iPXE
Macros | Functions
efi_image.c File Reference
#include <errno.h>
#include <stdlib.h>
#include <string.h>
#include <wchar.h>
#include <ipxe/efi/efi.h>
#include <ipxe/efi/efi_snp.h>
#include <ipxe/efi/efi_download.h>
#include <ipxe/efi/efi_file.h>
#include <ipxe/efi/efi_path.h>
#include <ipxe/efi/efi_strings.h>
#include <ipxe/efi/efi_wrap.h>
#include <ipxe/efi/efi_pxe.h>
#include <ipxe/efi/efi_driver.h>
#include <ipxe/efi/efi_image.h>
#include <ipxe/efi/efi_shim.h>
#include <ipxe/efi/efi_fdt.h>
#include <ipxe/image.h>
#include <ipxe/init.h>
#include <ipxe/features.h>
#include <ipxe/uri.h>
#include <ipxe/console.h>

Go to the source code of this file.

Macros

#define EINFO_EEFI_LOAD
#define EINFO_EEFI_LOAD_PROHIBITED
#define EEFI_LOAD_PROHIBITED    __einfo_error ( EINFO_EEFI_LOAD_PROHIBITED )
#define EEFI_LOAD(efirc)
#define EINFO_EEFI_START
#define EEFI_START(efirc)

Functions

 FILE_LICENCE (GPL2_OR_LATER)
 FILE_SECBOOT (PERMITTED)
 FEATURE (FEATURE_IMAGE, "EFI", DHCP_EB_FEATURE_EFI, 1)
static EFI_DEVICE_PATH_PROTOCOLefi_image_path (struct image *image, EFI_DEVICE_PATH_PROTOCOL *parent)
 Create device path for image.
static wchar_tefi_image_cmdline (struct image *image)
 Create command line for image.
__weak int efi_fdt_install (const char *cmdline __unused)
 Install EFI Flattened Device Tree table (when no FDT support is present)
__weak int efi_fdt_uninstall (void)
 Uninstall EFI Flattened Device Tree table (when no FDT support is present)
static int efi_image_exec (struct image *image)
 Execute EFI image.
static int efi_image_probe (struct image *image)
 Probe EFI image.
static int efi_pe_image_probe (struct image *image)
 Probe EFI PE image.
struct image_type efi_image_type[] __image_type (PROBE_NORMAL)
 EFI image types.

Macro Definition Documentation

◆ EINFO_EEFI_LOAD

#define EINFO_EEFI_LOAD
Value:
__einfo_uniqify ( EINFO_EPLATFORM, 0x01, \
"Could not load image" )
__einfo_uniqify
#define __einfo_uniqify(einfo_base, uniq, desc)
Declare disambiguated error.
Definition errno.h:181
EINFO_EPLATFORM
#define EINFO_EPLATFORM
Platform-generated base error.
Definition errno.h:692

Definition at line 48 of file efi_image.c.

48#define EINFO_EEFI_LOAD \
49 __einfo_uniqify ( EINFO_EPLATFORM, 0x01, \
50 "Could not load image" )

◆ EINFO_EEFI_LOAD_PROHIBITED

#define EINFO_EEFI_LOAD_PROHIBITED
Value:
__einfo_platformify ( EINFO_EEFI_LOAD, EFI_SECURITY_VIOLATION, \
"Image prohibited by security policy" )
EFI_SECURITY_VIOLATION
#define EFI_SECURITY_VIOLATION
Enumeration of EFI_STATUS.
Definition UefiBaseType.h:141
EINFO_EEFI_LOAD
#define EINFO_EEFI_LOAD
Definition efi_image.c:48
__einfo_platformify
#define __einfo_platformify(einfo_base, platform, desc)
Declare platform-generated error.
Definition errno.h:194

Definition at line 51 of file efi_image.c.

51#define EINFO_EEFI_LOAD_PROHIBITED \
52 __einfo_platformify ( EINFO_EEFI_LOAD, EFI_SECURITY_VIOLATION, \
53 "Image prohibited by security policy" )

◆ EEFI_LOAD_PROHIBITED

#define EEFI_LOAD_PROHIBITED    __einfo_error ( EINFO_EEFI_LOAD_PROHIBITED )

Definition at line 54 of file efi_image.c.

54#define EEFI_LOAD_PROHIBITED \
55 __einfo_error ( EINFO_EEFI_LOAD_PROHIBITED )

◆ EEFI_LOAD

#define EEFI_LOAD ( efirc)
Value:
EPLATFORM ( EINFO_EEFI_LOAD, efirc, \
EEFI_LOAD_PROHIBITED )
EEFI_LOAD_PROHIBITED
#define EEFI_LOAD_PROHIBITED
Definition efi_image.c:54
EPLATFORM
#define EPLATFORM(einfo_base, platform,...)
Generate an error based on an external platform error code.
Definition errno.h:249

Definition at line 56 of file efi_image.c.

