xref: /openbmc/u-boot/disk/part_efi.c (revision d9b23e26)
1 /*
2  * Copyright (C) 2008 RuggedCom, Inc.
3  * Richard Retanubun <RichardRetanubun@RuggedCom.com>
4  *
5  * SPDX-License-Identifier:	GPL-2.0+
6  */
7 
8 /*
9  * NOTE:
10  *   when CONFIG_SYS_64BIT_LBA is not defined, lbaint_t is 32 bits; this
11  *   limits the maximum size of addressable storage to < 2 Terra Bytes
12  */
13 #include <asm/unaligned.h>
14 #include <common.h>
15 #include <command.h>
16 #include <fdtdec.h>
17 #include <ide.h>
18 #include <inttypes.h>
19 #include <malloc.h>
20 #include <memalign.h>
21 #include <part_efi.h>
22 #include <linux/compiler.h>
23 #include <linux/ctype.h>
24 
25 DECLARE_GLOBAL_DATA_PTR;
26 
27 #ifdef HAVE_BLOCK_DEVICE
28 /**
29  * efi_crc32() - EFI version of crc32 function
30  * @buf: buffer to calculate crc32 of
31  * @len - length of buf
32  *
33  * Description: Returns EFI-style CRC32 value for @buf
34  */
35 static inline u32 efi_crc32(const void *buf, u32 len)
36 {
37 	return crc32(0, buf, len);
38 }
39 
40 /*
41  * Private function prototypes
42  */
43 
44 static int pmbr_part_valid(struct partition *part);
45 static int is_pmbr_valid(legacy_mbr * mbr);
46 static int is_gpt_valid(struct blk_desc *dev_desc, u64 lba,
47 				gpt_header *pgpt_head, gpt_entry **pgpt_pte);
48 static gpt_entry *alloc_read_gpt_entries(struct blk_desc *dev_desc,
49 					 gpt_header *pgpt_head);
50 static int is_pte_valid(gpt_entry * pte);
51 
52 static char *print_efiname(gpt_entry *pte)
53 {
54 	static char name[PARTNAME_SZ + 1];
55 	int i;
56 	for (i = 0; i < PARTNAME_SZ; i++) {
57 		u8 c;
58 		c = pte->partition_name[i] & 0xff;
59 		c = (c && !isprint(c)) ? '.' : c;
60 		name[i] = c;
61 	}
62 	name[PARTNAME_SZ] = 0;
63 	return name;
64 }
65 
66 static efi_guid_t system_guid = PARTITION_SYSTEM_GUID;
67 
68 static inline int is_bootable(gpt_entry *p)
69 {
70 	return p->attributes.fields.legacy_bios_bootable ||
71 		!memcmp(&(p->partition_type_guid), &system_guid,
72 			sizeof(efi_guid_t));
73 }
74 
75 static int validate_gpt_header(gpt_header *gpt_h, lbaint_t lba,
76 		lbaint_t lastlba)
77 {
78 	uint32_t crc32_backup = 0;
79 	uint32_t calc_crc32;
80 
81 	/* Check the GPT header signature */
82 	if (le64_to_cpu(gpt_h->signature) != GPT_HEADER_SIGNATURE) {
83 		printf("%s signature is wrong: 0x%llX != 0x%llX\n",
84 		       "GUID Partition Table Header",
85 		       le64_to_cpu(gpt_h->signature),
86 		       GPT_HEADER_SIGNATURE);
87 		return -1;
88 	}
89 
90 	/* Check the GUID Partition Table CRC */
91 	memcpy(&crc32_backup, &gpt_h->header_crc32, sizeof(crc32_backup));
92 	memset(&gpt_h->header_crc32, 0, sizeof(gpt_h->header_crc32));
93 
94 	calc_crc32 = efi_crc32((const unsigned char *)gpt_h,
95 		le32_to_cpu(gpt_h->header_size));
96 
97 	memcpy(&gpt_h->header_crc32, &crc32_backup, sizeof(crc32_backup));
98 
99 	if (calc_crc32 != le32_to_cpu(crc32_backup)) {
100 		printf("%s CRC is wrong: 0x%x != 0x%x\n",
101 		       "GUID Partition Table Header",
102 		       le32_to_cpu(crc32_backup), calc_crc32);
103 		return -1;
104 	}
105 
106 	/*
107 	 * Check that the my_lba entry points to the LBA that contains the GPT
108 	 */
109 	if (le64_to_cpu(gpt_h->my_lba) != lba) {
110 		printf("GPT: my_lba incorrect: %llX != " LBAF "\n",
111 		       le64_to_cpu(gpt_h->my_lba),
112 		       lba);
113 		return -1;
114 	}
115 
116 	/*
117 	 * Check that the first_usable_lba and that the last_usable_lba are
118 	 * within the disk.
