[U-Boot,v2,1/2] efi_loader: variable: support APPEND_WRITE

Message ID	20190906060953.31481-2-takahiro.akashi@linaro.org
State	Accepted, archived
Commit	6d2f27c5fd60c1310884c873350f1edc7d831bb0
Delegated to:	Heinrich Schuchardt
Headers	show Return-Path: <u-boot-bounces@lists.denx.de> From: AKASHI Takahiro <takahiro.akashi@linaro.org> To: xypron.glpk@gmx.de, agraf@csgraf.de Date: Fri, 6 Sep 2019 15:09:52 +0900 Message-Id: <20190906060953.31481-2-takahiro.akashi@linaro.org> In-Reply-To: <20190906060953.31481-1-takahiro.akashi@linaro.org> References: <20190906060953.31481-1-takahiro.akashi@linaro.org> MIME-Version: 1.0 Cc: u-boot@lists.denx.de Subject: [U-Boot] [PATCH v2 1/2] efi_loader: variable: support APPEND_WRITE Precedence: list Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 Errors-To: u-boot-bounces@lists.denx.de Sender: "U-Boot" <u-boot-bounces@lists.denx.de>
Series	efi_loader: support APPEND_WRITE \| expand [U-Boot,v2,0/2] efi_loader: support APPEND_WRITE [U-Boot,v2,1/2] efi_loader: variable: support APPEND_WRITE [U-Boot,v2,2/2] efi_loader: selftest: enable APPEND_WRITE tests

Message ID

20190906060953.31481-2-takahiro.akashi@linaro.org

State

Accepted, archived

Commit

6d2f27c5fd60c1310884c873350f1edc7d831bb0

Delegated to:

