Loading...
1// SPDX-License-Identifier: GPL-2.0-only
2/*
3 * Copyright (C) 2012 Red Hat, Inc.
4 * Copyright (C) 2012 Jeremy Kerr <jeremy.kerr@canonical.com>
5 */
6
7#include <linux/ctype.h>
8#include <linux/efi.h>
9#include <linux/fs.h>
10#include <linux/fs_context.h>
11#include <linux/fs_parser.h>
12#include <linux/module.h>
13#include <linux/pagemap.h>
14#include <linux/ucs2_string.h>
15#include <linux/slab.h>
16#include <linux/magic.h>
17#include <linux/statfs.h>
18#include <linux/notifier.h>
19#include <linux/printk.h>
20
21#include "internal.h"
22
23static int efivarfs_ops_notifier(struct notifier_block *nb, unsigned long event,
24 void *data)
25{
26 struct efivarfs_fs_info *sfi = container_of(nb, struct efivarfs_fs_info, nb);
27
28 switch (event) {
29 case EFIVAR_OPS_RDONLY:
30 sfi->sb->s_flags |= SB_RDONLY;
31 break;
32 case EFIVAR_OPS_RDWR:
33 sfi->sb->s_flags &= ~SB_RDONLY;
34 break;
35 default:
36 return NOTIFY_DONE;
37 }
38
39 return NOTIFY_OK;
40}
41
42static void efivarfs_evict_inode(struct inode *inode)
43{
44 clear_inode(inode);
45}
46
47static int efivarfs_show_options(struct seq_file *m, struct dentry *root)
48{
49 struct super_block *sb = root->d_sb;
50 struct efivarfs_fs_info *sbi = sb->s_fs_info;
51 struct efivarfs_mount_opts *opts = &sbi->mount_opts;
52
53 if (!uid_eq(opts->uid, GLOBAL_ROOT_UID))
54 seq_printf(m, ",uid=%u",
55 from_kuid_munged(&init_user_ns, opts->uid));
56 if (!gid_eq(opts->gid, GLOBAL_ROOT_GID))
57 seq_printf(m, ",gid=%u",
58 from_kgid_munged(&init_user_ns, opts->gid));
59 return 0;
60}
61
62static int efivarfs_statfs(struct dentry *dentry, struct kstatfs *buf)
63{
64 const u32 attr = EFI_VARIABLE_NON_VOLATILE |
65 EFI_VARIABLE_BOOTSERVICE_ACCESS |
66 EFI_VARIABLE_RUNTIME_ACCESS;
67 u64 storage_space, remaining_space, max_variable_size;
68 u64 id = huge_encode_dev(dentry->d_sb->s_dev);
69 efi_status_t status;
70
71 /* Some UEFI firmware does not implement QueryVariableInfo() */
72 storage_space = remaining_space = 0;
73 if (efi_rt_services_supported(EFI_RT_SUPPORTED_QUERY_VARIABLE_INFO)) {
74 status = efivar_query_variable_info(attr, &storage_space,
75 &remaining_space,
76 &max_variable_size);
77 if (status != EFI_SUCCESS && status != EFI_UNSUPPORTED)
78 pr_warn_ratelimited("query_variable_info() failed: 0x%lx\n",
79 status);
80 }
81
82 /*
83 * This is not a normal filesystem, so no point in pretending it has a block
84 * size; we declare f_bsize to 1, so that we can then report the exact value
85 * sent by EFI QueryVariableInfo in f_blocks and f_bfree
86 */
87 buf->f_bsize = 1;
88 buf->f_namelen = NAME_MAX;
89 buf->f_blocks = storage_space;
90 buf->f_bfree = remaining_space;
91 buf->f_type = dentry->d_sb->s_magic;
92 buf->f_fsid = u64_to_fsid(id);
93
94 /*
95 * In f_bavail we declare the free space that the kernel will allow writing
96 * when the storage_paranoia x86 quirk is active. To use more, users
97 * should boot the kernel with efi_no_storage_paranoia.
