robin.thoni
/
ipxe
Watch 1
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 11 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4040 Commits
2 Branches
Tree: e024cd39a8
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'e024cd39a8'
${ noResults }
ipxe/src/core/image.c

image.c 10KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426 
  1. /*

  2.  * Copyright (C) 2006 Michael Brown <mbrown@fensystems.co.uk>.

  3.  *

  4.  * This program is free software; you can redistribute it and/or

  5.  * modify it under the terms of the GNU General Public License as

  6.  * published by the Free Software Foundation; either version 2 of the

  7.  * License, or any later version.

  8.  *

  9.  * This program is distributed in the hope that it will be useful, but

  10.  * WITHOUT ANY WARRANTY; without even the implied warranty of

  11.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU

  12.  * General Public License for more details.

  13.  *

  14.  * You should have received a copy of the GNU General Public License

  15.  * along with this program; if not, write to the Free Software

  16.  * Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.

  17.  */

  18. 

  19. FILE_LICENCE ( GPL2_OR_LATER );

  20. 

  21. #include <stddef.h>

  22. #include <string.h>

  23. #include <stdlib.h>

  24. #include <stdio.h>

  25. #include <errno.h>

  26. #include <assert.h>

  27. #include <libgen.h>

  28. #include <ipxe/list.h>

  29. #include <ipxe/umalloc.h>

  30. #include <ipxe/uri.h>

  31. #include <ipxe/image.h>

  32. 

  33. /** @file

  34.  *

  35.  * Executable images

  36.  *

  37.  */

  38. 

  39. /* Disambiguate the various error causes */

  40. #define EACCES_UNTRUSTED \

  41. 	__einfo_error ( EINFO_EACCES_UNTRUSTED )

  42. #define EINFO_EACCES_UNTRUSTED \

  43. 	__einfo_uniqify ( EINFO_EACCES, 0x01, "Untrusted image" )

  44. #define EACCES_PERMANENT \

  45. 	__einfo_error ( EINFO_EACCES_PERMANENT )

  46. #define EINFO_EACCES_PERMANENT \

  47. 	__einfo_uniqify ( EINFO_EACCES, 0x02, "Trust requirement is permanent" )

  48. 

  49. /** List of registered images */

  50. struct list_head images = LIST_HEAD_INIT ( images );

  51. 

  52. /** Currently-executing image */

  53. struct image *current_image;

  54. 

  55. /** Current image trust requirement */

  56. static int require_trusted_images = 0;

  57. 

  58. /** Prevent changes to image trust requirement */

  59. static int require_trusted_images_permanent = 0;

  60. 

  61. /**

  62.  * Free executable image

  63.  *

  64.  * @v refcnt		Reference counter

  65.  */

  66. static void free_image ( struct refcnt *refcnt ) {

  67. 	struct image *image = container_of ( refcnt, struct image, refcnt );

  68. 

  69. 	free ( image->name );

  70. 	free ( image->cmdline );

  71. 	uri_put ( image->uri );

  72. 	ufree ( image->data );

  73. 	image_put ( image->replacement );

  74. 	free ( image );

  75. 	DBGC ( image, "IMAGE %s freed\n", image->name );

  76. }

  77. 

  78. /**

  79.  * Allocate executable image

  80.  *

  81.  * @v uri		URI, or NULL

  82.  * @ret image		Executable image

  83.  */

  84. struct image * alloc_image ( struct uri *uri ) {

  85. 	const char *name;

  86. 	struct image *image;

  87. 	int rc;

  88. 

  89. 	/* Allocate image */

  90. 	image = zalloc ( sizeof ( *image ) );

  91. 	if ( ! image )

  92. 		goto err_alloc;

  93. 

  94. 	/* Initialise image */

  95. 	ref_init ( &image->refcnt, free_image );

  96. 	if ( uri ) {

  97. 		image->uri = uri_get ( uri );

  98. 		name = basename ( ( char * ) uri->path );

  99. 		if ( ( rc = image_set_name ( image, name ) ) != 0 )

  100. 			goto err_set_name;

  101. 	}

  102. 