Heinrich Schuchardt

Headers

show

Return-Path: <u-boot-bounces@lists.denx.de>
X-Original-To: incoming@patchwork.ozlabs.org
Delivered-To: patchwork-incoming@bilbo.ozlabs.org
Authentication-Results: ozlabs.org;
	spf=none (mailfrom) smtp.mailfrom=lists.denx.de
	(client-ip=81.169.180.215; helo=lists.denx.de;
	envelope-from=u-boot-bounces@lists.denx.de;
	receiver=<UNKNOWN>)
Authentication-Results: ozlabs.org;
	dmarc=fail (p=none dis=none) header.from=linaro.org
Authentication-Results: ozlabs.org;
	dkim=fail reason="signature verification failed" (2048-bit key;
	unprotected) header.d=linaro.org header.i=@linaro.org
	header.b="UgnsMGvz"; dkim-atps=neutral
Received: from lists.denx.de (dione.denx.de [81.169.180.215])
	by ozlabs.org (Postfix) with ESMTP id 46PnCs3mxDz9s3Z
	for <incoming@patchwork.ozlabs.org>;
	Fri,  6 Sep 2019 16:07:53 +1000 (AEST)
Received: by lists.denx.de (Postfix, from userid 105)
	id 2C719C21DFA; Fri,  6 Sep 2019 06:07:19 +0000 (UTC)
X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on lists.denx.de
X-Spam-Level: 
X-Spam-Status: No, score=-0.0 required=5.0 tests=RCVD_IN_MSPIKE_H3,
	RCVD_IN_MSPIKE_WL,
	T_DKIM_INVALID autolearn=unavailable autolearn_force=no
	version=3.4.0
Received: from lists.denx.de (localhost [IPv6:::1])
	by lists.denx.de (Postfix) with ESMTP id 2699FC21E2C;
	Fri,  6 Sep 2019 06:07:17 +0000 (UTC)
Received: by lists.denx.de (Postfix, from userid 105)
	id A0630C21E52; Fri,  6 Sep 2019 06:07:09 +0000 (UTC)
Received: from mail-pf1-f193.google.com (mail-pf1-f193.google.com
	[209.85.210.193])
	by lists.denx.de (Postfix) with ESMTPS id DEA19C21E18
	for <u-boot@lists.denx.de>; Fri,  6 Sep 2019 06:07:06 +0000 (UTC)
Received: by mail-pf1-f193.google.com with SMTP id b13so3617822pfo.8
	for <u-boot@lists.denx.de>; Thu, 05 Sep 2019 23:07:06 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=linaro.org; s=google;
	h=from:to:cc:subject:date:message-id:in-reply-to:references
	:mime-version:content-transfer-encoding;
	bh=tFuooaKrph4PpeH3HFKXgSGwCMtxHq+43Xyt3og8TZQ=;
	b=UgnsMGvz2VDm/9qvO5aFRvPVPB1ptUJyGTUN32u2XGziGEQm8ShMXWufSvzMt+Erf+
	Z/YrKtHJR1UqpvCyIEhaClb185YOeFMcm0Rho8VQBMsdrodqW1F8WtstXoedc/MfG/3Z
	A10kF/mPenmwWNVXR1VhKyAgxXTsFHLEma7dnu2idkb/1LQI3p7Z7l0qwJX0LBz/7m3o
	gTcyDnhugYFhdX5RawCin8bzUJZOPCIowW6TUGKStZJWOfdjJp5lz5NqkWglO2zyRPih
	0wzjB3GRey1p1oEAncEmHEfjhISUbaWGsGW8bmjIlrB1LD4tZ+SIsCgOmOBN5m1shZFg
	wwRA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
	d=1e100.net; s=20161025;
	h=x-gm-message-state:from:to:cc:subject:date:message-id:in-reply-to
	:references:mime-version:content-transfer-encoding;
	bh=tFuooaKrph4PpeH3HFKXgSGwCMtxHq+43Xyt3og8TZQ=;
	b=ggJE18xfQohZzlROV0GW0sRze2ebdAyzV4mbWjVodhqlzC09kBUxmGDxh0fsIISdgt
	Nc3sgDljq7u2cy85wYL7HcwQ9dCChy1PYolxK/GwyHJuxv/mr3XDX22Iy5/4Favj8kbC
	fu3NISiYaAvZ4Qg8Xzj4mBcc1lsi/podtNpS4u5an24MCQvK/pFfVa/M0VsmDGMx+FsX
	CH56mRsuyrgb6BYDufa839G1x++UoT5qc30OIkP4O4oivOwSPXCHmn0qTxPmSQT1myv5
	s5067OYiV4Kn1vqc4gmP7gkBO2jWf0z92ImUQJLo9cWUtAR8YB6shRPS/xlBtSwAruc6
	K5zQ==
X-Gm-Message-State: APjAAAUwCTrvMObmia1EGlyvkbPy1YjcRU5ZQJsz2tPn+uuELBr5vSbQ
	2tZDeSbyUQZRTaBxyqy9tsqHtg==
X-Google-Smtp-Source: APXvYqz7zuAuXiEkqhjLkHlxhBD/vm+xij8K3pqJ1zqVRwFrTkv8ei9YeuFCUeTUinstbijQn/CMLg==
X-Received: by 2002:a17:90b:909:: with SMTP id
	bo9mr4912573pjb.41.1567750025448; 
	Thu, 05 Sep 2019 23:07:05 -0700 (PDT)
Received: from linaro.org ([121.95.100.191])
	by smtp.googlemail.com with ESMTPSA id
	x125sm1158077pfb.93.2019.09.05.23.07.04
	(version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128);
	Thu, 05 Sep 2019 23:07:05 -0700 (PDT)
From: AKASHI Takahiro <takahiro.akashi@linaro.org>
To: xypron.glpk@gmx.de,
	agraf@csgraf.de
Date: Fri,  6 Sep 2019 15:09:52 +0900
Message-Id: <20190906060953.31481-2-takahiro.akashi@linaro.org>
X-Mailer: git-send-email 2.21.0
In-Reply-To: <20190906060953.31481-1-takahiro.akashi@linaro.org>
References: <20190906060953.31481-1-takahiro.akashi@linaro.org>
MIME-Version: 1.0
Cc: u-boot@lists.denx.de
Subject: [U-Boot] [PATCH v2 1/2] efi_loader: variable: support APPEND_WRITE
X-BeenThere: u-boot@lists.denx.de
X-Mailman-Version: 2.1.18
Precedence: list
List-Id: U-Boot discussion <u-boot.lists.denx.de>
List-Unsubscribe: <https://lists.denx.de/options/u-boot>,
	<mailto:u-boot-request@lists.denx.de?subject=unsubscribe>
List-Archive: <http://lists.denx.de/pipermail/u-boot/>
List-Post: <mailto:u-boot@lists.denx.de>
List-Help: <mailto:u-boot-request@lists.denx.de?subject=help>
List-Subscribe: <https://lists.denx.de/listinfo/u-boot>,
	<mailto:u-boot-request@lists.denx.de?subject=subscribe>
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
Errors-To: u-boot-bounces@lists.denx.de
Sender: "U-Boot" <u-boot-bounces@lists.denx.de>

Series

efi_loader: support APPEND_WRITE | expand

Commit Message

AKASHI Takahiro Sept. 6, 2019, 6:09 a.m. UTC

If EFI_VARIABLE_APPEND_WRITE is specified in attributes at
efi_set_variable(), specified data will be appended to the variable's
original value. Attributes other than APPEND_WRITE should not be
modified.

With this patch, APPEND_WRITE test in 'variables' selftest will pass.

Signed-off-by: AKASHI Takahiro <takahiro.akashi@linaro.org>
---
 lib/efi_loader/efi_variable.c | 70 ++++++++++++++++++++++-------------
 1 file changed, 44 insertions(+), 26 deletions(-)

Comments

Heinrich Schuchardt Sept. 16, 2019, 5:03 p.m. UTC | #1

On 9/6/19 8:09 AM, AKASHI Takahiro wrote:
> If EFI_VARIABLE_APPEND_WRITE is specified in attributes at
> efi_set_variable(), specified data will be appended to the variable's
> original value. Attributes other than APPEND_WRITE should not be
> modified.
>
> With this patch, APPEND_WRITE test in 'variables' selftest will pass.