98 */
99 if (remaining_space > efivar_reserved_space())
100 buf->f_bavail = remaining_space - efivar_reserved_space();
101 else
102 buf->f_bavail = 0;
103
104 return 0;
105}
106static const struct super_operations efivarfs_ops = {
107 .statfs = efivarfs_statfs,
108 .drop_inode = generic_delete_inode,
109 .evict_inode = efivarfs_evict_inode,
110 .show_options = efivarfs_show_options,
111};
112
113/*
114 * Compare two efivarfs file names.
115 *
116 * An efivarfs filename is composed of two parts,
117 *
118 * 1. A case-sensitive variable name
119 * 2. A case-insensitive GUID
120 *
121 * So we need to perform a case-sensitive match on part 1 and a
122 * case-insensitive match on part 2.
123 */
124static int efivarfs_d_compare(const struct dentry *dentry,
125 unsigned int len, const char *str,
126 const struct qstr *name)
127{
128 int guid = len - EFI_VARIABLE_GUID_LEN;
129
130 if (name->len != len)
131 return 1;
132
133 /* Case-sensitive compare for the variable name */
134 if (memcmp(str, name->name, guid))
135 return 1;
136
137 /* Case-insensitive compare for the GUID */
138 return strncasecmp(name->name + guid, str + guid, EFI_VARIABLE_GUID_LEN);
139}
140
141static int efivarfs_d_hash(const struct dentry *dentry, struct qstr *qstr)
142{
143 unsigned long hash = init_name_hash(dentry);
144 const unsigned char *s = qstr->name;
145 unsigned int len = qstr->len;
146
147 while (len-- > EFI_VARIABLE_GUID_LEN)
148 hash = partial_name_hash(*s++, hash);
149
150 /* GUID is case-insensitive. */
151 while (len--)
152 hash = partial_name_hash(tolower(*s++), hash);
153
154 qstr->hash = end_name_hash(hash);
155 return 0;
156}
157
158static const struct dentry_operations efivarfs_d_ops = {
159 .d_compare = efivarfs_d_compare,
160 .d_hash = efivarfs_d_hash,
161 .d_delete = always_delete_dentry,
162};
163
164static struct dentry *efivarfs_alloc_dentry(struct dentry *parent, char *name)
165{
166 struct dentry *d;
167 struct qstr q;
168 int err;
169
170 q.name = name;
171 q.len = strlen(name);
172
173 err = efivarfs_d_hash(parent, &q);
174 if (err)
175 return ERR_PTR(err);
176
177 d = d_alloc(parent, &q);
178 if (d)
179 return d;
180
181 return ERR_PTR(-ENOMEM);
182}
183
184static int efivarfs_callback(efi_char16_t *name16, efi_guid_t vendor,
185 unsigned long name_size, void *data,
186 struct list_head *list)
187{
188 struct super_block *sb = (struct super_block *)data;
189 struct efivar_entry *entry;
190 struct inode *inode = NULL;
191 struct dentry *dentry, *root = sb->s_root;
192 unsigned long size = 0;
193 char *name;
194 int len;
195 int err = -ENOMEM;
196 bool is_removable = false;
197
198 if (guid_equal(&vendor, &LINUX_EFI_RANDOM_SEED_TABLE_GUID))
199 return 0;
200
201 entry = kzalloc(sizeof(*entry), GFP_KERNEL);
202 if (!entry)
203 return err;
204
205 memcpy(entry->var.VariableName, name16, name_size);
206 memcpy(&(entry->var.VendorGuid), &vendor, sizeof(efi_guid_t));
207
208 len = ucs2_utf8size(entry->var.VariableName);
209
210 /* name, plus '-', plus GUID, plus NUL*/