56#define EEFI_LOAD( efirc ) EPLATFORM ( EINFO_EEFI_LOAD, efirc, \
57 EEFI_LOAD_PROHIBITED )

Referenced by efi_image_exec(), and efi_image_probe().

◆ EINFO_EEFI_START

#define EINFO_EEFI_START
Value:
__einfo_uniqify ( EINFO_EPLATFORM, 0x02, \
"Could not start image" )

Definition at line 58 of file efi_image.c.

58#define EINFO_EEFI_START \
59 __einfo_uniqify ( EINFO_EPLATFORM, 0x02, \
60 "Could not start image" )

◆ EEFI_START

#define EEFI_START ( efirc)
Value:
EPLATFORM ( EINFO_EEFI_START, efirc )
EINFO_EEFI_START
#define EINFO_EEFI_START
Definition efi_image.c:58

Definition at line 61 of file efi_image.c.

Referenced by efi_image_exec().

Function Documentation

◆ FILE_LICENCE()

FILE_LICENCE ( GPL2_OR_LATER )

◆ FILE_SECBOOT()

FILE_SECBOOT ( PERMITTED )

◆ FEATURE()

FEATURE ( FEATURE_IMAGE ,
"EFI" ,
DHCP_EB_FEATURE_EFI ,
1  )

References DHCP_EB_FEATURE_EFI, and FEATURE_IMAGE.

◆ efi_image_path()

EFI_DEVICE_PATH_PROTOCOL * efi_image_path ( struct image * image,
EFI_DEVICE_PATH_PROTOCOL * parent )
static

Create device path for image.

Parameters
imageEFI image
parentParent device path
Return values
pathDevice path, or NULL on failure

The caller must eventually free() the device path.

Definition at line 73 of file efi_image.c.

73 {
74 EFI_DEVICE_PATH_PROTOCOL *path;
75 FILEPATH_DEVICE_PATH *filepath;
76 EFI_DEVICE_PATH_PROTOCOL *end;
77 size_t name_len;
78 size_t prefix_len;
79 size_t filepath_len;
80 size_t len;
81
82 /* Calculate device path lengths */
83 prefix_len = efi_path_len ( parent );
84 name_len = strlen ( image->name );
85 filepath_len = ( SIZE_OF_FILEPATH_DEVICE_PATH +
86 ( name_len + 1 /* NUL */ ) * sizeof ( wchar_t ) );
87 len = ( prefix_len + filepath_len + sizeof ( *end ) );
88
89 /* Allocate device path */
90 path = zalloc ( len );
91 if ( ! path )
92 return NULL;
93
94 /* Construct device path */
95 memcpy ( path, parent, prefix_len );
96 filepath = ( ( ( void * ) path ) + prefix_len );
97 filepath->Header.Type = MEDIA_DEVICE_PATH;
98 filepath->Header.SubType = MEDIA_FILEPATH_DP;
99 filepath->Header.Length[0] = ( filepath_len & 0xff );
100 filepath->Header.Length[1] = ( filepath_len >> 8 );
101 efi_snprintf ( filepath->PathName, ( name_len + 1 /* NUL */ ),
102 "%s", image->name );
103 end = ( ( ( void * ) filepath ) + filepath_len );
104 efi_path_terminate ( end );
105
106 return path;
107}
NULL
#define NULL
NULL pointer (VOID *)
Definition Base.h:322
MEDIA_FILEPATH_DP
#define MEDIA_FILEPATH_DP
File Path Media Device Path SubType.
Definition DevicePath.h:1101
SIZE_OF_FILEPATH_DEVICE_PATH
#define SIZE_OF_FILEPATH_DEVICE_PATH
Definition DevicePath.h:1110
MEDIA_DEVICE_PATH
#define MEDIA_DEVICE_PATH
Definition DevicePath.h:1012
len
ring len
Length.
Definition dwmac.h:226
efi_path_len
size_t efi_path_len(EFI_DEVICE_PATH_PROTOCOL *path)
Find length of device path (excluding terminator)
Definition efi_path.c:174
efi_path_terminate
static void efi_path_terminate(EFI_DEVICE_PATH_PROTOCOL *end)
Terminate device path.
Definition efi_path.h:31
efi_snprintf
int efi_snprintf(wchar_t *wbuf, size_t wsize, const char *fmt,...)
Write a formatted string to a buffer.
Definition efi_strings.c:107
memcpy
void * memcpy(void *dest, const void *src, size_t len) __nonnull
zalloc
void * zalloc(size_t size)
Allocate cleared memory.
Definition malloc.c:662
end
uint32_t end
Ending offset.
Definition netvsc.h:7
wchar_t
__WCHAR_TYPE__ wchar_t
Definition stddef.h:50
strlen
size_t strlen(const char *src)
Get length of string.
Definition string.c:244
EFI_DEVICE_PATH_PROTOCOL
This protocol can be used on any device handle to obtain generic path/location information concerning...
Definition DevicePath.h:46
EFI_DEVICE_PATH_PROTOCOL::Type
UINT8 Type
0x01 Hardware Device Path.
Definition DevicePath.h:47
EFI_DEVICE_PATH_PROTOCOL::Length
UINT8 Length[2]
Specific Device Path data.
Definition DevicePath.h:59
EFI_DEVICE_PATH_PROTOCOL::SubType
UINT8 SubType
Varies by Type 0xFF End Entire Device Path, or 0x01 End This Instance of a Device Path and start a ne...
Definition DevicePath.h:54
FILEPATH_DEVICE_PATH
Definition DevicePath.h:1102
FILEPATH_DEVICE_PATH::PathName
CHAR16 PathName[1]
A NULL-terminated Path string including directory and file names.
Definition DevicePath.h:1107
FILEPATH_DEVICE_PATH::Header
EFI_DEVICE_PATH_PROTOCOL Header
Definition DevicePath.h:1103
image
An executable image.
Definition image.h:24
image::name
char * name
Name.
Definition image.h:38