With both patches of the series applied I get the following warning in
bootefi selftest:

lib/efi_selftest/efi_selftest_variables.c(151):
TODO: SetVariable(APPEND_WRITE) to read-only variable returns wrong code

Best regards

Heinrich

>
> Signed-off-by: AKASHI Takahiro <takahiro.akashi@linaro.org>
> ---
>  lib/efi_loader/efi_variable.c | 70 ++++++++++++++++++++++-------------
>  1 file changed, 44 insertions(+), 26 deletions(-)
>
> diff --git a/lib/efi_loader/efi_variable.c b/lib/efi_loader/efi_variable.c
> index 6687b69a400d..48ee255f879b 100644
> --- a/lib/efi_loader/efi_variable.c
> +++ b/lib/efi_loader/efi_variable.c
> @@ -424,17 +424,17 @@ efi_status_t EFIAPI efi_set_variable(u16 *variable_name,
>  				     efi_uintn_t data_size, const void *data)
>  {
>  	char *native_name = NULL, *val = NULL, *s;
> +	const char *old_val;
> +	size_t old_size;
>  	efi_status_t ret = EFI_SUCCESS;
>  	u32 attr;
>
>  	EFI_ENTRY("\"%ls\" %pUl %x %zu %p", variable_name, vendor, attributes,
>  		  data_size, data);
>
> -	/* TODO: implement APPEND_WRITE */
>  	if (!variable_name || !*variable_name || !vendor ||
>  	    ((attributes & EFI_VARIABLE_RUNTIME_ACCESS) &&
> -	     !(attributes & EFI_VARIABLE_BOOTSERVICE_ACCESS)) ||
> -	    (attributes & EFI_VARIABLE_APPEND_WRITE)) {
> +	     !(attributes & EFI_VARIABLE_BOOTSERVICE_ACCESS))) {
>  		ret = EFI_INVALID_PARAMETER;
>  		goto out;
>  	}
> @@ -445,35 +445,51 @@ efi_status_t EFIAPI efi_set_variable(u16 *variable_name,
>
>  #define ACCESS_ATTR (EFI_VARIABLE_RUNTIME_ACCESS | EFI_VARIABLE_BOOTSERVICE_ACCESS)
>
> -	if ((data_size == 0) || !(attributes & ACCESS_ATTR)) {
> -		/* delete the variable: */
> -		env_set(native_name, NULL);
> -		ret = EFI_SUCCESS;
> -		goto out;
> -	}
> +	old_val = env_get(native_name);
> +	if (old_val) {
> +		old_val = parse_attr(old_val, &attr);
>
> -	val = env_get(native_name);
> -	if (val) {
> -		parse_attr(val, &attr);
> -
> -		/* We should not free val */
> -		val = NULL;
> +		/* check read-only first */
>  		if (attr & READ_ONLY) {
>  			ret = EFI_WRITE_PROTECTED;
>  			goto out;
>  		}
>
> -		/*
> -		 * attributes won't be changed
> -		 * TODO: take care of APPEND_WRITE once supported
> -		 */
> -		if (attr != attributes) {
> +		if ((data_size == 0) || !(attributes & ACCESS_ATTR)) {
> +			/* delete the variable: */
> +			env_set(native_name, NULL);
> +			ret = EFI_SUCCESS;
> +			goto out;
> +		}
> +
> +		/* attributes won't be changed */
> +		if (attr != (attributes & ~EFI_VARIABLE_APPEND_WRITE)) {
>  			ret = EFI_INVALID_PARAMETER;
>  			goto out;
>  		}
> +
> +		if (attributes & EFI_VARIABLE_APPEND_WRITE) {
> +			if (!prefix(old_val, "(blob)")) {
> +				return EFI_DEVICE_ERROR;
> +				goto out;
> +			}
> +			old_size = strlen(old_val);
> +		} else {
> +			old_size = 0;
> +		}
> +	} else {
> +		if ((data_size == 0) || !(attributes & ACCESS_ATTR) ||
> +		    (attributes & EFI_VARIABLE_APPEND_WRITE)) {
> +			/* delete, but nothing to do */
> +			ret = EFI_NOT_FOUND;
> +			goto out;
> +		}
> +
> +		old_size = 0;
>  	}
>
> -	val = malloc(2 * data_size + strlen("{ro,run,boot,nv}(blob)") + 1);
> +	val = malloc(old_size + 2 * data_size
> +		     + strlen("{ro,run,boot,nv}(blob)") + 1);
>  	if (!val) {
>  		ret = EFI_OUT_OF_RESOURCES;
>  		goto out;
> @@ -481,10 +497,7 @@ efi_status_t EFIAPI efi_set_variable(u16 *variable_name,
>
>  	s = val;
>
> -	/*
> -	 * store attributes
> -	 * TODO: several attributes are not supported
> -	 */
> +	/* store attributes */
>  	attributes &= (EFI_VARIABLE_NON_VOLATILE |
>  		       EFI_VARIABLE_BOOTSERVICE_ACCESS |
>  		       EFI_VARIABLE_RUNTIME_ACCESS);
> @@ -505,8 +518,13 @@ efi_status_t EFIAPI efi_set_variable(u16 *variable_name,
>  	}
>  	s += sprintf(s, "}");
>
> +	if (old_size)
> +		/* APPEND_WRITE */
> +		s += sprintf(s, old_val);
> +	else
> +		s += sprintf(s, "(blob)");
> +
>  	/* store payload: */
> -	s += sprintf(s, "(blob)");
>  	s = bin2hex(s, data, data_size);
>  	*s = '\0';
>
>