211 name = kmalloc(len + 1 + EFI_VARIABLE_GUID_LEN + 1, GFP_KERNEL);
212 if (!name)
213 goto fail;
214
215 ucs2_as_utf8(name, entry->var.VariableName, len);
216
217 if (efivar_variable_is_removable(entry->var.VendorGuid, name, len))
218 is_removable = true;
219
220 name[len] = '-';
221
222 efi_guid_to_str(&entry->var.VendorGuid, name + len + 1);
223
224 name[len + EFI_VARIABLE_GUID_LEN+1] = '\0';
225
226 /* replace invalid slashes like kobject_set_name_vargs does for /sys/firmware/efi/vars. */
227 strreplace(name, '/', '!');
228
229 inode = efivarfs_get_inode(sb, d_inode(root), S_IFREG | 0644, 0,
230 is_removable);
231 if (!inode)
232 goto fail_name;
233
234 dentry = efivarfs_alloc_dentry(root, name);
235 if (IS_ERR(dentry)) {
236 err = PTR_ERR(dentry);
237 goto fail_inode;
238 }
239
240 __efivar_entry_get(entry, NULL, &size, NULL);
241 __efivar_entry_add(entry, list);
242
243 /* copied by the above to local storage in the dentry. */
244 kfree(name);
245
246 inode_lock(inode);
247 inode->i_private = entry;
248 i_size_write(inode, size + sizeof(entry->var.Attributes));
249 inode_unlock(inode);
250 d_add(dentry, inode);
251
252 return 0;
253
254fail_inode:
255 iput(inode);
256fail_name:
257 kfree(name);
258fail:
259 kfree(entry);
260 return err;
261}
262
263static int efivarfs_destroy(struct efivar_entry *entry, void *data)
264{
265 efivar_entry_remove(entry);
266 kfree(entry);
267 return 0;
268}
269
270enum {
271 Opt_uid, Opt_gid,
272};
273
274static const struct fs_parameter_spec efivarfs_parameters[] = {
275 fsparam_uid("uid", Opt_uid),
276 fsparam_gid("gid", Opt_gid),
277 {},
278};
279
280static int efivarfs_parse_param(struct fs_context *fc, struct fs_parameter *param)
281{
282 struct efivarfs_fs_info *sbi = fc->s_fs_info;
283 struct efivarfs_mount_opts *opts = &sbi->mount_opts;
284 struct fs_parse_result result;
285 int opt;
286
287 opt = fs_parse(fc, efivarfs_parameters, param, &result);
288 if (opt < 0)
289 return opt;
290
291 switch (opt) {
292 case Opt_uid:
293 opts->uid = result.uid;
294 break;
295 case Opt_gid:
296 opts->gid = result.gid;
297 break;
298 default:
299 return -EINVAL;
300 }
301
302 return 0;
303}
304
305static int efivarfs_fill_super(struct super_block *sb, struct fs_context *fc)
306{
307 struct efivarfs_fs_info *sfi = sb->s_fs_info;
308 struct inode *inode = NULL;
309 struct dentry *root;
310 int err;
311
312 sb->s_maxbytes = MAX_LFS_FILESIZE;
313 sb->s_blocksize = PAGE_SIZE;
314 sb->s_blocksize_bits = PAGE_SHIFT;
315 sb->s_magic = EFIVARFS_MAGIC;
316 sb->s_op = &efivarfs_ops;
317 sb->s_d_op = &efivarfs_d_ops;
318 sb->s_time_gran = 1;
319
320 if (!efivar_supports_writes())
321 sb->s_flags |= SB_RDONLY;
322
323 inode = efivarfs_get_inode(sb, NULL, S_IFDIR | 0755, 0, true);
324 if (!inode)
325 return -ENOMEM;
326 inode->i_op = &efivarfs_dir_inode_operations;
327
328 root = d_make_root(inode);
329 sb->s_root = root;
330 if (!root)
331 return -ENOMEM;
332
333 sfi->sb = sb;
334 sfi->nb.notifier_call = efivarfs_ops_notifier;