119 	 */
120 	if (le64_to_cpu(gpt_h->first_usable_lba) > lastlba) {
121 		printf("GPT: first_usable_lba incorrect: %llX > " LBAF "\n",
122 		       le64_to_cpu(gpt_h->first_usable_lba), lastlba);
123 		return -1;
124 	}
125 	if (le64_to_cpu(gpt_h->last_usable_lba) > lastlba) {
126 		printf("GPT: last_usable_lba incorrect: %llX > " LBAF "\n",
127 		       le64_to_cpu(gpt_h->last_usable_lba), lastlba);
128 		return -1;
129 	}
130 
131 	debug("GPT: first_usable_lba: %llX last_usable_lba: %llX last lba: "
132 	      LBAF "\n", le64_to_cpu(gpt_h->first_usable_lba),
133 	      le64_to_cpu(gpt_h->last_usable_lba), lastlba);
134 
135 	return 0;
136 }
137 
138 static int validate_gpt_entries(gpt_header *gpt_h, gpt_entry *gpt_e)
139 {
140 	uint32_t calc_crc32;
141 
142 	/* Check the GUID Partition Table Entry Array CRC */
143 	calc_crc32 = efi_crc32((const unsigned char *)gpt_e,
144 		le32_to_cpu(gpt_h->num_partition_entries) *
145 		le32_to_cpu(gpt_h->sizeof_partition_entry));
146 
147 	if (calc_crc32 != le32_to_cpu(gpt_h->partition_entry_array_crc32)) {
148 		printf("%s: 0x%x != 0x%x\n",
149 		       "GUID Partition Table Entry Array CRC is wrong",
150 		       le32_to_cpu(gpt_h->partition_entry_array_crc32),
151 		       calc_crc32);
152 		return -1;
153 	}
154 
155 	return 0;
156 }
157 
158 static void prepare_backup_gpt_header(gpt_header *gpt_h)
159 {
160 	uint32_t calc_crc32;
161 	uint64_t val;
162 
163 	/* recalculate the values for the Backup GPT Header */
164 	val = le64_to_cpu(gpt_h->my_lba);
165 	gpt_h->my_lba = gpt_h->alternate_lba;
166 	gpt_h->alternate_lba = cpu_to_le64(val);
167 	gpt_h->partition_entry_lba =
168 			cpu_to_le64(le64_to_cpu(gpt_h->last_usable_lba) + 1);
169 	gpt_h->header_crc32 = 0;
170 
171 	calc_crc32 = efi_crc32((const unsigned char *)gpt_h,
172 			       le32_to_cpu(gpt_h->header_size));
173 	gpt_h->header_crc32 = cpu_to_le32(calc_crc32);
174 }
175 
176 #if CONFIG_IS_ENABLED(EFI_PARTITION)
177 /*
178  * Public Functions (include/part.h)
179  */
180 
181 /*
182  * UUID is displayed as 32 hexadecimal digits, in 5 groups,
183  * separated by hyphens, in the form 8-4-4-4-12 for a total of 36 characters
184  */
185 int get_disk_guid(struct blk_desc * dev_desc, char *guid)
186 {
187 	ALLOC_CACHE_ALIGN_BUFFER_PAD(gpt_header, gpt_head, 1, dev_desc->blksz);
188 	gpt_entry *gpt_pte = NULL;
189 	unsigned char *guid_bin;
190 
191 	/* This function validates AND fills in the GPT header and PTE */
192 	if (is_gpt_valid(dev_desc, GPT_PRIMARY_PARTITION_TABLE_LBA,
193 			 gpt_head, &gpt_pte) != 1) {
194 		printf("%s: *** ERROR: Invalid GPT ***\n", __func__);
195 		if (is_gpt_valid(dev_desc, dev_desc->lba - 1,
196 				 gpt_head, &gpt_pte) != 1) {
197 			printf("%s: *** ERROR: Invalid Backup GPT ***\n",
198 			       __func__);
199 			return -EINVAL;
200 		} else {
201 			printf("%s: ***        Using Backup GPT ***\n",
202 			       __func__);
203 		}
204 	}
205 
206 	guid_bin = gpt_head->disk_guid.b;
207 	uuid_bin_to_str(guid_bin, guid, UUID_STR_FORMAT_GUID);
208 
209 	return 0;
210 }
211 
212 void part_print_efi(struct blk_desc *dev_desc)
213 {
214 	ALLOC_CACHE_ALIGN_BUFFER_PAD(gpt_header, gpt_head, 1, dev_desc->blksz);
215 	gpt_entry *gpt_pte = NULL;
216 	int i = 0;
217 	char uuid[UUID_STR_LEN + 1];
218 	unsigned char *uuid_bin;
219 
220 	/* This function validates AND fills in the GPT header and PTE */
221 	if (is_gpt_valid(dev_desc, GPT_PRIMARY_PARTITION_TABLE_LBA,
222 			 gpt_head, &gpt_pte) != 1) {
223 		printf("%s: *** ERROR: Invalid GPT ***\n", __func__);
224 		if (is_gpt_valid(dev_desc, (dev_desc->lba - 1),
225 				 gpt_head, &gpt_pte) != 1) {
226 			printf("%s: *** ERROR: Invalid Backup GPT ***\n",
227 			       __func__);
228 			return;
229 		} else {
230 			printf("%s: ***        Using Backup GPT ***\n",
231 			       __func__);
232 		}
233 	}
234 
235 	debug("%s: gpt-entry at %p\n", __func__, gpt_pte);