AKASHI Takahiro Sept. 17, 2019, 12:15 a.m. UTC | #2

On Mon, Sep 16, 2019 at 07:03:41PM +0200, Heinrich Schuchardt wrote:
> On 9/6/19 8:09 AM, AKASHI Takahiro wrote:
> > If EFI_VARIABLE_APPEND_WRITE is specified in attributes at
> > efi_set_variable(), specified data will be appended to the variable's
> > original value. Attributes other than APPEND_WRITE should not be
> > modified.
> >
> > With this patch, APPEND_WRITE test in 'variables' selftest will pass.
> 
> With both patches of the series applied I get the following warning in
> bootefi selftest:
> 
> lib/efi_selftest/efi_selftest_variables.c(151):
> TODO: SetVariable(APPEND_WRITE) to read-only variable returns wrong code

Yes, I know. That's why I used TODO here.
The reason that this test fails is that we don't support read-only
variables, more strictly, we do have read-only attribute, but don't
have any interface to specify read-only attribute for any variable.

Read-only is an implicit nature of variable only attributed to
some "global" variables UEFI specification defines. So we should
fix the issue in a separate patch.

Thanks,
-Takahiro Akashi


> Best regards
> 
> Heinrich
> 
> >
> > Signed-off-by: AKASHI Takahiro <takahiro.akashi@linaro.org>
> > ---
> >  lib/efi_loader/efi_variable.c | 70 ++++++++++++++++++++++-------------
> >  1 file changed, 44 insertions(+), 26 deletions(-)
> >
> > diff --git a/lib/efi_loader/efi_variable.c b/lib/efi_loader/efi_variable.c
> > index 6687b69a400d..48ee255f879b 100644
> > --- a/lib/efi_loader/efi_variable.c
> > +++ b/lib/efi_loader/efi_variable.c
> > @@ -424,17 +424,17 @@ efi_status_t EFIAPI efi_set_variable(u16 *variable_name,
> >  				     efi_uintn_t data_size, const void *data)
> >  {
> >  	char *native_name = NULL, *val = NULL, *s;
> > +	const char *old_val;
> > +	size_t old_size;
> >  	efi_status_t ret = EFI_SUCCESS;
> >  	u32 attr;
> >
> >  	EFI_ENTRY("\"%ls\" %pUl %x %zu %p", variable_name, vendor, attributes,
> >  		  data_size, data);
> >
> > -	/* TODO: implement APPEND_WRITE */
> >  	if (!variable_name || !*variable_name || !vendor ||
> >  	    ((attributes & EFI_VARIABLE_RUNTIME_ACCESS) &&
> > -	     !(attributes & EFI_VARIABLE_BOOTSERVICE_ACCESS)) ||
> > -	    (attributes & EFI_VARIABLE_APPEND_WRITE)) {
> > +	     !(attributes & EFI_VARIABLE_BOOTSERVICE_ACCESS))) {
> >  		ret = EFI_INVALID_PARAMETER;
> >  		goto out;
> >  	}
> > @@ -445,35 +445,51 @@ efi_status_t EFIAPI efi_set_variable(u16 *variable_name,
> >
> >  #define ACCESS_ATTR (EFI_VARIABLE_RUNTIME_ACCESS | EFI_VARIABLE_BOOTSERVICE_ACCESS)
> >
> > -	if ((data_size == 0) || !(attributes & ACCESS_ATTR)) {
> > -		/* delete the variable: */
> > -		env_set(native_name, NULL);
> > -		ret = EFI_SUCCESS;
> > -		goto out;
> > -	}
> > +	old_val = env_get(native_name);
> > +	if (old_val) {
> > +		old_val = parse_attr(old_val, &attr);
> >
> > -	val = env_get(native_name);
> > -	if (val) {
> > -		parse_attr(val, &attr);
> > -
> > -		/* We should not free val */
> > -		val = NULL;
> > +		/* check read-only first */
> >  		if (attr & READ_ONLY) {
> >  			ret = EFI_WRITE_PROTECTED;
> >  			goto out;
> >  		}
> >
> > -		/*
> > -		 * attributes won't be changed
> > -		 * TODO: take care of APPEND_WRITE once supported
> > -		 */
> > -		if (attr != attributes) {
> > +		if ((data_size == 0) || !(attributes & ACCESS_ATTR)) {
> > +			/* delete the variable: */
> > +			env_set(native_name, NULL);
> > +			ret = EFI_SUCCESS;
> > +			goto out;
> > +		}
> > +
> > +		/* attributes won't be changed */
> > +		if (attr != (attributes & ~EFI_VARIABLE_APPEND_WRITE)) {
> >  			ret = EFI_INVALID_PARAMETER;
> >  			goto out;
> >  		}
> > +
> > +		if (attributes & EFI_VARIABLE_APPEND_WRITE) {
> > +			if (!prefix(old_val, "(blob)")) {
> > +				return EFI_DEVICE_ERROR;
> > +				goto out;
> > +			}
> > +			old_size = strlen(old_val);
> > +		} else {
> > +			old_size = 0;
> > +		}
> > +	} else {
> > +		if ((data_size == 0) || !(attributes & ACCESS_ATTR) ||
> > +		    (attributes & EFI_VARIABLE_APPEND_WRITE)) {
> > +			/* delete, but nothing to do */
> > +			ret = EFI_NOT_FOUND;
> > +			goto out;
> > +		}
> > +
> > +		old_size = 0;
> >  	}
> >
> > -	val = malloc(2 * data_size + strlen("{ro,run,boot,nv}(blob)") + 1);
> > +	val = malloc(old_size + 2 * data_size
> > +		     + strlen("{ro,run,boot,nv}(blob)") + 1);
> >  	if (!val) {
> >  		ret = EFI_OUT_OF_RESOURCES;
> >  		goto out;
> > @@ -481,10 +497,7 @@ efi_status_t EFIAPI efi_set_variable(u16 *variable_name,
> >
> >  	s = val;
> >
> > -	/*
> > -	 * store attributes
> > -	 * TODO: several attributes are not supported
> > -	 */
> > +	/* store attributes */
> >  	attributes &= (EFI_VARIABLE_NON_VOLATILE |
> >  		       EFI_VARIABLE_BOOTSERVICE_ACCESS |
> >  		       EFI_VARIABLE_RUNTIME_ACCESS);
> > @@ -505,8 +518,13 @@ efi_status_t EFIAPI efi_set_variable(u16 *variable_name,
> >  	}
> >  	s += sprintf(s, "}");
> >
> > +	if (old_size)
> > +		/* APPEND_WRITE */
> > +		s += sprintf(s, old_val);
> > +	else
> > +		s += sprintf(s, "(blob)");
> > +
> >  	/* store payload: */
> > -	s += sprintf(s, "(blob)");
> >  	s = bin2hex(s, data, data_size);
> >  	*s = '\0';
> >
> >
>

