iPXE
Data Structures | Macros | Functions | Variables
hidemem.c File Reference
#include <string.h>
#include <assert.h>
#include <realmode.h>
#include <biosint.h>
#include <basemem.h>
#include <fakee820.h>
#include <ipxe/init.h>
#include <ipxe/io.h>
#include <ipxe/uheap.h>
#include <ipxe/memmap.h>

Go to the source code of this file.

Data Structures

struct  hidden_region
 A hidden region of iPXE. More...

Macros

#define FAKE_E820   0
 Set to true if you want to test a fake E820 map.
#define ALIGN_HIDDEN   4096 /* 4kB page alignment should be enough */
 Alignment for hidden memory regions.
#define hidemem_base   __use_data16 ( hidemem_base )
#define hidemem_umalloc   __use_data16 ( hidemem_umalloc )
#define hidemem_textdata   __use_data16 ( hidemem_textdata )
#define int15_vector   __use_text16 ( int15_vector )
#define int15_intercept_flag   __use_text16 ( int15_intercept_flag )
#define _text16_memsz   ABS_VALUE ( _text16_memsz )
#define _data16_memsz   ABS_VALUE ( _data16_memsz )

Functions

 FILE_LICENCE (GPL2_OR_LATER_OR_UBDL)
struct hidden_region __data16 (hidemem_base)
 Hidden base memory.
struct hidden_region __data16 (hidemem_umalloc)
 Hidden umalloc memory.
struct hidden_region __data16 (hidemem_textdata)
 Hidden text memory.
void int15 ()
 Assembly routine in e820mangler.S.
struct segoff __text16 (int15_vector)
 Vector for storing original INT 15 handler.
uint8_t __text16 (int15_intercept_flag)
 INT 15 interception flag.
size_t ABS_SYMBOL (_text16_memsz)
size_t ABS_SYMBOL (_data16_memsz)
static void hide_region (struct hidden_region *region, physaddr_t start, physaddr_t end)
 Hide region of memory from system memory map.
void hide_basemem (void)
 Hide used base memory.
void hide_textdata (void)
 Hide .text and .data.
static void int15_sync (void)
 Synchronise in-use regions with the externally visible system memory map.
void int15_intercept (int intercept)
 Set INT 15 interception flag.
static void hide_etherboot (void)
 Hide Etherboot.
static void unhide_etherboot (int flags __unused)
 Unhide Etherboot.
struct startup_fn hide_etherboot_startup_fn __startup_fn (STARTUP_EARLY)
 Hide Etherboot startup function.
 PROVIDE_MEMMAP (int15, memmap_sync, int15_sync)

Variables

char _textdata []
char _etextdata []

Macro Definition Documentation

◆ FAKE_E820

#define FAKE_E820   0

Set to true if you want to test a fake E820 map.

Definition at line 37 of file hidemem.c.

Referenced by hide_etherboot(), and unhide_etherboot().

◆ ALIGN_HIDDEN

#define ALIGN_HIDDEN   4096 /* 4kB page alignment should be enough */

Alignment for hidden memory regions.

Definition at line 40 of file hidemem.c.

Referenced by hide_region().

◆ hidemem_base

#define hidemem_base   __use_data16 ( hidemem_base )

Definition at line 60 of file hidemem.c.

Referenced by __data16(), and hide_basemem().

◆ hidemem_umalloc

#define hidemem_umalloc   __use_data16 ( hidemem_umalloc )

Definition at line 64 of file hidemem.c.

Referenced by __data16(), and int15_sync().

◆ hidemem_textdata

#define hidemem_textdata   __use_data16 ( hidemem_textdata )

Definition at line 68 of file hidemem.c.

Referenced by __data16(), and hide_textdata().

◆ int15_vector

#define int15_vector   __use_text16 ( int15_vector )

Definition at line 75 of file hidemem.c.

Referenced by __text16(), hide_etherboot(), and unhide_etherboot().

◆ int15_intercept_flag

#define int15_intercept_flag   __use_text16 ( int15_intercept_flag )

Definition at line 79 of file hidemem.c.