References efi_path_len(), efi_path_terminate(), efi_snprintf(), end, FILEPATH_DEVICE_PATH::Header, len, EFI_DEVICE_PATH_PROTOCOL::Length, MEDIA_DEVICE_PATH, MEDIA_FILEPATH_DP, memcpy(), image::name, NULL, FILEPATH_DEVICE_PATH::PathName, SIZE_OF_FILEPATH_DEVICE_PATH, strlen(), EFI_DEVICE_PATH_PROTOCOL::SubType, EFI_DEVICE_PATH_PROTOCOL::Type, and zalloc().

Referenced by efi_image_exec().

◆ efi_image_cmdline()

wchar_t * efi_image_cmdline ( struct image * image)
static

Create command line for image.

Parameters
imageEFI image
Return values
cmdlineCommand line, or NULL on failure

Definition at line 115 of file efi_image.c.

115 {
116 wchar_t *cmdline;
117
118 /* Allocate and construct command line */
119 if ( efi_asprintf ( &cmdline, "%s%s%s", image->name,
120 ( image->cmdline ? " " : "" ),
121 ( image->cmdline ? image->cmdline : "" ) ) < 0 ) {
122 return NULL;
123 }
124
125 return cmdline;
126}
efi_asprintf
int efi_asprintf(wchar_t **wstrp, const char *fmt,...)
Write a formatted string to newly allocated memory.
Definition efi_strings.c:189
cmdline
uint32_t cmdline
Definition multiboot.h:4
image::cmdline
char * cmdline
Command line to pass to image.
Definition image.h:43

References cmdline, image::cmdline, efi_asprintf(), image::name, and NULL.

Referenced by efi_image_exec().

◆ efi_fdt_install()

__weak int efi_fdt_install ( const char *cmdline __unused)

Install EFI Flattened Device Tree table (when no FDT support is present)

Parameters
cmdlineCommand line, or NULL
Return values
rcReturn status code

Definition at line 134 of file efi_image.c.

134 {
135 return 0;
136}

References __unused, __weak, and cmdline.

Referenced by efi_image_exec().

◆ efi_fdt_uninstall()

__weak int efi_fdt_uninstall ( void )

Uninstall EFI Flattened Device Tree table (when no FDT support is present)

Return values
rcReturn status code

Definition at line 143 of file efi_image.c.

143 {
144 return 0;
145}

References __weak.

Referenced by efi_image_exec().

◆ efi_image_exec()

int efi_image_exec ( struct image * image)
static

Execute EFI image.

Parameters
imageEFI image
Return values
rcReturn status code

Definition at line 153 of file efi_image.c.