Heinrich Schuchardt Sept. 17, 2019, 8:38 p.m. UTC | #3

On 9/6/19 8:09 AM, AKASHI Takahiro wrote:
> If EFI_VARIABLE_APPEND_WRITE is specified in attributes at
> efi_set_variable(), specified data will be appended to the variable's
> original value. Attributes other than APPEND_WRITE should not be
> modified.
>
> With this patch, APPEND_WRITE test in 'variables' selftest will pass.
>
> Signed-off-by: AKASHI Takahiro <takahiro.akashi@linaro.org>
> ---
>   lib/efi_loader/efi_variable.c | 70 ++++++++++++++++++++++-------------
>   1 file changed, 44 insertions(+), 26 deletions(-)
>
> diff --git a/lib/efi_loader/efi_variable.c b/lib/efi_loader/efi_variable.c
> index 6687b69a400d..48ee255f879b 100644
> --- a/lib/efi_loader/efi_variable.c
> +++ b/lib/efi_loader/efi_variable.c
> @@ -424,17 +424,17 @@ efi_status_t EFIAPI efi_set_variable(u16 *variable_name,
>   				     efi_uintn_t data_size, const void *data)
>   {
>   	char *native_name = NULL, *val = NULL, *s;
> +	const char *old_val;
> +	size_t old_size;
>   	efi_status_t ret = EFI_SUCCESS;
>   	u32 attr;
>
>   	EFI_ENTRY("\"%ls\" %pUl %x %zu %p", variable_name, vendor, attributes,
>   		  data_size, data);
>
> -	/* TODO: implement APPEND_WRITE */
>   	if (!variable_name || !*variable_name || !vendor ||
>   	    ((attributes & EFI_VARIABLE_RUNTIME_ACCESS) &&
> -	     !(attributes & EFI_VARIABLE_BOOTSERVICE_ACCESS)) ||
> -	    (attributes & EFI_VARIABLE_APPEND_WRITE)) {
> +	     !(attributes & EFI_VARIABLE_BOOTSERVICE_ACCESS))) {
>   		ret = EFI_INVALID_PARAMETER;
>   		goto out;
>   	}
> @@ -445,35 +445,51 @@ efi_status_t EFIAPI efi_set_variable(u16 *variable_name,
>
>   #define ACCESS_ATTR (EFI_VARIABLE_RUNTIME_ACCESS | EFI_VARIABLE_BOOTSERVICE_ACCESS)
>
> -	if ((data_size == 0) || !(attributes & ACCESS_ATTR)) {
> -		/* delete the variable: */
> -		env_set(native_name, NULL);
> -		ret = EFI_SUCCESS;
> -		goto out;
> -	}
> +	old_val = env_get(native_name);
> +	if (old_val) {
> +		old_val = parse_attr(old_val, &attr);
>
> -	val = env_get(native_name);
> -	if (val) {
> -		parse_attr(val, &attr);
> -
> -		/* We should not free val */
> -		val = NULL;
> +		/* check read-only first */
>   		if (attr & READ_ONLY) {
>   			ret = EFI_WRITE_PROTECTED;
>   			goto out;
>   		}
>
> -		/*
> -		 * attributes won't be changed
> -		 * TODO: take care of APPEND_WRITE once supported
> -		 */
> -		if (attr != attributes) {
> +		if ((data_size == 0) || !(attributes & ACCESS_ATTR)) {

The understanding of EDK2 is that no access attributes means 'attributes
== 0' (Function VariableServiceSetVariable() in
MdeModulePkg/Universal/Variable/RuntimeDxe/Variable.c).