335 err = blocking_notifier_chain_register(&efivar_ops_nh, &sfi->nb);
336 if (err)
337 return err;
338
339 return efivar_init(efivarfs_callback, sb, &sfi->efivarfs_list);
340}
341
342static int efivarfs_get_tree(struct fs_context *fc)
343{
344 return get_tree_single(fc, efivarfs_fill_super);
345}
346
347static int efivarfs_reconfigure(struct fs_context *fc)
348{
349 if (!efivar_supports_writes() && !(fc->sb_flags & SB_RDONLY)) {
350 pr_err("Firmware does not support SetVariableRT. Can not remount with rw\n");
351 return -EINVAL;
352 }
353
354 return 0;
355}
356
357static const struct fs_context_operations efivarfs_context_ops = {
358 .get_tree = efivarfs_get_tree,
359 .parse_param = efivarfs_parse_param,
360 .reconfigure = efivarfs_reconfigure,
361};
362
363static int efivarfs_init_fs_context(struct fs_context *fc)
364{
365 struct efivarfs_fs_info *sfi;
366
367 if (!efivar_is_available())
368 return -EOPNOTSUPP;
369
370 sfi = kzalloc(sizeof(*sfi), GFP_KERNEL);
371 if (!sfi)
372 return -ENOMEM;
373
374 INIT_LIST_HEAD(&sfi->efivarfs_list);
375
376 sfi->mount_opts.uid = GLOBAL_ROOT_UID;
377 sfi->mount_opts.gid = GLOBAL_ROOT_GID;
378
379 fc->s_fs_info = sfi;
380 fc->ops = &efivarfs_context_ops;
381 return 0;
382}
383
384static void efivarfs_kill_sb(struct super_block *sb)
385{
386 struct efivarfs_fs_info *sfi = sb->s_fs_info;
387
388 blocking_notifier_chain_unregister(&efivar_ops_nh, &sfi->nb);
389 kill_litter_super(sb);
390
391 /* Remove all entries and destroy */
392 efivar_entry_iter(efivarfs_destroy, &sfi->efivarfs_list, NULL);
393 kfree(sfi);
394}
395
396static struct file_system_type efivarfs_type = {
397 .owner = THIS_MODULE,
398 .name = "efivarfs",
399 .init_fs_context = efivarfs_init_fs_context,
400 .kill_sb = efivarfs_kill_sb,
401 .parameters = efivarfs_parameters,
402};
403
404static __init int efivarfs_init(void)
405{
406 return register_filesystem(&efivarfs_type);
407}
408
409static __exit void efivarfs_exit(void)
410{
411 unregister_filesystem(&efivarfs_type);
412}
413
414MODULE_AUTHOR("Matthew Garrett, Jeremy Kerr");
415MODULE_DESCRIPTION("EFI Variable Filesystem");
416MODULE_LICENSE("GPL");
417MODULE_ALIAS_FS("efivarfs");
418
419module_init(efivarfs_init);
420module_exit(efivarfs_exit);
1// SPDX-License-Identifier: GPL-2.0-only
2/*
3 * Copyright (C) 2012 Red Hat, Inc.
4 * Copyright (C) 2012 Jeremy Kerr <jeremy.kerr@canonical.com>
5 */
6
7#include <linux/ctype.h>
8#include <linux/efi.h>
9#include <linux/fs.h>
10#include <linux/fs_context.h>
11#include <linux/module.h>
12#include <linux/pagemap.h>
13#include <linux/ucs2_string.h>
14#include <linux/slab.h>
15#include <linux/magic.h>
16
17#include "internal.h"
18
19LIST_HEAD(efivarfs_list);
20
21static void efivarfs_evict_inode(struct inode *inode)
22{
23 clear_inode(inode);
24}
25
26static const struct super_operations efivarfs_ops = {
27 .statfs = simple_statfs,
28 .drop_inode = generic_delete_inode,
29 .evict_inode = efivarfs_evict_inode,
30};
31
32/*
33 * Compare two efivarfs file names.