236 
237 	printf("Part\tStart LBA\tEnd LBA\t\tName\n");
238 	printf("\tAttributes\n");
239 	printf("\tType GUID\n");
240 	printf("\tPartition GUID\n");
241 
242 	for (i = 0; i < le32_to_cpu(gpt_head->num_partition_entries); i++) {
243 		/* Stop at the first non valid PTE */
244 		if (!is_pte_valid(&gpt_pte[i]))
245 			break;
246 
247 		printf("%3d\t0x%08llx\t0x%08llx\t\"%s\"\n", (i + 1),
248 			le64_to_cpu(gpt_pte[i].starting_lba),
249 			le64_to_cpu(gpt_pte[i].ending_lba),
250 			print_efiname(&gpt_pte[i]));
251 		printf("\tattrs:\t0x%016llx\n", gpt_pte[i].attributes.raw);
252 		uuid_bin = (unsigned char *)gpt_pte[i].partition_type_guid.b;
253 		uuid_bin_to_str(uuid_bin, uuid, UUID_STR_FORMAT_GUID);
254 		printf("\ttype:\t%s\n", uuid);
255 #ifdef CONFIG_PARTITION_TYPE_GUID
256 		if (!uuid_guid_get_str(uuid_bin, uuid))
257 			printf("\ttype:\t%s\n", uuid);
258 #endif
259 		uuid_bin = (unsigned char *)gpt_pte[i].unique_partition_guid.b;
260 		uuid_bin_to_str(uuid_bin, uuid, UUID_STR_FORMAT_GUID);
261 		printf("\tguid:\t%s\n", uuid);
262 	}
263 
264 	/* Remember to free pte */
265 	free(gpt_pte);
266 	return;
267 }
268 
269 int part_get_info_efi(struct blk_desc *dev_desc, int part,
270 		      disk_partition_t *info)
271 {
272 	ALLOC_CACHE_ALIGN_BUFFER_PAD(gpt_header, gpt_head, 1, dev_desc->blksz);
273 	gpt_entry *gpt_pte = NULL;
274 
275 	/* "part" argument must be at least 1 */
276 	if (part < 1) {
277 		printf("%s: Invalid Argument(s)\n", __func__);
278 		return -1;
279 	}
280 
281 	/* This function validates AND fills in the GPT header and PTE */
282 	if (is_gpt_valid(dev_desc, GPT_PRIMARY_PARTITION_TABLE_LBA,
283 			gpt_head, &gpt_pte) != 1) {
284 		printf("%s: *** ERROR: Invalid GPT ***\n", __func__);
285 		if (is_gpt_valid(dev_desc, (dev_desc->lba - 1),
286 				 gpt_head, &gpt_pte) != 1) {
287 			printf("%s: *** ERROR: Invalid Backup GPT ***\n",
288 			       __func__);
289 			return -1;
290 		} else {
291 			printf("%s: ***        Using Backup GPT ***\n",
292 			       __func__);
293 		}
294 	}
295 
296 	if (part > le32_to_cpu(gpt_head->num_partition_entries) ||
297 	    !is_pte_valid(&gpt_pte[part - 1])) {
298 		debug("%s: *** ERROR: Invalid partition number %d ***\n",
299 			__func__, part);
300 		free(gpt_pte);
301 		return -1;
302 	}
303 
304 	/* The 'lbaint_t' casting may limit the maximum disk size to 2 TB */
305 	info->start = (lbaint_t)le64_to_cpu(gpt_pte[part - 1].starting_lba);
306 	/* The ending LBA is inclusive, to calculate size, add 1 to it */
307 	info->size = (lbaint_t)le64_to_cpu(gpt_pte[part - 1].ending_lba) + 1
308 		     - info->start;
309 	info->blksz = dev_desc->blksz;
310 
311 	sprintf((char *)info->name, "%s",
312 			print_efiname(&gpt_pte[part - 1]));
313 	strcpy((char *)info->type, "U-Boot");
314 	info->bootable = is_bootable(&gpt_pte[part - 1]);
315 #if CONFIG_IS_ENABLED(PARTITION_UUIDS)
316 	uuid_bin_to_str(gpt_pte[part - 1].unique_partition_guid.b, info->uuid,
317 			UUID_STR_FORMAT_GUID);
318 #endif
319 #ifdef CONFIG_PARTITION_TYPE_GUID
320 	uuid_bin_to_str(gpt_pte[part - 1].partition_type_guid.b,
321 			info->type_guid, UUID_STR_FORMAT_GUID);
322 #endif
323 
324 	debug("%s: start 0x" LBAF ", size 0x" LBAF ", name %s\n", __func__,
325 	      info->start, info->size, info->name);
326 
327 	/* Remember to free pte */
328 	free(gpt_pte);
329 	return 0;
330 }
331 
332 static int part_test_efi(struct blk_desc *dev_desc)
333 {
334 	ALLOC_CACHE_ALIGN_BUFFER_PAD(legacy_mbr, legacymbr, 1, dev_desc->blksz);
335 
336 	/* Read legacy MBR from block 0 and validate it */
337 	if ((blk_dread(dev_desc, 0, 1, (ulong *)legacymbr) != 1)
338 		|| (is_pmbr_valid(legacymbr) != 1)) {
339 		return -1;
340 	}
341 	return 0;
342 }
343 
344 /**
345  * set_protective_mbr(): Set the EFI protective MBR
346  * @param dev_desc - block device descriptor
347  *
348  * @return - zero on success, otherwise error