  103. 	return image;

  104. 

  105.  err_set_name:

  106. 	image_put ( image );

  107.  err_alloc:

  108. 	return NULL;

  109. }

  110. 

  111. /**

  112.  * Set image name

  113.  *

  114.  * @v image		Image

  115.  * @v name		New image name

  116.  * @ret rc		Return status code

  117.  */

  118. int image_set_name ( struct image *image, const char *name ) {

  119. 	char *name_copy;

  120. 

  121. 	/* Duplicate name */

  122. 	name_copy = strdup ( name );

  123. 	if ( ! name_copy )

  124. 		return -ENOMEM;

  125. 

  126. 	/* Replace existing name */

  127. 	free ( image->name );

  128. 	image->name = name_copy;

  129. 

  130. 	return 0;

  131. }

  132. 

  133. /**

  134.  * Set image command line

  135.  *

  136.  * @v image		Image

  137.  * @v cmdline		New image command line, or NULL

  138.  * @ret rc		Return status code

  139.  */

  140. int image_set_cmdline ( struct image *image, const char *cmdline ) {

  141. 

  142. 	free ( image->cmdline );

  143. 	image->cmdline = NULL;

  144. 	if ( cmdline ) {

  145. 		image->cmdline = strdup ( cmdline );

  146. 		if ( ! image->cmdline )

  147. 			return -ENOMEM;

  148. 	}

  149. 	return 0;

  150. }

  151. 

  152. /**

  153.  * Register executable image

  154.  *

  155.  * @v image		Executable image

  156.  * @ret rc		Return status code

  157.  */

  158. int register_image ( struct image *image ) {

  159. 	static unsigned int imgindex = 0;

  160. 	char name[8]; /* "imgXXXX" */

  161. 	int rc;

  162. 

  163. 	/* Create image name if it doesn't already have one */

  164. 	if ( ! image->name ) {

  165. 		snprintf ( name, sizeof ( name ), "img%d", imgindex++ );

  166. 		if ( ( rc = image_set_name ( image, name ) ) != 0 )

  167. 			return rc;

  168. 	}

  169. 

  170. 	/* Avoid ending up with multiple "selected" images on

  171. 	 * re-registration

  172. 	 */

  173. 	if ( image_find_selected() )

  174. 		image->flags &= ~IMAGE_SELECTED;

  175. 

  176. 	/* Add to image list */

  177. 	image_get ( image );

  178. 	image->flags |= IMAGE_REGISTERED;

  179. 	list_add_tail ( &image->list, &images );

  180. 	DBGC ( image, "IMAGE %s at [%lx,%lx) registered\n",

  181. 	       image->name, user_to_phys ( image->data, 0 ),

  182. 	       user_to_phys ( image->data, image->len ) );

  183. 

  184. 	return 0;

  185. }

  186. 

  187. /**

  188.  * Unregister executable image

  189.  *

  190.  * @v image		Executable image

  191.  */

  192. void unregister_image ( struct image *image ) {

  193. 

  194. 	DBGC ( image, "IMAGE %s unregistered\n", image->name );

  195. 	list_del ( &image->list );

  196. 	image->flags &= ~IMAGE_REGISTERED;

  197. 	image_put ( image );

  198. }

  199. 

  200. /**

  201.  * Find image by name

  202.  *

  203.  * @v name		Image name

  204.  * @ret image		Executable image, or NULL

  205.  */

  206. struct image * find_image ( const char *name ) {

  207. 	struct image *image;

  208. 

  209. 	list_for_each_entry ( image, &images, list ) {

  210. 		if ( strcmp ( image->name, name ) == 0 )

  211. 			return image;

  212. 	}

  213. 

  214. 	return NULL;

  215. }

  216. 