34 *
35 * An efivarfs filename is composed of two parts,
36 *
37 * 1. A case-sensitive variable name
38 * 2. A case-insensitive GUID
39 *
40 * So we need to perform a case-sensitive match on part 1 and a
41 * case-insensitive match on part 2.
42 */
43static int efivarfs_d_compare(const struct dentry *dentry,
44 unsigned int len, const char *str,
45 const struct qstr *name)
46{
47 int guid = len - EFI_VARIABLE_GUID_LEN;
48
49 if (name->len != len)
50 return 1;
51
52 /* Case-sensitive compare for the variable name */
53 if (memcmp(str, name->name, guid))
54 return 1;
55
56 /* Case-insensitive compare for the GUID */
57 return strncasecmp(name->name + guid, str + guid, EFI_VARIABLE_GUID_LEN);
58}
59
60static int efivarfs_d_hash(const struct dentry *dentry, struct qstr *qstr)
61{
62 unsigned long hash = init_name_hash(dentry);
63 const unsigned char *s = qstr->name;
64 unsigned int len = qstr->len;
65
66 if (!efivarfs_valid_name(s, len))
67 return -EINVAL;
68
69 while (len-- > EFI_VARIABLE_GUID_LEN)
70 hash = partial_name_hash(*s++, hash);
71
72 /* GUID is case-insensitive. */
73 while (len--)
74 hash = partial_name_hash(tolower(*s++), hash);
75
76 qstr->hash = end_name_hash(hash);
77 return 0;
78}
79
80static const struct dentry_operations efivarfs_d_ops = {
81 .d_compare = efivarfs_d_compare,
82 .d_hash = efivarfs_d_hash,
83 .d_delete = always_delete_dentry,
84};
85
86static struct dentry *efivarfs_alloc_dentry(struct dentry *parent, char *name)
87{
88 struct dentry *d;
89 struct qstr q;
90 int err;
91
92 q.name = name;
93 q.len = strlen(name);
94
95 err = efivarfs_d_hash(parent, &q);
96 if (err)
97 return ERR_PTR(err);
98
99 d = d_alloc(parent, &q);
100 if (d)
101 return d;
102
103 return ERR_PTR(-ENOMEM);
104}
105
106static int efivarfs_callback(efi_char16_t *name16, efi_guid_t vendor,
107 unsigned long name_size, void *data)
108{
109 struct super_block *sb = (struct super_block *)data;
110 struct efivar_entry *entry;
111 struct inode *inode = NULL;
112 struct dentry *dentry, *root = sb->s_root;
113 unsigned long size = 0;
114 char *name;
115 int len;
116 int err = -ENOMEM;
117 bool is_removable = false;
118
119 entry = kzalloc(sizeof(*entry), GFP_KERNEL);
120 if (!entry)
121 return err;
122
123 memcpy(entry->var.VariableName, name16, name_size);
124 memcpy(&(entry->var.VendorGuid), &vendor, sizeof(efi_guid_t));
125
126 len = ucs2_utf8size(entry->var.VariableName);
127
128 /* name, plus '-', plus GUID, plus NUL*/
129 name = kmalloc(len + 1 + EFI_VARIABLE_GUID_LEN + 1, GFP_KERNEL);
130 if (!name)
131 goto fail;
132
133 ucs2_as_utf8(name, entry->var.VariableName, len);
134
135 if (efivar_variable_is_removable(entry->var.VendorGuid, name, len))
136 is_removable = true;
137
138 name[len] = '-';
139
140 efi_guid_to_str(&entry->var.VendorGuid, name + len + 1);
141
142 name[len + EFI_VARIABLE_GUID_LEN+1] = '\0';
143
144 inode = efivarfs_get_inode(sb, d_inode(root), S_IFREG | 0644, 0,
145 is_removable);
146 if (!inode)
147 goto fail_name;
148