EFI_VARIABLE_APPEND_WRITE and data_size = 0 should not delete a variable
according to the UEFI spec:

"Unless the EFI_VARIABLE_APPEND_WRITE,
EFI_VARIABLE_TIME_BASED_AUTHENTICATED_WRITE_ACCESS, or
EFI_VARIABLE_ENHANCED_AUTHENTICATED_ACCESS attribute is set (see below),
using SetVariable() with a DataSize of zero will cause the entire
variable to be deleted."

Best regards

Heinrich

> +			/* delete the variable: */
> +			env_set(native_name, NULL);
> +			ret = EFI_SUCCESS;
> +			goto out;
> +		}
> +
> +		/* attributes won't be changed */
> +		if (attr != (attributes & ~EFI_VARIABLE_APPEND_WRITE)) {
>   			ret = EFI_INVALID_PARAMETER;
>   			goto out;
>   		}
> +
> +		if (attributes & EFI_VARIABLE_APPEND_WRITE) {
> +			if (!prefix(old_val, "(blob)")) {
> +				return EFI_DEVICE_ERROR;
> +				goto out;
> +			}
> +			old_size = strlen(old_val);
> +		} else {
> +			old_size = 0;
> +		}
> +	} else {
> +		if ((data_size == 0) || !(attributes & ACCESS_ATTR) ||
> +		    (attributes & EFI_VARIABLE_APPEND_WRITE)) {
> +			/* delete, but nothing to do */
> +			ret = EFI_NOT_FOUND;
> +			goto out;
> +		}
> +
> +		old_size = 0;
>   	}
>
> -	val = malloc(2 * data_size + strlen("{ro,run,boot,nv}(blob)") + 1);
> +	val = malloc(old_size + 2 * data_size
> +		     + strlen("{ro,run,boot,nv}(blob)") + 1);
>   	if (!val) {
>   		ret = EFI_OUT_OF_RESOURCES;
>   		goto out;
> @@ -481,10 +497,7 @@ efi_status_t EFIAPI efi_set_variable(u16 *variable_name,
>
>   	s = val;
>
> -	/*
> -	 * store attributes
> -	 * TODO: several attributes are not supported
> -	 */
> +	/* store attributes */
>   	attributes &= (EFI_VARIABLE_NON_VOLATILE |
>   		       EFI_VARIABLE_BOOTSERVICE_ACCESS |
>   		       EFI_VARIABLE_RUNTIME_ACCESS);
> @@ -505,8 +518,13 @@ efi_status_t EFIAPI efi_set_variable(u16 *variable_name,
>   	}
>   	s += sprintf(s, "}");
>
> +	if (old_size)
> +		/* APPEND_WRITE */
> +		s += sprintf(s, old_val);
> +	else
> +		s += sprintf(s, "(blob)");
> +
>   	/* store payload: */
> -	s += sprintf(s, "(blob)");
>   	s = bin2hex(s, data, data_size);
>   	*s = '\0';
>
>

AKASHI Takahiro Sept. 18, 2019, 12:13 a.m. UTC | #4

On Tue, Sep 17, 2019 at 10:38:47PM +0200, Heinrich Schuchardt wrote:
> On 9/6/19 8:09 AM, AKASHI Takahiro wrote:
> >If EFI_VARIABLE_APPEND_WRITE is specified in attributes at
> >efi_set_variable(), specified data will be appended to the variable's
> >original value. Attributes other than APPEND_WRITE should not be
> >modified.
> >
> >With this patch, APPEND_WRITE test in 'variables' selftest will pass.
> >
> >Signed-off-by: AKASHI Takahiro <takahiro.akashi@linaro.org>
> >---
> >  lib/efi_loader/efi_variable.c | 70 ++++++++++++++++++++++-------------
> >  1 file changed, 44 insertions(+), 26 deletions(-)
> >
> >diff --git a/lib/efi_loader/efi_variable.c b/lib/efi_loader/efi_variable.c
> >index 6687b69a400d..48ee255f879b 100644
> >--- a/lib/efi_loader/efi_variable.c
> >+++ b/lib/efi_loader/efi_variable.c
> >@@ -424,17 +424,17 @@ efi_status_t EFIAPI efi_set_variable(u16 *variable_name,
> >  				     efi_uintn_t data_size, const void *data)
> >  {
> >  	char *native_name = NULL, *val = NULL, *s;
> >+	const char *old_val;
> >+	size_t old_size;
> >  	efi_status_t ret = EFI_SUCCESS;
> >  	u32 attr;
> >
> >  	EFI_ENTRY("\"%ls\" %pUl %x %zu %p", variable_name, vendor, attributes,
> >  		  data_size, data);
> >
> >-	/* TODO: implement APPEND_WRITE */
> >  	if (!variable_name || !*variable_name || !vendor ||
> >  	    ((attributes & EFI_VARIABLE_RUNTIME_ACCESS) &&
> >-	     !(attributes & EFI_VARIABLE_BOOTSERVICE_ACCESS)) ||
> >-	    (attributes & EFI_VARIABLE_APPEND_WRITE)) {
> >+	     !(attributes & EFI_VARIABLE_BOOTSERVICE_ACCESS))) {
> >  		ret = EFI_INVALID_PARAMETER;
> >  		goto out;
> >  	}
> >@@ -445,35 +445,51 @@ efi_status_t EFIAPI efi_set_variable(u16 *variable_name,
> >
> >  #define ACCESS_ATTR (EFI_VARIABLE_RUNTIME_ACCESS | EFI_VARIABLE_BOOTSERVICE_ACCESS)
> >
> >-	if ((data_size == 0) || !(attributes & ACCESS_ATTR)) {
> >-		/* delete the variable: */
> >-		env_set(native_name, NULL);
> >-		ret = EFI_SUCCESS;
> >-		goto out;
> >-	}
> >+	old_val = env_get(native_name);
> >+	if (old_val) {
> >+		old_val = parse_attr(old_val, &attr);
> >
> >-	val = env_get(native_name);
> >-	if (val) {
> >-		parse_attr(val, &attr);
> >-
> >-		/* We should not free val */
> >-		val = NULL;
> >+		/* check read-only first */
> >  		if (attr & READ_ONLY) {
> >  			ret = EFI_WRITE_PROTECTED;
> >  			goto out;
> >  		}
> >
> >-		/*
> >-		 * attributes won't be changed
> >-		 * TODO: take care of APPEND_WRITE once supported
> >-		 */
> >-		if (attr != attributes) {
> >+		if ((data_size == 0) || !(attributes & ACCESS_ATTR)) {
> 
> The understanding of EDK2 is that no access attributes means 'attributes
> == 0' (Function VariableServiceSetVariable() in
> MdeModulePkg/Universal/Variable/RuntimeDxe/Variable.c).