  217. /**

  218.  * Determine image type

  219.  *

  220.  * @v image		Executable image

  221.  * @ret rc		Return status code

  222.  */

  223. int image_probe ( struct image *image ) {

  224. 	struct image_type *type;

  225. 	int rc;

  226. 

  227. 	/* Succeed if we already have a type */

  228. 	if ( image->type )

  229. 		return 0;

  230. 

  231. 	/* Try each type in turn */

  232. 	for_each_table_entry ( type, IMAGE_TYPES ) {

  233. 		if ( ( rc = type->probe ( image ) ) == 0 ) {

  234. 			image->type = type;

  235. 			DBGC ( image, "IMAGE %s is %s\n",

  236. 			       image->name, type->name );

  237. 			return 0;

  238. 		}

  239. 		DBGC ( image, "IMAGE %s is not %s: %s\n", image->name,

  240. 		       type->name, strerror ( rc ) );

  241. 	}

  242. 

  243. 	DBGC ( image, "IMAGE %s format not recognised\n", image->name );

  244. 	return -ENOEXEC;

  245. }

  246. 

  247. /**

  248.  * Execute image

  249.  *

  250.  * @v image		Executable image

  251.  * @ret rc		Return status code

  252.  *

  253.  * The image must already be registered.  Note that executing an image

  254.  * may cause it to unregister itself.  The caller must therefore

  255.  * assume that the image pointer becomes invalid.

  256.  */

  257. int image_exec ( struct image *image ) {

  258. 	struct image *saved_current_image;

  259. 	struct image *replacement;

  260. 	struct uri *old_cwuri;

  261. 	int rc;

  262. 

  263. 	/* Sanity check */

  264. 	assert ( image->flags & IMAGE_REGISTERED );

  265. 

  266. 	/* Check that this image can be selected for execution */

  267. 	if ( ( rc = image_select ( image ) ) != 0 )

  268. 		return rc;

  269. 

  270. 	/* Check that image is trusted (if applicable) */

  271. 	if ( require_trusted_images && ! ( image->flags & IMAGE_TRUSTED ) ) {

  272. 		DBGC ( image, "IMAGE %s is not trusted\n", image->name );

  273. 		return -EACCES_UNTRUSTED;

  274. 	}

  275. 

  276. 	/* Switch current working directory to be that of the image itself */

  277. 	old_cwuri = uri_get ( cwuri );

  278. 	churi ( image->uri );

  279. 

  280. 	/* Preserve record of any currently-running image */

  281. 	saved_current_image = current_image;

  282. 

  283. 	/* Take out a temporary reference to the image.  This allows

  284. 	 * the image to unregister itself if necessary, without

  285. 	 * automatically freeing itself.

  286. 	 */

  287. 	current_image = image_get ( image );

  288. 

  289. 	/* Try executing the image */

  290. 	if ( ( rc = image->type->exec ( image ) ) != 0 ) {

  291. 		DBGC ( image, "IMAGE %s could not execute: %s\n",

  292. 		       image->name, strerror ( rc ) );

  293. 		/* Do not return yet; we still have clean-up to do */

  294. 	}

  295. 

  296. 	/* Pick up replacement image before we drop the original

  297. 	 * image's temporary reference.  The replacement image must

  298. 	 * already be registered, so we don't need to hold a temporary

  299. 	 * reference (which would complicate the tail-recursion).

  300. 	 */

  301. 	replacement = image->replacement;

  302. 	if ( replacement )

  303. 		assert ( replacement->flags & IMAGE_REGISTERED );

  304. 

  305. 	/* Drop temporary reference to the original image */

  306. 	image_put ( image );

  307. 

  308. 	/* Restore previous currently-running image */

  309. 	current_image = saved_current_image;

  310. 

  311. 	/* Reset current working directory */

  312. 	churi ( old_cwuri );

  313. 	uri_put ( old_cwuri );

  314. 