349  */
350 static int set_protective_mbr(struct blk_desc *dev_desc)
351 {
352 	/* Setup the Protective MBR */
353 	ALLOC_CACHE_ALIGN_BUFFER(legacy_mbr, p_mbr, 1);
354 	memset(p_mbr, 0, sizeof(*p_mbr));
355 
356 	if (p_mbr == NULL) {
357 		printf("%s: calloc failed!\n", __func__);
358 		return -1;
359 	}
360 
361 	/* Read MBR to backup boot code if it exists */
362 	if (blk_dread(dev_desc, 0, 1, p_mbr) != 1) {
363 		error("** Can't read from device %d **\n", dev_desc->devnum);
364 		return -1;
365 	}
366 
367 	/* Append signature */
368 	p_mbr->signature = MSDOS_MBR_SIGNATURE;
369 	p_mbr->partition_record[0].sys_ind = EFI_PMBR_OSTYPE_EFI_GPT;
370 	p_mbr->partition_record[0].start_sect = 1;
371 	p_mbr->partition_record[0].nr_sects = (u32) dev_desc->lba - 1;
372 
373 	/* Write MBR sector to the MMC device */
374 	if (blk_dwrite(dev_desc, 0, 1, p_mbr) != 1) {
375 		printf("** Can't write to device %d **\n",
376 			dev_desc->devnum);
377 		return -1;
378 	}
379 
380 	return 0;
381 }
382 
383 int write_gpt_table(struct blk_desc *dev_desc,
384 		gpt_header *gpt_h, gpt_entry *gpt_e)
385 {
386 	const int pte_blk_cnt = BLOCK_CNT((gpt_h->num_partition_entries
387 					   * sizeof(gpt_entry)), dev_desc);
388 	u32 calc_crc32;
389 
390 	debug("max lba: %x\n", (u32) dev_desc->lba);
391 	/* Setup the Protective MBR */
392 	if (set_protective_mbr(dev_desc) < 0)
393 		goto err;
394 
395 	/* Generate CRC for the Primary GPT Header */
396 	calc_crc32 = efi_crc32((const unsigned char *)gpt_e,
397 			      le32_to_cpu(gpt_h->num_partition_entries) *
398 			      le32_to_cpu(gpt_h->sizeof_partition_entry));
399 	gpt_h->partition_entry_array_crc32 = cpu_to_le32(calc_crc32);
400 
401 	calc_crc32 = efi_crc32((const unsigned char *)gpt_h,
402 			      le32_to_cpu(gpt_h->header_size));
403 	gpt_h->header_crc32 = cpu_to_le32(calc_crc32);
404 
405 	/* Write the First GPT to the block right after the Legacy MBR */
406 	if (blk_dwrite(dev_desc, 1, 1, gpt_h) != 1)
407 		goto err;
408 
409 	if (blk_dwrite(dev_desc, le64_to_cpu(gpt_h->partition_entry_lba),
410 		       pte_blk_cnt, gpt_e) != pte_blk_cnt)
411 		goto err;
412 
413 	prepare_backup_gpt_header(gpt_h);
414 
415 	if (blk_dwrite(dev_desc, (lbaint_t)le64_to_cpu(gpt_h->last_usable_lba)
416 		       + 1, pte_blk_cnt, gpt_e) != pte_blk_cnt)
417 		goto err;
418 
419 	if (blk_dwrite(dev_desc, (lbaint_t)le64_to_cpu(gpt_h->my_lba), 1,
420 		       gpt_h) != 1)
421 		goto err;
422 
423 	debug("GPT successfully written to block device!\n");
424 	return 0;
425 
426  err:
427 	printf("** Can't write to device %d **\n", dev_desc->devnum);
428 	return -1;
429 }
430 
431 int gpt_fill_pte(struct blk_desc *dev_desc,
432 		 gpt_header *gpt_h, gpt_entry *gpt_e,
433 		 disk_partition_t *partitions, int parts)
434 {
435 	lbaint_t offset = (lbaint_t)le64_to_cpu(gpt_h->first_usable_lba);
436 	lbaint_t last_usable_lba = (lbaint_t)
437 			le64_to_cpu(gpt_h->last_usable_lba);
438 	int i, k;
439 	size_t efiname_len, dosname_len;
440 #if CONFIG_IS_ENABLED(PARTITION_UUIDS)
441 	char *str_uuid;
442 	unsigned char *bin_uuid;
443 #endif
444 #ifdef CONFIG_PARTITION_TYPE_GUID
445 	char *str_type_guid;
446 	unsigned char *bin_type_guid;
447 #endif
448 	size_t hdr_start = gpt_h->my_lba;
449 	size_t hdr_end = hdr_start + 1;
450 
451 	size_t pte_start = gpt_h->partition_entry_lba;
452 	size_t pte_end = pte_start +
453 		gpt_h->num_partition_entries * gpt_h->sizeof_partition_entry /
454 		dev_desc->blksz;
455 
456 	for (i = 0; i < parts; i++) {
457 		/* partition starting lba */
458 		lbaint_t start = partitions[i].start;
459 		lbaint_t size = partitions[i].size;
460 
461 		if (start) {
462 			offset = start + size;
463 		} else {
464 			start = offset;
465 			offset += size;
466 		}
467 
468 		/*
469 		 * If our partition overlaps with either the GPT
470 		 * header, or the partition entry, reject it.