Referenced by __text16(), and int15_intercept().

◆ _text16_memsz

#define _text16_memsz   ABS_VALUE ( _text16_memsz )

Definition at line 85 of file hidemem.c.

Referenced by ABS_SYMBOL(), hide_etherboot(), and pxe_start_nbp().

◆ _data16_memsz

#define _data16_memsz   ABS_VALUE ( _data16_memsz )

Definition at line 87 of file hidemem.c.

Referenced by ABS_SYMBOL(), hide_etherboot(), and pxe_start_nbp().

Function Documentation

◆ FILE_LICENCE()

FILE_LICENCE ( GPL2_OR_LATER_OR_UBDL )

◆ __data16() [1/3]

struct hidden_region __data16 ( hidemem_base )
extern

Hidden base memory.

References __data16, and hidemem_base.

◆ __data16() [2/3]

struct hidden_region __data16 ( hidemem_umalloc )
extern

Hidden umalloc memory.

References __data16, and hidemem_umalloc.

◆ __data16() [3/3]

struct hidden_region __data16 ( hidemem_textdata )
extern

Hidden text memory.

References __data16, and hidemem_textdata.

◆ int15()

void int15 ( )
extern

Assembly routine in e820mangler.S.

Referenced by hide_etherboot(), PROVIDE_MEMMAP(), PROVIDE_MEMMAP(), and unhide_etherboot().

◆ __text16() [1/2]

struct segoff __text16 ( int15_vector )
extern

Vector for storing original INT 15 handler.

References __text16, and int15_vector.

◆ __text16() [2/2]

uint8_t __text16 ( int15_intercept_flag )
extern

INT 15 interception flag.

References int15_intercept_flag.

◆ ABS_SYMBOL() [1/2]

size_t ABS_SYMBOL ( _text16_memsz )
extern

References _text16_memsz.

◆ ABS_SYMBOL() [2/2]

size_t ABS_SYMBOL ( _data16_memsz )
extern

References _data16_memsz.

◆ hide_region()

void hide_region ( struct hidden_region * region,
physaddr_t start,
physaddr_t end )
static

Hide region of memory from system memory map.

Parameters
regionHidden memory region
startStart of region
endEnd of region

Definition at line 96 of file hidemem.c.

97 {
98
99 /* Some operating systems get a nasty shock if a region of the
100 * E820 map seems to start on a non-page boundary. Make life
101 * safer by rounding out our edited region.
102 */
103 region->start = ( start & ~( ALIGN_HIDDEN - 1 ) );
104 region->end = ( ( end + ALIGN_HIDDEN - 1 ) & ~( ALIGN_HIDDEN - 1 ) );
105
106 DBG ( "Hiding region [%llx,%llx)\n", region->start, region->end );
107}
DBG
#define DBG(...)
Print a debugging message.
Definition compiler.h:498
start
uint32_t start
Starting offset.
Definition netvsc.h:1
ALIGN_HIDDEN
#define ALIGN_HIDDEN
Alignment for hidden memory regions.
Definition hidemem.c:40
end
uint32_t end
Ending offset.
Definition netvsc.h:7
hidden_region::start
uint64_t start
Physical start address.
Definition hidemem.c:53
hidden_region::end
uint64_t end
Physical end address.
Definition hidemem.c:55

References ALIGN_HIDDEN, DBG, end, hidden_region::end, hidden_region::start, and start.

Referenced by hide_textdata(), and int15_sync().

◆ hide_basemem()

void hide_basemem ( void )

Hide used base memory.

Definition at line 113 of file hidemem.c.

113 {
114 /* Hide from the top of free base memory to 640kB. Don't use
115 * hide_region(), because we don't want this rounded to the
116 * nearest page boundary.
117 */
118 hidemem_base.start = ( get_fbms() * 1024 );
119}
get_fbms
static unsigned int get_fbms(void)
Read the BIOS free base memory counter.
Definition basemem.h:21
hidemem_base
#define hidemem_base
Definition hidemem.c:60

References get_fbms(), and hidemem_base.