153 {
154 EFI_BOOT_SERVICES *bs = efi_systab->BootServices;
155 struct efi_snp_device *snpdev;
156 EFI_DEVICE_PATH_PROTOCOL *path;
157 EFI_LOADED_IMAGE_PROTOCOL *loaded;
158 struct image *shim;
159 struct image *exec;
160 EFI_HANDLE device;
161 EFI_HANDLE handle;
162 EFI_MEMORY_TYPE type;
163 wchar_t *cmdline;
164 unsigned int toggle;
165 EFI_STATUS efirc;
166 int rc;
167
168 /* Find an appropriate device handle to use */
169 snpdev = last_opened_snpdev();
170 if ( ! snpdev ) {
171 DBGC ( image, "EFIIMAGE %s could not identify SNP device\n",
172 image->name );
173 rc = -ENODEV;
174 goto err_no_snpdev;
175 }
176 device = snpdev->handle;
177
178 /* Use shim instead of directly executing image if applicable */
179 shim = ( efi_can_load ( image ) ?
180 NULL : find_image_tag ( &efi_shim ) );
181 exec = ( shim ? shim : image );
182 if ( shim ) {
183 DBGC ( image, "EFIIMAGE %s executing via %s\n",
184 image->name, shim->name );
185 }
186
187 /* Re-register as a hidden image to allow for access via file I/O */
188 toggle = ( ~image->flags & IMAGE_HIDDEN );
189 image->flags |= IMAGE_HIDDEN;
190 if ( ( rc = register_image ( image ) ) != 0 )
191 goto err_register_image;
192
193 /* Install file I/O protocols */
194 if ( ( rc = efi_file_install ( device ) ) != 0 ) {
195 DBGC ( image, "EFIIMAGE %s could not install file protocol: "
196 "%s\n", image->name, strerror ( rc ) );
197 goto err_file_install;
198 }
199
200 /* Install PXE base code protocol */
201 if ( ( rc = efi_pxe_install ( device, snpdev->netdev ) ) != 0 ){
202 DBGC ( image, "EFIIMAGE %s could not install PXE protocol: "
203 "%s\n", image->name, strerror ( rc ) );
204 goto err_pxe_install;
205 }
206
207 /* Install iPXE download protocol */
208 if ( ( rc = efi_download_install ( device ) ) != 0 ) {
209 DBGC ( image, "EFIIMAGE %s could not install iPXE download "
210 "protocol: %s\n", image->name, strerror ( rc ) );
211 goto err_download_install;
212 }
213
214 /* Install Flattened Device Tree table */
215 if ( ( rc = efi_fdt_install ( image->cmdline ) ) != 0 ) {
216 DBGC ( image, "EFIIMAGE %s could not install FDT: %s\n",
217 image->name, strerror ( rc ) );
218 goto err_fdt_install;
219 }
220
221 /* Create device path for image */
222 path = efi_image_path ( exec, snpdev->path );
223 if ( ! path ) {
224 DBGC ( image, "EFIIMAGE %s could not create device path\n",
225 image->name );
226 rc = -ENOMEM;
227 goto err_image_path;
228 }
229
230 /* Create command line for image */
231 cmdline = efi_image_cmdline ( image );
232 if ( ! cmdline ) {
233 DBGC ( image, "EFIIMAGE %s could not create command line\n",
234 image->name );
235 rc = -ENOMEM;
236 goto err_cmdline;
237 }
238
239 /* Install shim special handling if applicable */
240 if ( shim &&
241 ( ( rc = efi_shim_install ( shim, device, &cmdline ) ) != 0 ) ) {
242 DBGC ( image, "EFIIMAGE %s could not install shim handling: "
243 "%s\n", image->name, strerror ( rc ) );
244 goto err_shim_install;
245 }
246
247 /* Attempt loading image
248 *
249 * LoadImage() does not (allegedly) modify the image content,
250 * but requires a non-const pointer to SourceBuffer. We
251 * therefore use the .rwdata field rather than .data.
252 */
253 handle = NULL;
254 if ( ( efirc = bs->LoadImage ( FALSE, efi_image_handle, path,
255 exec->rwdata, exec->len,
256 &handle ) ) != 0 ) {
257 /* Not an EFI image */
258 rc = -EEFI_LOAD ( efirc );
259 DBGC ( image, "EFIIMAGE %s could not load: %s\n",
260 image->name, strerror ( rc ) );
261 if ( efirc == EFI_SECURITY_VIOLATION ) {
262 goto err_load_image_security_violation;
263 } else {
264 goto err_load_image;
265 }
266 }
267
268 /* Get the loaded image protocol for the newly loaded image */
269 if ( ( rc = efi_open ( handle, &efi_loaded_image_protocol_guid,
270 &loaded ) ) != 0 ) {
271 /* Should never happen */
272 goto err_open_protocol;
273 }
274
275 /* Some EFI 1.10 implementations seem not to fill in DeviceHandle */
276 if ( loaded->DeviceHandle == NULL ) {
277 DBGC ( image, "EFIIMAGE %s filling in missing DeviceHandle\n",
278 image->name );
279 loaded->DeviceHandle = device;
280 }
281
282 /* Sanity checks */
283 assert ( loaded->ParentHandle == efi_image_handle );
284 assert ( loaded->DeviceHandle == device );
285 assert ( loaded->LoadOptionsSize == 0 );
286 assert ( loaded->LoadOptions == NULL );
287
288 /* Record image code type */
289 type = loaded->ImageCodeType;
290
291 /* Set command line */
292 loaded->LoadOptions = cmdline;
293 loaded->LoadOptionsSize =
294 ( ( wcslen ( cmdline ) + 1 /* NUL */ ) * sizeof ( wchar_t ) );
295
296 /* Release network devices for use via SNP */
297 efi_snp_release();
298
299 /* Wrap calls made by the loaded image (for debugging) */
300 efi_wrap_image ( handle );
301
302 /* Reset console since image will probably use it */
303 console_reset();
304
305 /* Assume that image may cause SNP device to be removed */
306 snpdev = NULL;
307
308 /* Start the image */
309 if ( ( efirc = bs->StartImage ( handle, NULL, NULL ) ) != 0 ) {
310 rc = -EEFI_START ( efirc );
311 DBGC ( image, "EFIIMAGE %s could not start (or returned with "
312 "error): %s\n", image->name, strerror ( rc ) );
313 goto err_start_image;
314 }
315
316 /* If image was a driver, connect it up to anything available */
317 if ( type == EfiBootServicesCode ) {
318 DBGC ( image, "EFIIMAGE %s connecting drivers\n", image->name );
319 efi_driver_reconnect_all();
320 }
321
322 /* Success */
323 rc = 0;
324
325 err_start_image:
326 efi_unwrap();
327 efi_snp_claim();
328 err_open_protocol:
329 /* If there was no error, then the image must have been
330 * started and returned successfully. It either unloaded
331 * itself, or it intended to remain loaded (e.g. it was a
332 * driver). We therefore do not unload successful images.
333 *
334 * If there was an error, attempt to unload the image. This
335 * may not work. In particular, there is no way to tell
336 * whether an error returned from StartImage() was due to
337 * being unable to start the image (in which case we probably
338 * should call UnloadImage()), or due to the image itself
339 * returning an error (in which case we probably should not
340 * call UnloadImage()). We therefore ignore any failures from
341 * the UnloadImage() call itself.
342 */
343 err_load_image_security_violation:
344 if ( rc != 0 )
345 bs->UnloadImage ( handle );
346 err_load_image:
347 if ( shim )
348 efi_shim_uninstall();
349 err_shim_install:
350 free ( cmdline );
351 err_cmdline:
352 free ( path );
353 err_image_path:
354 efi_fdt_uninstall();
355 err_fdt_install:
356 efi_download_uninstall ( device );
357 err_download_install:
358 efi_pxe_uninstall ( device );
359 err_pxe_install:
360 efi_file_uninstall ( device );
