EFI conflict solution review on 3.14 LSK/LTS - linaro-kernel

18 Mar 2016

commit 70e00db9eb8ffc4dcaf5f035ec6a4440ba428794
Merge: 34e0913 dfbed80
Author: Alex Shi alex.shi@linaro.org
Date:   Fri Mar 18 11:41:51 2016 +0800
Merge remote-tracking branch 'lts/linux-3.14.y' into linux-linaro-lsk-v3.14
Conflicts:
    	Most of conflicts are due to efivar_validate() change which
    	introduced a new parameter to check efi guid.
    	I added efi guid for this change in sanity_check()/efivar_create()
    	in drivers/firmware/efi/efivars.c
    	and keep new efivar_validate() in drivers/firmware/efi/vars.c,
    	since it's newer than LSK version.
    	nothing need mentioned in include/linux/efi.h
diff --cc drivers/firmware/efi/efivars.c
index 463c565,f04ce00..e637816

--- a/drivers/firmware/efi/efivars.c
+++ b/drivers/firmware/efi/efivars.c
@@@ -219,8 -218,9 +219,8 @@@ sanity_check(struct efi_variable *var, 
    	return -EINVAL;
    }
-	if ((new_var->Attributes & ~EFI_VARIABLE_MASK) != 0 ||
 -	    efivar_validate(new_var->VendorGuid, new_var->VariableName,
 -			    new_var->Data, new_var->DataSize) == false) {
 +	if ((attributes & ~EFI_VARIABLE_MASK) != 0 ||
- 	    efivar_validate(name, data, size) == false) {
++	    efivar_validate(vendor, name, data, size) == false) {
    	printk(KERN_ERR "efivars: Malformed variable content\n");
    	return -EINVAL;
    }
@@@ -427,26 -334,9 +427,26 @@@ static ssize_t efivar_create(struct fil
    if (!capable(CAP_SYS_ADMIN))
    	return -EACCES;
-	if ((new_var->Attributes & ~EFI_VARIABLE_MASK) != 0 ||
 -	    efivar_validate(new_var->VendorGuid, new_var->VariableName,
 -			    new_var->Data, new_var->DataSize) == false) {
 +	if (need_compat) {
 +		if (count != sizeof(*compat))
 +			return -EINVAL;
 +
 +		attributes = compat->Attributes;
 +		name = compat->VariableName;
 +		size = compat->DataSize;
 +		data = compat->Data;
 +	} else {
 +		if (count != sizeof(*new_var))
 +			return -EINVAL;
 +
 +		attributes = new_var->Attributes;
 +		name = new_var->VariableName;
 +		size = new_var->DataSize;
 +		data = new_var->Data;
 +	}
 +
 +	if ((attributes & ~EFI_VARIABLE_MASK) != 0 ||
- 	    efivar_validate(name, data, size) == false) {
++	    efivar_validate(new_var->VendorGuid, name, data, size) == false) {
    	printk(KERN_ERR "efivars: Malformed variable content\n");
    	return -EINVAL;
    }
diff --cc drivers/firmware/efi/vars.c
index 5abe943,4e2f469..a7c5892
--- a/drivers/firmware/efi/vars.c
+++ b/drivers/firmware/efi/vars.c
@@@ -170,58 -171,94 +171,95 @@@ struct variable_validate 
    		 unsigned long len);
  };
+ /*
+  * This is the list of variables we need to validate, as well as the
+  * whitelist for what we think is safe not to default to immutable.
+  *
+  * If it has a validate() method that's not NULL, it'll go into the
+  * validation routine.  If not, it is assumed valid, but still used for
+  * whitelisting.
+  *
+  * Note that it's sorted by {vendor,name}, but globbed names must come after
+  * any other name with the same prefix.
+  */
  static const struct variable_validate variable_validate[] = {
- 	{ "BootNext", validate_uint16 },
- 	{ "BootOrder", validate_boot_order },
- 	{ "DriverOrder", validate_boot_order },
- 	{ "Boot*", validate_load_option },
- 	{ "Driver*", validate_load_option },
- 	{ "ConIn", validate_device_path },
- 	{ "ConInDev", validate_device_path },
- 	{ "ConOut", validate_device_path },
- 	{ "ConOutDev", validate_device_path },