471 		 */
472 		if (((start <= hdr_end && hdr_start <= (start + size)) ||
473 		     (start <= pte_end && pte_start <= (start + size)))) {
474 			printf("Partition overlap\n");
475 			return -1;
476 		}
477 
478 		gpt_e[i].starting_lba = cpu_to_le64(start);
479 
480 		if (offset > (last_usable_lba + 1)) {
481 			printf("Partitions layout exceds disk size\n");
482 			return -1;
483 		}
484 		/* partition ending lba */
485 		if ((i == parts - 1) && (size == 0))
486 			/* extend the last partition to maximuim */
487 			gpt_e[i].ending_lba = gpt_h->last_usable_lba;
488 		else
489 			gpt_e[i].ending_lba = cpu_to_le64(offset - 1);
490 
491 #ifdef CONFIG_PARTITION_TYPE_GUID
492 		str_type_guid = partitions[i].type_guid;
493 		bin_type_guid = gpt_e[i].partition_type_guid.b;
494 		if (strlen(str_type_guid)) {
495 			if (uuid_str_to_bin(str_type_guid, bin_type_guid,
496 					    UUID_STR_FORMAT_GUID)) {
497 				printf("Partition no. %d: invalid type guid: %s\n",
498 				       i, str_type_guid);
499 				return -1;
500 			}
501 		} else {
502 			/* default partition type GUID */
503 			memcpy(bin_type_guid,
504 			       &PARTITION_BASIC_DATA_GUID, 16);
505 		}
506 #else
507 		/* partition type GUID */
508 		memcpy(gpt_e[i].partition_type_guid.b,
509 			&PARTITION_BASIC_DATA_GUID, 16);
510 #endif
511 
512 #if CONFIG_IS_ENABLED(PARTITION_UUIDS)
513 		str_uuid = partitions[i].uuid;
514 		bin_uuid = gpt_e[i].unique_partition_guid.b;
515 
516 		if (uuid_str_to_bin(str_uuid, bin_uuid, UUID_STR_FORMAT_GUID)) {
517 			printf("Partition no. %d: invalid guid: %s\n",
518 				i, str_uuid);
519 			return -1;
520 		}
521 #endif
522 
523 		/* partition attributes */
524 		memset(&gpt_e[i].attributes, 0,
525 		       sizeof(gpt_entry_attributes));
526 
527 		if (partitions[i].bootable)
528 			gpt_e[i].attributes.fields.legacy_bios_bootable = 1;
529 
530 		/* partition name */
531 		efiname_len = sizeof(gpt_e[i].partition_name)
532 			/ sizeof(efi_char16_t);
533 		dosname_len = sizeof(partitions[i].name);
534 
535 		memset(gpt_e[i].partition_name, 0,
536 		       sizeof(gpt_e[i].partition_name));
537 
538 		for (k = 0; k < min(dosname_len, efiname_len); k++)
539 			gpt_e[i].partition_name[k] =
540 				(efi_char16_t)(partitions[i].name[k]);
541 
542 		debug("%s: name: %s offset[%d]: 0x" LBAF
543 		      " size[%d]: 0x" LBAF "\n",
544 		      __func__, partitions[i].name, i,
545 		      offset, i, size);
546 	}
547 
548 	return 0;
549 }
550 
551 static uint32_t partition_entries_offset(struct blk_desc *dev_desc)
552 {
553 	uint32_t offset_blks = 2;
554 	uint32_t __maybe_unused offset_bytes;
555 	int __maybe_unused config_offset;
556 
557 #if defined(CONFIG_EFI_PARTITION_ENTRIES_OFF)
558 	/*
559 	 * Some architectures require their SPL loader at a fixed
560 	 * address within the first 16KB of the disk.  To avoid an
561 	 * overlap with the partition entries of the EFI partition
562 	 * table, the first safe offset (in bytes, from the start of
563 	 * the disk) for the entries can be set in
564 	 * CONFIG_EFI_PARTITION_ENTRIES_OFF.
565 	 */
566 	offset_bytes =
567 		PAD_TO_BLOCKSIZE(CONFIG_EFI_PARTITION_ENTRIES_OFF, dev_desc);
568 	offset_blks = offset_bytes / dev_desc->blksz;
569 #endif
570 
571 #if defined(CONFIG_OF_CONTROL)
572 	/*
573 	 * Allow the offset of the first partition entires (in bytes
574 	 * from the start of the device) to be specified as a property
575 	 * of the device tree '/config' node.
576 	 */
577 	config_offset = fdtdec_get_config_int(gd->fdt_blob,
578 					      "u-boot,efi-partition-entries-offset",
579 					      -EINVAL);
580 	if (config_offset != -EINVAL) {
581 		offset_bytes = PAD_TO_BLOCKSIZE(config_offset, dev_desc);
582 		offset_blks = offset_bytes / dev_desc->blksz;
583 	}
584 #endif
585 
586 	debug("efi: partition entries offset (in blocks): %d\n", offset_blks);
587 
588 	/*
589 	 * The earliest LBA this can be at is LBA#2 (i.e. right behind
590 	 * the (protective) MBR and the GPT header.
591 	 */
592 	if (offset_blks < 2)
593 		offset_blks = 2;
594 
595 	return offset_blks;
596 }
597 
598 int gpt_fill_header(struct blk_desc *dev_desc, gpt_header *gpt_h,
599 		char *str_guid, int parts_count)
600 {
601 	gpt_h->signature = cpu_to_le64(GPT_HEADER_SIGNATURE);
602 	gpt_h->revision = cpu_to_le32(GPT_HEADER_REVISION_V1);
603 	gpt_h->header_size = cpu_to_le32(sizeof(gpt_header));
604 	gpt_h->my_lba = cpu_to_le64(1);
605 	gpt_h->alternate_lba = cpu_to_le64(dev_desc->lba - 1);
606 	gpt_h->last_usable_lba = cpu_to_le64(dev_desc->lba - 34);
607 	gpt_h->partition_entry_lba =