361 err_file_install:
362 unregister_image ( image );
363 err_register_image:
364 image->flags ^= toggle;
365 err_no_snpdev:
366 return rc;
367}
EFI_STATUS
RETURN_STATUS EFI_STATUS
Function return status for EFI API.
Definition UefiBaseType.h:32
EFI_MEMORY_TYPE
EFI_MEMORY_TYPE
Enumeration of memory types introduced in UEFI.
Definition UefiMultiPhase.h:41
EfiBootServicesCode
@ EfiBootServicesCode
The code portions of a loaded Boot Services Driver.
Definition UefiMultiPhase.h:59
rc
struct arbelprm_rc_send_wqe rc
Definition arbel.h:3
assert
#define assert(condition)
Assert a condition at run-time.
Definition assert.h:50
efi_download_uninstall
void efi_download_uninstall(EFI_HANDLE handle)
Uninstall iPXE download protocol.
Definition efi_download.c:237
efi_download_install
int efi_download_install(EFI_HANDLE handle)
Install iPXE download protocol.
Definition efi_download.c:212
efi_driver_reconnect_all
void efi_driver_reconnect_all(void)
Reconnect original EFI drivers to all possible devices.
Definition efi_driver.c:659
efi_file_install
int efi_file_install(EFI_HANDLE handle)
Install EFI simple file system protocol.
Definition efi_file.c:1116
efi_file_uninstall
void efi_file_uninstall(EFI_HANDLE handle)
Uninstall EFI simple file system protocol.
Definition efi_file.c:1212
efi_loaded_image_protocol_guid
EFI_GUID efi_loaded_image_protocol_guid
Loaded image protocol GUID.
Definition efi_guid.c:273
efi_fdt_uninstall
__weak int efi_fdt_uninstall(void)
Uninstall EFI Flattened Device Tree table (when no FDT support is present)
Definition efi_image.c:143
efi_fdt_install
__weak int efi_fdt_install(const char *cmdline __unused)
Install EFI Flattened Device Tree table (when no FDT support is present)
Definition efi_image.c:134
EEFI_LOAD
#define EEFI_LOAD(efirc)
Definition efi_image.c:56
efi_image_cmdline
static wchar_t * efi_image_cmdline(struct image *image)
Create command line for image.
Definition efi_image.c:115
efi_image_path
static EFI_DEVICE_PATH_PROTOCOL * efi_image_path(struct image *image, EFI_DEVICE_PATH_PROTOCOL *parent)
Create device path for image.
Definition efi_image.c:73
EEFI_START
#define EEFI_START(efirc)
Definition efi_image.c:61
efi_can_load
static int efi_can_load(struct image *image)
Check if EFI image can be loaded directly.
Definition efi_image.h:23
efi_image_handle
EFI_HANDLE efi_image_handle
Image handle passed to entry point.
Definition efi_init.c:36
efi_pxe_uninstall
void efi_pxe_uninstall(EFI_HANDLE handle)
Uninstall PXE base code protocol.
Definition efi_pxe.c:1632
efi_pxe_install
int efi_pxe_install(EFI_HANDLE handle, struct net_device *netdev)
Install PXE base code protocol.
Definition efi_pxe.c:1549
efi_shim_uninstall
void efi_shim_uninstall(void)
Uninstall UEFI shim special handling.
Definition efi_shim.c:375
efi_shim_install
int efi_shim_install(struct image *shim, EFI_HANDLE handle, wchar_t **cmdline)
Install UEFI shim special handling.
Definition efi_shim.c:341
last_opened_snpdev
struct efi_snp_device * last_opened_snpdev(void)
Get most recently opened SNP device.
Definition efi_snp.c:2119
efi_snp_claim
static void efi_snp_claim(void)
Claim network devices for use by iPXE.
Definition efi_snp.h:92
efi_snp_release
static void efi_snp_release(void)
Release network devices for use via SNP.
Definition efi_snp.h:100
efi_unwrap
void efi_unwrap(void)
Remove boot services table wrapper.
Definition efi_wrap.c:1543
efi_wrap_image
void efi_wrap_image(EFI_HANDLE handle)
Wrap calls made by a newly loaded image.
Definition efi_wrap.c:1567
type
uint32_t type
Operating system type.
Definition ena.h:1
DBGC
#define DBGC(...)
Definition compiler.h:505
ENOMEM
#define ENOMEM
Not enough space.
Definition errno.h:535
ENODEV
#define ENODEV
No such device.
Definition errno.h:510
unregister_image
void unregister_image(struct image *image)
Unregister executable image.
Definition image.c:358
find_image_tag
struct image * find_image_tag(struct image_tag *tag)
Find image by tag.
Definition image.c:393
register_image
int register_image(struct image *image)
Register executable image.
Definition image.c:315
IMAGE_HIDDEN
#define IMAGE_HIDDEN
Image will be hidden from enumeration.
Definition image.h:86
console_reset
static void console_reset(void)
Reset console.
Definition console.h:215
efi_open
#define efi_open(handle, protocol, interface)
Open protocol for ephemeral use.
Definition efi.h:444
EFI_HANDLE
#define EFI_HANDLE
Definition efi.h:53
efi_systab
EFI_SYSTEM_TABLE * efi_systab
handle
uint16_t handle
Handle.
Definition smbios.h:5
free
static void(* free)(struct refcnt *refcnt))
Definition refcnt.h:55
shim
int shim(struct image *image, int require_loader, int allow_pxe, int allow_sbat)
Set shim image.
Definition shimmgmt.c:46
strerror
char * strerror(int errno)
Retrieve string representation of error number.
Definition strerror.c:79
EFI_BOOT_SERVICES
EFI Boot Services Table.
Definition UefiSpec.h:1931
EFI_BOOT_SERVICES::StartImage
EFI_IMAGE_START StartImage
Definition UefiSpec.h:1979
EFI_BOOT_SERVICES::UnloadImage
EFI_IMAGE_UNLOAD UnloadImage
Definition UefiSpec.h:1981
EFI_BOOT_SERVICES::LoadImage
EFI_IMAGE_LOAD LoadImage
Definition UefiSpec.h:1978
EFI_LOADED_IMAGE_PROTOCOL
Can be used on any image handle to obtain information about the loaded image.
Definition LoadedImage.h:46
EFI_LOADED_IMAGE_PROTOCOL::LoadOptions
VOID * LoadOptions
A pointer to the image's binary load options.
Definition LoadedImage.h:65
EFI_LOADED_IMAGE_PROTOCOL::DeviceHandle
EFI_HANDLE DeviceHandle
The device handle that the EFI Image was loaded from.
Definition LoadedImage.h:56
EFI_LOADED_IMAGE_PROTOCOL::LoadOptionsSize
UINT32 LoadOptionsSize
The size in bytes of LoadOptions.
Definition LoadedImage.h:64
EFI_LOADED_IMAGE_PROTOCOL::ImageCodeType
EFI_MEMORY_TYPE ImageCodeType
The memory type that the code sections were loaded as.
Definition LoadedImage.h:72
EFI_LOADED_IMAGE_PROTOCOL::ParentHandle
EFI_HANDLE ParentHandle
Parent image's image handle.
Definition LoadedImage.h:49
device
A hardware device.
Definition device.h:77
efi_snp_device
An SNP device.
Definition efi_snp.h:29
efi_snp_device::handle
EFI_HANDLE handle
EFI device handle.
Definition efi_snp.h:37
efi_snp_device::path
EFI_DEVICE_PATH_PROTOCOL * path
The device path.
Definition efi_snp.h:79
efi_snp_device::netdev
struct net_device * netdev
The underlying iPXE network device.
Definition efi_snp.h:33
image::flags
unsigned int flags
Flags.
Definition image.h:40
image::len
size_t len
Length of raw file image.
Definition image.h:56
image::rwdata
void * rwdata
Writable data.
Definition image.h:53
FALSE
#define FALSE
Definition tlan.h:45
wcslen
size_t wcslen(const wchar_t *string)
Calculate length of wide-character string.
Definition wchar.c:57