- 	{ "ErrOut", validate_device_path },
- 	{ "ErrOutDev", validate_device_path },
- 	{ "Timeout", validate_uint16 },
- 	{ "Lang", validate_ascii_string },
- 	{ "PlatformLang", validate_ascii_string },
- 	{ "", NULL },
+ 	{ EFI_GLOBAL_VARIABLE_GUID, "BootNext", validate_uint16 },
+ 	{ EFI_GLOBAL_VARIABLE_GUID, "BootOrder", validate_boot_order },
+ 	{ EFI_GLOBAL_VARIABLE_GUID, "Boot*", validate_load_option },
+ 	{ EFI_GLOBAL_VARIABLE_GUID, "DriverOrder", validate_boot_order },
+ 	{ EFI_GLOBAL_VARIABLE_GUID, "Driver*", validate_load_option },
+ 	{ EFI_GLOBAL_VARIABLE_GUID, "ConIn", validate_device_path },
+ 	{ EFI_GLOBAL_VARIABLE_GUID, "ConInDev", validate_device_path },
+ 	{ EFI_GLOBAL_VARIABLE_GUID, "ConOut", validate_device_path },
+ 	{ EFI_GLOBAL_VARIABLE_GUID, "ConOutDev", validate_device_path },
+ 	{ EFI_GLOBAL_VARIABLE_GUID, "ErrOut", validate_device_path },
+ 	{ EFI_GLOBAL_VARIABLE_GUID, "ErrOutDev", validate_device_path },
+ 	{ EFI_GLOBAL_VARIABLE_GUID, "Lang", validate_ascii_string },
+ 	{ EFI_GLOBAL_VARIABLE_GUID, "OsIndications", NULL },
+ 	{ EFI_GLOBAL_VARIABLE_GUID, "PlatformLang", validate_ascii_string },
+ 	{ EFI_GLOBAL_VARIABLE_GUID, "Timeout", validate_uint16 },
+ 	{ LINUX_EFI_CRASH_GUID, "*", NULL },
+ 	{ NULL_GUID, "", NULL },
  };
+ static bool
+ variable_matches(const char *var_name, size_t len, const char *match_name,
+ 		 int *match)
+ {
+ 	for (*match = 0; ; (*match)++) {
+ 		char c = match_name[*match];
+ 		char u = var_name[*match];
+ 
+ 		/* Wildcard in the matching name means we've matched */
+ 		if (c == '*')
+ 			return true;
+ 
+ 		/* Case sensitive match */
+ 		if (!c && *match == len)
+ 			return true;
+ 
+ 		if (c != u)
+ 			return false;
+ 
+ 		if (!c)
+ 			return true;
+ 	}
+ 	return true;
+ }
+ 
  bool
- efivar_validate(efi_char16_t *var_name, u8 *data, unsigned long len)
+ efivar_validate(efi_guid_t vendor, efi_char16_t *var_name, u8 *data,
+ 		unsigned long data_size)
  {
    int i;
- 	u16 *unicode_name = var_name;
+ 	unsigned long utf8_size;
+ 	u8 *utf8_name;
- 	for (i = 0; variable_validate[i].validate != NULL; i++) {
- 		const char *name = variable_validate[i].name;
- 		int match;
+ 	utf8_size = ucs2_utf8size(var_name);
+ 	utf8_name = kmalloc(utf8_size + 1, GFP_KERNEL);
+ 	if (!utf8_name)
+ 		return false;
- 		for (match = 0; ; match++) {
- 			char c = name[match];
- 			u16 u = unicode_name[match];
+ 	ucs2_as_utf8(utf8_name, var_name, utf8_size);
+ 	utf8_name[utf8_size] = '\0';
- 			/* All special variables are plain ascii */
- 			if (u > 127)
- 				return true;
+ 	for (i = 0; variable_validate[i].name[0] != '\0'; i++) {
+ 		const char *name = variable_validate[i].name;
+ 		int match = 0;
- 			/* Wildcard in the matching name means we've matched */
- 			if (c == '*')
- 				return variable_validate[i].validate(var_name,
- 							     match, data, len);
+ 		if (efi_guidcmp(vendor, variable_validate[i].vendor))
+ 			continue;
- 			/* Case sensitive match */
- 			if (c != u)
+ 		if (variable_matches(utf8_name, utf8_size+1, name, &match)) {
+ 			if (variable_validate[i].validate == NULL)
    			break;
 +
- 			/* Reached the end of the string while matching */
- 			if (!c)
- 				return variable_validate[i].validate(var_name,
- 							     match, data, len);
+ 			kfree(utf8_name);
+ 			return variable_validate[i].validate(var_name, match,
+ 							     data, data_size);
    	}
    }
- 
+ 	kfree(utf8_name);
    return true;
  }
  EXPORT_SYMBOL_GPL(efivar_validate);

    