608 		cpu_to_le64(partition_entries_offset(dev_desc));
609 	gpt_h->first_usable_lba =
610 		cpu_to_le64(le64_to_cpu(gpt_h->partition_entry_lba) + 32);
611 	gpt_h->num_partition_entries = cpu_to_le32(GPT_ENTRY_NUMBERS);
612 	gpt_h->sizeof_partition_entry = cpu_to_le32(sizeof(gpt_entry));
613 	gpt_h->header_crc32 = 0;
614 	gpt_h->partition_entry_array_crc32 = 0;
615 
616 	if (uuid_str_to_bin(str_guid, gpt_h->disk_guid.b, UUID_STR_FORMAT_GUID))
617 		return -1;
618 
619 	return 0;
620 }
621 
622 int gpt_restore(struct blk_desc *dev_desc, char *str_disk_guid,
623 		disk_partition_t *partitions, int parts_count)
624 {
625 	int ret;
626 
627 	gpt_header *gpt_h = calloc(1, PAD_TO_BLOCKSIZE(sizeof(gpt_header),
628 						       dev_desc));
629 	gpt_entry *gpt_e;
630 
631 	if (gpt_h == NULL) {
632 		printf("%s: calloc failed!\n", __func__);
633 		return -1;
634 	}
635 
636 	gpt_e = calloc(1, PAD_TO_BLOCKSIZE(GPT_ENTRY_NUMBERS
637 					       * sizeof(gpt_entry),
638 					       dev_desc));
639 	if (gpt_e == NULL) {
640 		printf("%s: calloc failed!\n", __func__);
641 		free(gpt_h);
642 		return -1;
643 	}
644 
645 	/* Generate Primary GPT header (LBA1) */
646 	ret = gpt_fill_header(dev_desc, gpt_h, str_disk_guid, parts_count);
647 	if (ret)
648 		goto err;
649 
650 	/* Generate partition entries */
651 	ret = gpt_fill_pte(dev_desc, gpt_h, gpt_e, partitions, parts_count);
652 	if (ret)
653 		goto err;
654 
655 	/* Write GPT partition table */
656 	ret = write_gpt_table(dev_desc, gpt_h, gpt_e);
657 
658 err:
659 	free(gpt_e);
660 	free(gpt_h);
661 	return ret;
662 }
663 
664 static void gpt_convert_efi_name_to_char(char *s, efi_char16_t *es, int n)
665 {
666 	char *ess = (char *)es;
667 	int i, j;
668 
669 	memset(s, '\0', n);
670 
671 	for (i = 0, j = 0; j < n; i += 2, j++) {
672 		s[j] = ess[i];
673 		if (!ess[i])
674 			return;
675 	}
676 }
677 
678 int gpt_verify_headers(struct blk_desc *dev_desc, gpt_header *gpt_head,
679 		       gpt_entry **gpt_pte)
680 {
681 	/*
682 	 * This function validates AND
683 	 * fills in the GPT header and PTE
684 	 */
685 	if (is_gpt_valid(dev_desc,
686 			 GPT_PRIMARY_PARTITION_TABLE_LBA,
687 			 gpt_head, gpt_pte) != 1) {
688 		printf("%s: *** ERROR: Invalid GPT ***\n",
689 		       __func__);
690 		return -1;
691 	}
692 	if (is_gpt_valid(dev_desc, (dev_desc->lba - 1),
693 			 gpt_head, gpt_pte) != 1) {
694 		printf("%s: *** ERROR: Invalid Backup GPT ***\n",
695 		       __func__);
696 		return -1;
697 	}
698 
699 	return 0;
700 }
701 
702 int gpt_verify_partitions(struct blk_desc *dev_desc,
703 			  disk_partition_t *partitions, int parts,
704 			  gpt_header *gpt_head, gpt_entry **gpt_pte)
705 {
706 	char efi_str[PARTNAME_SZ + 1];
707 	u64 gpt_part_size;
708 	gpt_entry *gpt_e;
709 	int ret, i;
710 
711 	ret = gpt_verify_headers(dev_desc, gpt_head, gpt_pte);
712 	if (ret)
713 		return ret;
714 
715 	gpt_e = *gpt_pte;
716 
717 	for (i = 0; i < parts; i++) {
718 		if (i == gpt_head->num_partition_entries) {
719 			error("More partitions than allowed!\n");
720 			return -1;
721 		}
722 
723 		/* Check if GPT and ENV partition names match */
724 		gpt_convert_efi_name_to_char(efi_str, gpt_e[i].partition_name,
725 					     PARTNAME_SZ + 1);
726 
727 		debug("%s: part: %2d name - GPT: %16s, ENV: %16s ",
728 		      __func__, i, efi_str, partitions[i].name);
729 
730 		if (strncmp(efi_str, (char *)partitions[i].name,
731 			    sizeof(partitions->name))) {
732 			error("Partition name: %s does not match %s!\n",
733 			      efi_str, (char *)partitions[i].name);
734 			return -1;
735 		}
736 
737 		/* Check if GPT and ENV sizes match */
738 		gpt_part_size = le64_to_cpu(gpt_e[i].ending_lba) -
739 			le64_to_cpu(gpt_e[i].starting_lba) + 1;
740 		debug("size(LBA) - GPT: %8llu, ENV: %8llu ",
741 		      (unsigned long long)gpt_part_size,
742 		      (unsigned long long)partitions[i].size);
743 
744 		if (le64_to_cpu(gpt_part_size) != partitions[i].size) {
745 			/* We do not check the extend partition size */
746 			if ((i == parts - 1) && (partitions[i].size == 0))
747 				continue;
748 
749 			error("Partition %s size: %llu does not match %llu!\n",
750 			      efi_str, (unsigned long long)gpt_part_size,
751 			      (unsigned long long)partitions[i].size);
752 			return -1;
753 		}
754 
755 		/*
756 		 * Start address is optional - check only if provided
757 		 * in '$partition' variable
758 		 */
759 		if (!partitions[i].start) {
760 			debug("\n");
761 			continue;
762 		}
763 
764 		/* Check if GPT and ENV start LBAs match */