References assert, cmdline, image::cmdline, console_reset(), DBGC, EFI_LOADED_IMAGE_PROTOCOL::DeviceHandle, EEFI_LOAD, EEFI_START, efi_can_load(), efi_download_install(), efi_download_uninstall(), efi_driver_reconnect_all(), efi_fdt_install(), efi_fdt_uninstall(), efi_file_install(), efi_file_uninstall(), EFI_HANDLE, efi_image_cmdline(), efi_image_handle, efi_image_path(), efi_loaded_image_protocol_guid, efi_open, efi_pxe_install(), efi_pxe_uninstall(), EFI_SECURITY_VIOLATION, efi_shim_install(), efi_shim_uninstall(), efi_snp_claim(), efi_snp_release(), efi_systab, efi_unwrap(), efi_wrap_image(), EfiBootServicesCode, ENODEV, ENOMEM, FALSE, find_image_tag(), image::flags, free, efi_snp_device::handle, handle, IMAGE_HIDDEN, EFI_LOADED_IMAGE_PROTOCOL::ImageCodeType, last_opened_snpdev(), image::len, EFI_BOOT_SERVICES::LoadImage, EFI_LOADED_IMAGE_PROTOCOL::LoadOptions, EFI_LOADED_IMAGE_PROTOCOL::LoadOptionsSize, image::name, efi_snp_device::netdev, NULL, EFI_LOADED_IMAGE_PROTOCOL::ParentHandle, efi_snp_device::path, rc, register_image(), image::rwdata, shim(), EFI_BOOT_SERVICES::StartImage, strerror(), type, EFI_BOOT_SERVICES::UnloadImage, unregister_image(), and wcslen().