149 dentry = efivarfs_alloc_dentry(root, name);
150 if (IS_ERR(dentry)) {
151 err = PTR_ERR(dentry);
152 goto fail_inode;
153 }
154
155 efivar_entry_size(entry, &size);
156 err = efivar_entry_add(entry, &efivarfs_list);
157 if (err)
158 goto fail_inode;
159
160 /* copied by the above to local storage in the dentry. */
161 kfree(name);
162
163 inode_lock(inode);
164 inode->i_private = entry;
165 i_size_write(inode, size + sizeof(entry->var.Attributes));
166 inode_unlock(inode);
167 d_add(dentry, inode);
168
169 return 0;
170
171fail_inode:
172 iput(inode);
173fail_name:
174 kfree(name);
175fail:
176 kfree(entry);
177 return err;
178}
179
180static int efivarfs_destroy(struct efivar_entry *entry, void *data)
181{
182 int err = efivar_entry_remove(entry);
183
184 if (err)
185 return err;
186 kfree(entry);
187 return 0;
188}
189
190static int efivarfs_fill_super(struct super_block *sb, struct fs_context *fc)
191{
192 struct inode *inode = NULL;
193 struct dentry *root;
194 int err;
195
196 sb->s_maxbytes = MAX_LFS_FILESIZE;
197 sb->s_blocksize = PAGE_SIZE;
198 sb->s_blocksize_bits = PAGE_SHIFT;
199 sb->s_magic = EFIVARFS_MAGIC;
200 sb->s_op = &efivarfs_ops;
201 sb->s_d_op = &efivarfs_d_ops;
202 sb->s_time_gran = 1;
203
204 if (!efivar_supports_writes())
205 sb->s_flags |= SB_RDONLY;
206
207 inode = efivarfs_get_inode(sb, NULL, S_IFDIR | 0755, 0, true);
208 if (!inode)
209 return -ENOMEM;
210 inode->i_op = &efivarfs_dir_inode_operations;
211
212 root = d_make_root(inode);
213 sb->s_root = root;
214 if (!root)
215 return -ENOMEM;
216
217 INIT_LIST_HEAD(&efivarfs_list);
218
219 err = efivar_init(efivarfs_callback, (void *)sb, true, &efivarfs_list);
220 if (err)
221 __efivar_entry_iter(efivarfs_destroy, &efivarfs_list, NULL, NULL);
222
223 return err;
224}
225
226static int efivarfs_get_tree(struct fs_context *fc)
227{
228 return get_tree_single(fc, efivarfs_fill_super);
229}
230
231static const struct fs_context_operations efivarfs_context_ops = {
232 .get_tree = efivarfs_get_tree,
233};
234
235static int efivarfs_init_fs_context(struct fs_context *fc)
236{
237 fc->ops = &efivarfs_context_ops;
238 return 0;
239}
240
241static void efivarfs_kill_sb(struct super_block *sb)
242{
243 kill_litter_super(sb);
244
245 /* Remove all entries and destroy */
246 __efivar_entry_iter(efivarfs_destroy, &efivarfs_list, NULL, NULL);
247}
248
249static struct file_system_type efivarfs_type = {
250 .owner = THIS_MODULE,
251 .name = "efivarfs",
252 .init_fs_context = efivarfs_init_fs_context,
253 .kill_sb = efivarfs_kill_sb,
254};
255
256static __init int efivarfs_init(void)
257{
258 if (!efivars_kobject())
259 return -ENODEV;
260
261 return register_filesystem(&efivarfs_type);
262}
263
264static __exit void efivarfs_exit(void)
265{
266 unregister_filesystem(&efivarfs_type);
267}
268
269MODULE_AUTHOR("Matthew Garrett, Jeremy Kerr");
270MODULE_DESCRIPTION("EFI Variable Filesystem");
271MODULE_LICENSE("GPL");
272MODULE_ALIAS_FS("efivarfs");
273
274module_init(efivarfs_init);
275module_exit(efivarfs_exit);