765 		debug("start LBA - GPT: %8llu, ENV: %8llu\n",
766 		      le64_to_cpu(gpt_e[i].starting_lba),
767 		      (unsigned long long)partitions[i].start);
768 
769 		if (le64_to_cpu(gpt_e[i].starting_lba) != partitions[i].start) {
770 			error("Partition %s start: %llu does not match %llu!\n",
771 			      efi_str, le64_to_cpu(gpt_e[i].starting_lba),
772 			      (unsigned long long)partitions[i].start);
773 			return -1;
774 		}
775 	}
776 
777 	return 0;
778 }
779 
780 int is_valid_gpt_buf(struct blk_desc *dev_desc, void *buf)
781 {
782 	gpt_header *gpt_h;
783 	gpt_entry *gpt_e;
784 
785 	/* determine start of GPT Header in the buffer */
786 	gpt_h = buf + (GPT_PRIMARY_PARTITION_TABLE_LBA *
787 		       dev_desc->blksz);
788 	if (validate_gpt_header(gpt_h, GPT_PRIMARY_PARTITION_TABLE_LBA,
789 				dev_desc->lba))
790 		return -1;
791 
792 	/* determine start of GPT Entries in the buffer */
793 	gpt_e = buf + (le64_to_cpu(gpt_h->partition_entry_lba) *
794 		       dev_desc->blksz);
795 	if (validate_gpt_entries(gpt_h, gpt_e))
796 		return -1;
797 
798 	return 0;
799 }
800 
801 int write_mbr_and_gpt_partitions(struct blk_desc *dev_desc, void *buf)
802 {
803 	gpt_header *gpt_h;
804 	gpt_entry *gpt_e;
805 	int gpt_e_blk_cnt;
806 	lbaint_t lba;
807 	int cnt;
808 
809 	if (is_valid_gpt_buf(dev_desc, buf))
810 		return -1;
811 
812 	/* determine start of GPT Header in the buffer */
813 	gpt_h = buf + (GPT_PRIMARY_PARTITION_TABLE_LBA *
814 		       dev_desc->blksz);
815 
816 	/* determine start of GPT Entries in the buffer */
817 	gpt_e = buf + (le64_to_cpu(gpt_h->partition_entry_lba) *
818 		       dev_desc->blksz);
819 	gpt_e_blk_cnt = BLOCK_CNT((le32_to_cpu(gpt_h->num_partition_entries) *
820 				   le32_to_cpu(gpt_h->sizeof_partition_entry)),
821 				  dev_desc);
822 
823 	/* write MBR */
824 	lba = 0;	/* MBR is always at 0 */
825 	cnt = 1;	/* MBR (1 block) */
826 	if (blk_dwrite(dev_desc, lba, cnt, buf) != cnt) {
827 		printf("%s: failed writing '%s' (%d blks at 0x" LBAF ")\n",
828 		       __func__, "MBR", cnt, lba);
829 		return 1;
830 	}
831 
832 	/* write Primary GPT */
833 	lba = GPT_PRIMARY_PARTITION_TABLE_LBA;
834 	cnt = 1;	/* GPT Header (1 block) */
835 	if (blk_dwrite(dev_desc, lba, cnt, gpt_h) != cnt) {
836 		printf("%s: failed writing '%s' (%d blks at 0x" LBAF ")\n",
837 		       __func__, "Primary GPT Header", cnt, lba);
838 		return 1;
839 	}
840 
841 	lba = le64_to_cpu(gpt_h->partition_entry_lba);
842 	cnt = gpt_e_blk_cnt;
843 	if (blk_dwrite(dev_desc, lba, cnt, gpt_e) != cnt) {
844 		printf("%s: failed writing '%s' (%d blks at 0x" LBAF ")\n",
845 		       __func__, "Primary GPT Entries", cnt, lba);
846 		return 1;
847 	}
848 
849 	prepare_backup_gpt_header(gpt_h);
850 
851 	/* write Backup GPT */
852 	lba = le64_to_cpu(gpt_h->partition_entry_lba);
853 	cnt = gpt_e_blk_cnt;
854 	if (blk_dwrite(dev_desc, lba, cnt, gpt_e) != cnt) {
855 		printf("%s: failed writing '%s' (%d blks at 0x" LBAF ")\n",
856 		       __func__, "Backup GPT Entries", cnt, lba);
857 		return 1;
858 	}
859 
860 	lba = le64_to_cpu(gpt_h->my_lba);
861 	cnt = 1;	/* GPT Header (1 block) */
862 	if (blk_dwrite(dev_desc, lba, cnt, gpt_h) != cnt) {
863 		printf("%s: failed writing '%s' (%d blks at 0x" LBAF ")\n",
864 		       __func__, "Backup GPT Header", cnt, lba);
865 		return 1;
866 	}
867 
868 	return 0;
869 }
870 #endif
871 
872 /*
873  * Private functions
874  */
875 /*
876  * pmbr_part_valid(): Check for EFI partition signature
877  *
878  * Returns: 1 if EFI GPT partition type is found.
879  */
880 static int pmbr_part_valid(struct partition *part)
881 {
882 	if (part->sys_ind == EFI_PMBR_OSTYPE_EFI_GPT &&
883 		get_unaligned_le32(&part->start_sect) == 1UL) {
884 		return 1;
885 	}
886 
887 	return 0;
888 }
889 
890 /*
891  * is_pmbr_valid(): test Protective MBR for validity
892  *
893  * Returns: 1 if PMBR is valid, 0 otherwise.
894  * Validity depends on two things:
895  *  1) MSDOS signature is in the last two bytes of the MBR
896  *  2) One partition of type 0xEE is found, checked by pmbr_part_valid()
897  */
898 static int is_pmbr_valid(legacy_mbr * mbr)
899 {
900 	int i = 0;
901 
902 	if (!mbr || le16_to_cpu(mbr->signature) != MSDOS_MBR_SIGNATURE)
903 		return 0;
904 
905 	for (i = 0; i < 4; i++) {
906 		if (pmbr_part_valid(&mbr->partition_record[i])) {
907 			return 1;
908 		}
909 	}
910 	return 0;
911 }
912 
913 /**
914  * is_gpt_valid() - tests one GPT header and PTEs for validity
915  *
916  * lba is the logical block address of the GPT header to test
917  * gpt is a GPT header ptr, filled on return.
