DOM0 (-3) =20 void noreturn efi_xen_start(void *fdt_ptr, uint32_t fdt_size); void __flush_dcache_area(const void *vaddr, unsigned long size); @@ -45,7 +48,8 @@ static int allocate_module_file(EFI_FILE_HANDLE dir_handl= e, static int handle_module_node(EFI_FILE_HANDLE dir_handle, int module_node_offset, int reg_addr_cells, - int reg_size_cells); + int reg_size_cells, + bool is_domu_module); static bool is_boot_module(int dt_module_offset); static int handle_dom0less_domain_node(EFI_FILE_HANDLE dir_handle, int domain_node); @@ -701,7 +705,8 @@ static int __init allocate_module_file(EFI_FILE_HANDLE = dir_handle, static int __init handle_module_node(EFI_FILE_HANDLE dir_handle, int module_node_offset, int reg_addr_cells, - int reg_size_cells) + int reg_size_cells, + bool is_domu_module) { const void *uefi_name_prop; char mod_string[24]; /* Placeholder for module@ + a 64-bit number + \0= */ @@ -743,6 +748,34 @@ static int __init handle_module_node(EFI_FILE_HANDLE d= ir_handle, return ERROR_SET_REG_PROPERTY; } =20 + if ( !is_domu_module ) + { + if ( (fdt_node_check_compatible(fdt, module_node_offset, + "multiboot,kernel") =3D=3D 0) ) + { + /* + * This is the Dom0 kernel, wire it to the kernel variable beca= use it + * will be verified by the shim lock protocol later in the comm= on + * code. + */ + if ( kernel.addr ) + { + PrintMessage(L"Dom0 kernel already found in cfg file."); + return ERROR_DOM0_ALREADY_FOUND; + } + kernel.need_to_free =3D false; /* Freed using the module array= */ + kernel.addr =3D file->addr; + kernel.size =3D file->size; + } + else if ( ramdisk.addr && + (fdt_node_check_compatible(fdt, module_node_offset, + "multiboot,ramdisk") =3D=3D 0= ) ) + { + PrintMessage(L"Dom0 ramdisk already found in cfg file."); + return ERROR_DOM0_RAMDISK_FOUND; + } + } + return 0; } =20 @@ -799,7 +832,7 @@ static int __init handle_dom0less_domain_node(EFI_FILE_= HANDLE dir_handle, if ( is_boot_module(module_node) ) { int ret =3D handle_module_node(dir_handle, module_node, addr_c= ells, - size_cells); + size_cells, true); if ( ret < 0 ) return ret; } @@ -809,7 +842,7 @@ static int __init handle_dom0less_domain_node(EFI_FILE_= HANDLE dir_handle, =20 /* * This function checks for xen domain nodes under the /chosen node for po= ssible - * domU guests to be loaded. + * dom0 and domU guests to be loaded. * Returns the number of modules loaded or a negative number for error. */ static int __init efi_arch_check_dt_boot(EFI_FILE_HANDLE dir_handle) @@ -836,6 +869,12 @@ static int __init efi_arch_check_dt_boot(EFI_FILE_HAND= LE dir_handle) if ( handle_dom0less_domain_node(dir_handle, node) < 0 ) return ERROR_DT_MODULE_DOMU; } + else if ( is_boot_module(node) ) + { + if ( handle_module_node(dir_handle, node, addr_len, size_len, + false) < 0 ) + return ERROR_DT_MODULE_DOM0; + } } =20 /* Free boot modules file names if any */ diff --git a/xen/common/efi/boot.c b/xen/common/efi/boot.c index daf7c26099..e4295dbe34 100644 --- a/xen/common/efi/boot.c +++ b/xen/common/efi/boot.c @@ -1296,11 +1296,6 @@ efi_start(EFI_HANDLE ImageHandle, EFI_SYSTEM_TABLE *= SystemTable) { read_file(dir_handle, s2w(&name), &kernel, option_str); efi_bs->FreePool(name.w); - - if ( !EFI_ERROR(efi_bs->LocateProtocol(&shim_lock_guid, NULL, - (void **)&shim_lock)) && - (status =3D shim_lock->Verify(kernel.ptr, kernel.size)) != =3D EFI_SUCCESS ) - PrintErrMesg(L"Dom0 kernel image could not be verified", s= tatus); } =20 if ( !read_section(loaded_image, L"ramdisk", &ramdisk, NULL) ) @@ -1385,6 +1380,17 @@ efi_start(EFI_HANDLE ImageHandle, EFI_SYSTEM_TABLE *= SystemTable) if ( !dt_modules_found && !kernel.addr ) blexit(L"No Dom0 kernel image specified."); =20 + /* + * The Dom0 kernel can be loaded from the configuration file or by the + * device tree through the efi_arch_check_dt_boot function, in this st= age + * verify it. + */ + if ( kernel.addr && + !EFI_ERROR(efi_bs->LocateProtocol(&shim_lock_guid, NULL, + (void **)&shim_lock)) && + (status =3D shim_lock->Verify(kernel.ptr, kernel.size)) !=3D EFI_= SUCCESS ) + PrintErrMesg(L"Dom0 kernel image could not be verified", status); + efi_arch_edd(); =20 /* XXX Collect EDID info. */ --=20 2.17.1