Referenced by __image_type().

◆ efi_image_probe()

int efi_image_probe ( struct image * image)
static

Probe EFI image.

Parameters
imageEFI file
Return values
rcReturn status code

Definition at line 375 of file efi_image.c.

375 {
376 EFI_BOOT_SERVICES *bs = efi_systab->BootServices;
377 static EFI_DEVICE_PATH_PROTOCOL empty_path = {
378 .Type = END_DEVICE_PATH_TYPE,
379 .SubType = END_ENTIRE_DEVICE_PATH_SUBTYPE,
380 .Length[0] = sizeof ( empty_path ),
381 };
382 EFI_HANDLE handle;
383 EFI_STATUS efirc;
384 int rc;
385
386 /* Attempt loading image
387 *
388 * LoadImage() does not (allegedly) modify the image content,
389 * but requires a non-const pointer to SourceBuffer. We
390 * therefore use the .rwdata field rather than .data.
391 */
392 handle = NULL;
393 if ( ( efirc = bs->LoadImage ( FALSE, efi_image_handle, &empty_path,
394 image->rwdata, image->len,
395 &handle ) ) != 0 ) {
396 /* Not an EFI image */
397 rc = -EEFI_LOAD ( efirc );
398 DBGC ( image, "EFIIMAGE %s could not load: %s\n",
399 image->name, strerror ( rc ) );
400 if ( efirc == EFI_SECURITY_VIOLATION ) {
401 goto err_load_image_security_violation;
402 } else {
403 goto err_load_image;
404 }
405 }
406
407 /* Unload the image. We can't leave it loaded, because we
408 * have no "unload" operation.
409 */
410 bs->UnloadImage ( handle );
411
412 return 0;
413
414 err_load_image_security_violation:
415 bs->UnloadImage ( handle );
416 err_load_image:
417 return rc;
418}
END_ENTIRE_DEVICE_PATH_SUBTYPE
#define END_ENTIRE_DEVICE_PATH_SUBTYPE
Definition DevicePath.h:1395
END_DEVICE_PATH_TYPE
#define END_DEVICE_PATH_TYPE
Definition DevicePath.h:1394

References DBGC, EEFI_LOAD, EFI_HANDLE, efi_image_handle, EFI_SECURITY_VIOLATION, efi_systab, END_DEVICE_PATH_TYPE, END_ENTIRE_DEVICE_PATH_SUBTYPE, FALSE, handle, image::len, EFI_BOOT_SERVICES::LoadImage, image::name, NULL, rc, image::rwdata, strerror(), and EFI_BOOT_SERVICES::UnloadImage.

Referenced by __image_type().

◆ efi_pe_image_probe()

int efi_pe_image_probe ( struct image * image)
static

Probe EFI PE image.

Parameters
imageEFI file
Return values
rcReturn status code

The extremely broken UEFI Secure Boot model provides no way for us to unambiguously determine that a valid EFI executable image was rejected by LoadImage() because it failed signature verification. We must therefore use heuristics to guess whether not an image that was rejected by LoadImage() could still be loaded via a separate PE loader such as the UEFI shim.

Definition at line 433 of file efi_image.c.