918  * ptes is a PTEs ptr, filled on return.
919  *
920  * Description: returns 1 if valid,  0 on error.
921  * If valid, returns pointers to PTEs.
922  */
923 static int is_gpt_valid(struct blk_desc *dev_desc, u64 lba,
924 			gpt_header *pgpt_head, gpt_entry **pgpt_pte)
925 {
926 	if (!dev_desc || !pgpt_head) {
927 		printf("%s: Invalid Argument(s)\n", __func__);
928 		return 0;
929 	}
930 
931 	/* Read GPT Header from device */
932 	if (blk_dread(dev_desc, (lbaint_t)lba, 1, pgpt_head) != 1) {
933 		printf("*** ERROR: Can't read GPT header ***\n");
934 		return 0;
935 	}
936 
937 	if (validate_gpt_header(pgpt_head, (lbaint_t)lba, dev_desc->lba))
938 		return 0;
939 
940 	/* Read and allocate Partition Table Entries */
941 	*pgpt_pte = alloc_read_gpt_entries(dev_desc, pgpt_head);
942 	if (*pgpt_pte == NULL) {
943 		printf("GPT: Failed to allocate memory for PTE\n");
944 		return 0;
945 	}
946 
947 	if (validate_gpt_entries(pgpt_head, *pgpt_pte)) {
948 		free(*pgpt_pte);
949 		return 0;
950 	}
951 
952 	/* We're done, all's well */
953 	return 1;
954 }
955 
956 /**
957  * alloc_read_gpt_entries(): reads partition entries from disk
958  * @dev_desc
959  * @gpt - GPT header
960  *
961  * Description: Returns ptes on success,  NULL on error.
962  * Allocates space for PTEs based on information found in @gpt.
963  * Notes: remember to free pte when you're done!
964  */
965 static gpt_entry *alloc_read_gpt_entries(struct blk_desc *dev_desc,
966 					 gpt_header *pgpt_head)
967 {
968 	size_t count = 0, blk_cnt;
969 	lbaint_t blk;
970 	gpt_entry *pte = NULL;
971 
972 	if (!dev_desc || !pgpt_head) {
973 		printf("%s: Invalid Argument(s)\n", __func__);
974 		return NULL;
975 	}
976 
977 	count = le32_to_cpu(pgpt_head->num_partition_entries) *
978 		le32_to_cpu(pgpt_head->sizeof_partition_entry);
979 
980 	debug("%s: count = %u * %u = %lu\n", __func__,
981 	      (u32) le32_to_cpu(pgpt_head->num_partition_entries),
982 	      (u32) le32_to_cpu(pgpt_head->sizeof_partition_entry),
983 	      (ulong)count);
984 
985 	/* Allocate memory for PTE, remember to FREE */
986 	if (count != 0) {
987 		pte = memalign(ARCH_DMA_MINALIGN,
988 			       PAD_TO_BLOCKSIZE(count, dev_desc));
989 	}
990 
991 	if (count == 0 || pte == NULL) {
992 		printf("%s: ERROR: Can't allocate %#lX bytes for GPT Entries\n",
993 		       __func__, (ulong)count);
994 		return NULL;
995 	}
996 
997 	/* Read GPT Entries from device */
998 	blk = le64_to_cpu(pgpt_head->partition_entry_lba);
999 	blk_cnt = BLOCK_CNT(count, dev_desc);
1000 	if (blk_dread(dev_desc, blk, (lbaint_t)blk_cnt, pte) != blk_cnt) {
1001 		printf("*** ERROR: Can't read GPT Entries ***\n");
1002 		free(pte);
1003 		return NULL;
1004 	}
1005 	return pte;
1006 }
1007 
1008 /**
1009  * is_pte_valid(): validates a single Partition Table Entry
1010  * @gpt_entry - Pointer to a single Partition Table Entry
1011  *
1012  * Description: returns 1 if valid,  0 on error.
1013  */
1014 static int is_pte_valid(gpt_entry * pte)
1015 {
1016 	efi_guid_t unused_guid;
1017 
1018 	if (!pte) {
1019 		printf("%s: Invalid Argument(s)\n", __func__);
1020 		return 0;
1021 	}
1022 
1023 	/* Only one validation for now:
1024 	 * The GUID Partition Type != Unused Entry (ALL-ZERO)
1025 	 */
1026 	memset(unused_guid.b, 0, sizeof(unused_guid.b));
1027 
1028 	if (memcmp(pte->partition_type_guid.b, unused_guid.b,
1029 		sizeof(unused_guid.b)) == 0) {
1030 
1031 		debug("%s: Found an unused PTE GUID at 0x%08X\n", __func__,
1032 		      (unsigned int)(uintptr_t)pte);
1033 
1034 		return 0;
1035 	} else {
1036 		return 1;
1037 	}
1038 }
1039 
1040 /*
1041  * Add an 'a_' prefix so it comes before 'dos' in the linker list. We need to
1042  * check EFI first, since a DOS partition is often used as a 'protective MBR'
1043  * with EFI.
1044  */
1045 U_BOOT_PART_TYPE(a_efi) = {
1046 	.name		= "EFI",
1047 	.part_type	= PART_TYPE_EFI,
1048 	.max_entries	= GPT_ENTRY_NUMBERS,
1049 	.get_info	= part_get_info_ptr(part_get_info_efi),
1050 	.print		= part_print_ptr(part_print_efi),
1051 	.test		= part_test_efi,
1052 };
1053 #endif
1054