No, it's not correct. The right place you should refer to is:
UpdateVariable (
   [snip up to l.2279 or so]
    //
    // Setting a data variable with no access, or zero DataSize attributes
    // causes it to be deleted.
    // When the EFI_VARIABLE_APPEND_WRITE attribute is set, DataSize of zero will
    // not delete the variable.
    //
    if ((((Attributes & EFI_VARIABLE_APPEND_WRITE) == 0) && (DataSize == 0))|| ((Attributes & (EFI_VARIABLE_RUNTIME_ACCESS | EFI_VARIABLE_BOOTSERVICE_ACCESS)) == 0)) {

> EFI_VARIABLE_APPEND_WRITE and data_size = 0 should not delete a variable
> according to the UEFI spec:

This is correct.

Thanks,
-Takahiro Akashi

> "Unless the EFI_VARIABLE_APPEND_WRITE,
> EFI_VARIABLE_TIME_BASED_AUTHENTICATED_WRITE_ACCESS, or
> EFI_VARIABLE_ENHANCED_AUTHENTICATED_ACCESS attribute is set (see below),
> using SetVariable() with a DataSize of zero will cause the entire
> variable to be deleted."
> 
> Best regards
> 
> Heinrich
> 
> >+			/* delete the variable: */
> >+			env_set(native_name, NULL);
> >+			ret = EFI_SUCCESS;
> >+			goto out;
> >+		}
> >+
> >+		/* attributes won't be changed */
> >+		if (attr != (attributes & ~EFI_VARIABLE_APPEND_WRITE)) {
> >  			ret = EFI_INVALID_PARAMETER;
> >  			goto out;
> >  		}
> >+
> >+		if (attributes & EFI_VARIABLE_APPEND_WRITE) {
> >+			if (!prefix(old_val, "(blob)")) {
> >+				return EFI_DEVICE_ERROR;
> >+				goto out;
> >+			}
> >+			old_size = strlen(old_val);
> >+		} else {
> >+			old_size = 0;
> >+		}
> >+	} else {
> >+		if ((data_size == 0) || !(attributes & ACCESS_ATTR) ||
> >+		    (attributes & EFI_VARIABLE_APPEND_WRITE)) {
> >+			/* delete, but nothing to do */
> >+			ret = EFI_NOT_FOUND;
> >+			goto out;
> >+		}
> >+
> >+		old_size = 0;
> >  	}
> >
> >-	val = malloc(2 * data_size + strlen("{ro,run,boot,nv}(blob)") + 1);
> >+	val = malloc(old_size + 2 * data_size
> >+		     + strlen("{ro,run,boot,nv}(blob)") + 1);
> >  	if (!val) {
> >  		ret = EFI_OUT_OF_RESOURCES;
> >  		goto out;
> >@@ -481,10 +497,7 @@ efi_status_t EFIAPI efi_set_variable(u16 *variable_name,
> >
> >  	s = val;
> >
> >-	/*
> >-	 * store attributes
> >-	 * TODO: several attributes are not supported
> >-	 */
> >+	/* store attributes */
> >  	attributes &= (EFI_VARIABLE_NON_VOLATILE |
> >  		       EFI_VARIABLE_BOOTSERVICE_ACCESS |
> >  		       EFI_VARIABLE_RUNTIME_ACCESS);
> >@@ -505,8 +518,13 @@ efi_status_t EFIAPI efi_set_variable(u16 *variable_name,
> >  	}
> >  	s += sprintf(s, "}");
> >
> >+	if (old_size)
> >+		/* APPEND_WRITE */
> >+		s += sprintf(s, old_val);
> >+	else
> >+		s += sprintf(s, "(blob)");
> >+
> >  	/* store payload: */
> >-	s += sprintf(s, "(blob)");
> >  	s = bin2hex(s, data, data_size);
> >  	*s = '\0';
> >
> >
>