  315. 	/* Tail-recurse into replacement image, if one exists */

  316. 	if ( replacement ) {

  317. 		DBGC ( image, "IMAGE %s replacing self with IMAGE %s\n",

  318. 		       image->name, replacement->name );

  319. 		if ( ( rc = image_exec ( replacement ) ) != 0 )

  320. 			return rc;

  321. 	}

  322. 

  323. 	return rc;

  324. }

  325. 

  326. /**

  327.  * Set replacement image

  328.  *

  329.  * @v replacement	Replacement image

  330.  * @ret rc		Return status code

  331.  *

  332.  * The replacement image must already be registered, and must remain

  333.  * registered until the currently-executing image returns.

  334.  */

  335. int image_replace ( struct image *replacement ) {

  336. 	struct image *image = current_image;

  337. 	int rc;

  338. 

  339. 	/* Sanity check */

  340. 	assert ( replacement->flags & IMAGE_REGISTERED );

  341. 

  342. 	/* Fail unless there is a currently-executing image */

  343. 	if ( ! image ) {

  344. 		rc = -ENOTTY;

  345. 		DBGC ( replacement, "IMAGE %s cannot replace non-existent "

  346. 		       "image: %s\n", replacement->name, strerror ( rc ) );

  347. 		return rc;

  348. 	}

  349. 

  350. 	/* Check that the replacement image can be executed */

  351. 	if ( ( rc = image_probe ( replacement ) ) != 0 )

  352. 		return rc;

  353. 

  354. 	/* Clear any existing replacement */

  355. 	image_put ( image->replacement );

  356. 

  357. 	/* Set replacement */

  358. 	image->replacement = image_get ( replacement );

  359. 	DBGC ( image, "IMAGE %s will replace self with IMAGE %s\n",

  360. 	       image->name, replacement->name );

  361. 

  362. 	return 0;

  363. }

  364. 

  365. /**

  366.  * Select image for execution

  367.  *

  368.  * @v image		Executable image

  369.  * @ret rc		Return status code

  370.  */

  371. int image_select ( struct image *image ) {

  372. 	struct image *tmp;

  373. 	int rc;

  374. 

  375. 	/* Unselect all other images */

  376. 	for_each_image ( tmp )

  377. 		tmp->flags &= ~IMAGE_SELECTED;

  378. 

  379. 	/* Check that this image can be executed */

  380. 	if ( ( rc = image_probe ( image ) ) != 0 )

  381. 		return rc;

  382. 

  383. 	/* Mark image as selected */

  384. 	image->flags |= IMAGE_SELECTED;

  385. 

  386. 	return 0;

  387. }

  388. 

  389. /**

  390.  * Find selected image

  391.  *

  392.  * @ret image		Executable image, or NULL

  393.  */

  394. struct image * image_find_selected ( void ) {

  395. 	struct image *image;

  396. 

  397. 	for_each_image ( image ) {

  398. 		if ( image->flags & IMAGE_SELECTED )

  399. 			return image;

  400. 	}

  401. 	return NULL;

  402. }

  403. 

  404. /**

  405.  * Change image trust requirement

  406.  *

  407.  * @v require_trusted	Require trusted images

  408.  * @v permanent		Make trust requirement permanent

  409.  * @ret rc		Return status code

  410.  */

  411. int image_set_trust ( int require_trusted, int permanent ) {

  412. 

  413. 	/* Update trust requirement, if permitted to do so */

  414. 	if ( ! require_trusted_images_permanent ) {

  415. 		require_trusted_images = require_trusted;

  416. 		require_trusted_images_permanent = permanent;

  417. 	}

  418. 

  419. 	/* Fail if we attempted to change the trust requirement but

  420. 	 * were not permitted to do so.

  421. 	 */

  422. 	if ( require_trusted_images != require_trusted )

  423. 		return -EACCES_PERMANENT;

  424. 

  425. 	return 0;

  426. }