433 {
434 const UINT16 magic = ( ( sizeof ( UINTN ) == sizeof ( uint32_t ) ) ?
435 EFI_IMAGE_NT_OPTIONAL_HDR32_MAGIC :
436 EFI_IMAGE_NT_OPTIONAL_HDR64_MAGIC );
437 const EFI_IMAGE_DOS_HEADER *dos;
438 const EFI_IMAGE_OPTIONAL_HEADER_UNION *pe;
439
440 /* Check for existence of DOS header */
441 if ( image->len < sizeof ( *dos ) ) {
442 DBGC ( image, "EFIIMAGE %s too short for DOS header\n",
443 image->name );
444 return -ENOEXEC;
445 }
446 dos = image->data;
447 if ( dos->e_magic != EFI_IMAGE_DOS_SIGNATURE ) {
448 DBGC ( image, "EFIIMAGE %s missing MZ signature\n",
449 image->name );
450 return -ENOEXEC;
451 }
452
453 /* Check for existence of PE header */
454 if ( ( image->len < dos->e_lfanew ) ||
455 ( ( image->len - dos->e_lfanew ) < sizeof ( *pe ) ) ) {
456 DBGC ( image, "EFIIMAGE %s too short for PE header\n",
457 image->name );
458 return -ENOEXEC;
459 }
460 pe = ( image->data + dos->e_lfanew );
461 if ( pe->Pe32.Signature != EFI_IMAGE_NT_SIGNATURE ) {
462 DBGC ( image, "EFIIMAGE %s missing PE signature\n",
463 image->name );
464 return -ENOEXEC;
465 }
466
467 /* Check PE header magic */
468 if ( pe->Pe32.OptionalHeader.Magic != magic ) {
469 DBGC ( image, "EFIIMAGE %s incorrect magic %04x\n",
470 image->name, pe->Pe32.OptionalHeader.Magic );
471 return -ENOEXEC;
472 }
473
474 return 0;
475}
UINT16
unsigned short UINT16
2-byte unsigned value.
Definition ProcessorBind.h:101
UINTN
UINT64 UINTN
Unsigned value of native width.
Definition ProcessorBind.h:115
EFI_IMAGE_NT_SIGNATURE
#define EFI_IMAGE_NT_SIGNATURE
Definition PeImage.h:53
EFI_IMAGE_NT_OPTIONAL_HDR32_MAGIC
#define EFI_IMAGE_NT_OPTIONAL_HDR32_MAGIC
Definition PeImage.h:145
EFI_IMAGE_DOS_SIGNATURE
#define EFI_IMAGE_DOS_SIGNATURE
Definition PeImage.h:50
EFI_IMAGE_NT_OPTIONAL_HDR64_MAGIC
#define EFI_IMAGE_NT_OPTIONAL_HDR64_MAGIC
Definition PeImage.h:196
uint32_t
unsigned int uint32_t
Definition stdint.h:12
magic
uint16_t magic
Magic signature.
Definition bzimage.h:1
ENOEXEC
#define ENOEXEC
Exec format error.
Definition errno.h:520
EFI_IMAGE_DOS_HEADER
PE images can start with an optional DOS header, so if an image is run under DOS it can print an erro...
Definition PeImage.h:59
EFI_IMAGE_DOS_HEADER::e_lfanew
UINT32 e_lfanew
File address of new exe header.
Definition PeImage.h:78
EFI_IMAGE_DOS_HEADER::e_magic
UINT16 e_magic
Magic number.
Definition PeImage.h:60
EFI_IMAGE_NT_HEADERS32::OptionalHeader
EFI_IMAGE_OPTIONAL_HEADER32 OptionalHeader
Definition PeImage.h:247
EFI_IMAGE_NT_HEADERS32::Signature
UINT32 Signature
Definition PeImage.h:245
EFI_IMAGE_OPTIONAL_HEADER32::Magic
UINT16 Magic
Standard fields.
Definition PeImage.h:154
image::data
const void * data
Read-only data.
Definition image.h:51
EFI_IMAGE_OPTIONAL_HEADER_UNION
Union of PE32, PE32+, and TE headers.
Definition PeImage.h:805
EFI_IMAGE_OPTIONAL_HEADER_UNION::Pe32
EFI_IMAGE_NT_HEADERS32 Pe32
Definition PeImage.h:806

References image::data, DBGC, EFI_IMAGE_DOS_HEADER::e_lfanew, EFI_IMAGE_DOS_HEADER::e_magic, EFI_IMAGE_DOS_SIGNATURE, EFI_IMAGE_NT_OPTIONAL_HDR32_MAGIC, EFI_IMAGE_NT_OPTIONAL_HDR64_MAGIC, EFI_IMAGE_NT_SIGNATURE, ENOEXEC, image::len, EFI_IMAGE_OPTIONAL_HEADER32::Magic, magic, image::name, EFI_IMAGE_NT_HEADERS32::OptionalHeader, EFI_IMAGE_OPTIONAL_HEADER_UNION::Pe32, and EFI_IMAGE_NT_HEADERS32::Signature.

Referenced by __image_type().

◆ __image_type()

struct image_type efi_image_type[] __image_type ( PROBE_NORMAL )

EFI image types.

References __image_type, efi_image_exec(), efi_image_probe(), efi_pe_image_probe(), and PROBE_NORMAL.

Generated by doxygen 1.14.0