diff --git a/lib/efi_loader/efi_variable.c b/lib/efi_loader/efi_variable.c
index 6687b69a400d..48ee255f879b 100644
--- a/lib/efi_loader/efi_variable.c
+++ b/lib/efi_loader/efi_variable.c
@@ -424,17 +424,17 @@  efi_status_t EFIAPI efi_set_variable(u16 *variable_name,
 				     efi_uintn_t data_size, const void *data)
 {
 	char *native_name = NULL, *val = NULL, *s;
+	const char *old_val;
+	size_t old_size;
 	efi_status_t ret = EFI_SUCCESS;
 	u32 attr;
 
 	EFI_ENTRY("\"%ls\" %pUl %x %zu %p", variable_name, vendor, attributes,
 		  data_size, data);
 
-	/* TODO: implement APPEND_WRITE */
 	if (!variable_name || !*variable_name || !vendor ||
 	    ((attributes & EFI_VARIABLE_RUNTIME_ACCESS) &&
-	     !(attributes & EFI_VARIABLE_BOOTSERVICE_ACCESS)) ||
-	    (attributes & EFI_VARIABLE_APPEND_WRITE)) {
+	     !(attributes & EFI_VARIABLE_BOOTSERVICE_ACCESS))) {
 		ret = EFI_INVALID_PARAMETER;
 		goto out;
 	}
@@ -445,35 +445,51 @@  efi_status_t EFIAPI efi_set_variable(u16 *variable_name,
 
 #define ACCESS_ATTR (EFI_VARIABLE_RUNTIME_ACCESS | EFI_VARIABLE_BOOTSERVICE_ACCESS)
 
-	if ((data_size == 0) || !(attributes & ACCESS_ATTR)) {
-		/* delete the variable: */
-		env_set(native_name, NULL);
-		ret = EFI_SUCCESS;
-		goto out;
-	}
+	old_val = env_get(native_name);
+	if (old_val) {
+		old_val = parse_attr(old_val, &attr);
 
-	val = env_get(native_name);
-	if (val) {
-		parse_attr(val, &attr);
-
-		/* We should not free val */
-		val = NULL;
+		/* check read-only first */
 		if (attr & READ_ONLY) {
 			ret = EFI_WRITE_PROTECTED;
 			goto out;
 		}
 
-		/*
-		 * attributes won't be changed
-		 * TODO: take care of APPEND_WRITE once supported
-		 */
-		if (attr != attributes) {
+		if ((data_size == 0) || !(attributes & ACCESS_ATTR)) {
+			/* delete the variable: */
+			env_set(native_name, NULL);
+			ret = EFI_SUCCESS;
+			goto out;
+		}
+
+		/* attributes won't be changed */
+		if (attr != (attributes & ~EFI_VARIABLE_APPEND_WRITE)) {
 			ret = EFI_INVALID_PARAMETER;
 			goto out;
 		}
+
+		if (attributes & EFI_VARIABLE_APPEND_WRITE) {
+			if (!prefix(old_val, "(blob)")) {
+				return EFI_DEVICE_ERROR;
+				goto out;
+			}
+			old_size = strlen(old_val);
+		} else {
+			old_size = 0;
+		}
+	} else {
+		if ((data_size == 0) || !(attributes & ACCESS_ATTR) ||
+		    (attributes & EFI_VARIABLE_APPEND_WRITE)) {
+			/* delete, but nothing to do */
+			ret = EFI_NOT_FOUND;
+			goto out;
+		}
+
+		old_size = 0;
 	}
 
-	val = malloc(2 * data_size + strlen("{ro,run,boot,nv}(blob)") + 1);
+	val = malloc(old_size + 2 * data_size
+		     + strlen("{ro,run,boot,nv}(blob)") + 1);
 	if (!val) {
 		ret = EFI_OUT_OF_RESOURCES;
 		goto out;
@@ -481,10 +497,7 @@  efi_status_t EFIAPI efi_set_variable(u16 *variable_name,
 
 	s = val;
 
-	/*
-	 * store attributes
-	 * TODO: several attributes are not supported
-	 */
+	/* store attributes */
 	attributes &= (EFI_VARIABLE_NON_VOLATILE |
 		       EFI_VARIABLE_BOOTSERVICE_ACCESS |
 		       EFI_VARIABLE_RUNTIME_ACCESS);
@@ -505,8 +518,13 @@  efi_status_t EFIAPI efi_set_variable(u16 *variable_name,
 	}
 	s += sprintf(s, "}");
 
+	if (old_size)
+		/* APPEND_WRITE */
+		s += sprintf(s, old_val);
+	else
+		s += sprintf(s, "(blob)");
+
 	/* store payload: */
-	s += sprintf(s, "(blob)");
 	s = bin2hex(s, data, data_size);
 	*s = '\0';

[U-Boot,v2,1/2] efi_loader: variable: support APPEND_WRITE

Commit Message

Comments

Patch