Referenced by hide_etherboot(), and set_fbms().

◆ hide_textdata()

void hide_textdata ( void )

Hide .text and .data.

Definition at line 125 of file hidemem.c.

125 {
126 hide_region ( &hidemem_textdata, virt_to_phys ( _textdata ),
127 virt_to_phys ( _etextdata ) );
128}
hidemem_textdata
#define hidemem_textdata
Definition hidemem.c:68
hide_region
static void hide_region(struct hidden_region *region, physaddr_t start, physaddr_t end)
Hide region of memory from system memory map.
Definition hidemem.c:96
_textdata
char _textdata[]
_etextdata
char _etextdata[]

References _etextdata, _textdata, hide_region(), and hidemem_textdata.

Referenced by hide_etherboot().

◆ int15_sync()

void int15_sync ( void )
static

Synchronise in-use regions with the externally visible system memory map.

Definition at line 134 of file hidemem.c.

134 {
135 physaddr_t start;
136 physaddr_t end;
137
138 /* Besides our fixed base memory and textdata regions, we
139 * support hiding only a single in-use memory region (the
140 * umalloc region), which must be placed before the hidden
141 * textdata region (even if zero-length).
142 */
143 start = uheap_start;
144 end = uheap_end;
145 if ( start == end )
146 start = end = virt_to_phys ( _textdata );
147 hide_region ( &hidemem_umalloc, start, end );
148}
physaddr_t
unsigned long physaddr_t
Definition stdint.h:20
hidemem_umalloc
#define hidemem_umalloc
Definition hidemem.c:64
uheap_end
physaddr_t uheap_end
End of external heap.
Definition uheap.c:60
uheap_start
physaddr_t uheap_start
Start of external heap.
Definition uheap.c:57

References _textdata, end, hide_region(), hidemem_umalloc, start, uheap_end, and uheap_start.

Referenced by hide_etherboot(), and PROVIDE_MEMMAP().

◆ int15_intercept()

void int15_intercept ( int intercept)

Set INT 15 interception flag.

Parameters
interceptIntercept INT 15 calls to modify memory map

Definition at line 155 of file hidemem.c.

155 {
156
157 /* Set flag for INT 15 handler */
158 int15_intercept_flag = intercept;
159}
int15_intercept_flag
#define int15_intercept_flag
Definition hidemem.c:79

References int15_intercept_flag.

Referenced by int15_describe().

◆ hide_etherboot()

void hide_etherboot ( void )
static

Hide Etherboot.

Installs an INT 15 handler to edit Etherboot out of the memory map returned by the BIOS.

Definition at line 167 of file hidemem.c.

167 {
168 unsigned int rm_ds_top;
169 unsigned int rm_cs_top;
170 unsigned int fbms;
171
172 /* Dump memory map before mangling */
173 DBG ( "Hiding iPXE from system memory map\n" );
174 memmap_dump_all ( 1 );
175
176 /* Hook in fake E820 map, if we're testing one */
177 if ( FAKE_E820 ) {
178 DBG ( "Hooking in fake E820 map\n" );
179 fake_e820();
180 memmap_dump_all ( 1 );
181 }
182
183 /* Initialise the hidden regions */
184 hide_basemem();
185 hide_textdata();
186 int15_sync();
187
188 /* Some really moronic BIOSes bring up the PXE stack via the
189 * UNDI loader entry point and then don't bother to unload it
190 * before overwriting the code and data segments. If this
191 * happens, we really don't want to leave INT 15 hooked,
192 * because that will cause any loaded OS to die horribly as
193 * soon as it attempts to fetch the system memory map.
194 *
195 * We use a heuristic to guess whether or not we are being
196 * loaded sensibly.
197 */
198 rm_cs_top = ( ( ( rm_cs << 4 ) + _text16_memsz + 1024 - 1 ) >> 10 );
199 rm_ds_top = ( ( ( rm_ds << 4 ) + _data16_memsz + 1024 - 1 ) >> 10 );
200 fbms = get_fbms();
201 if ( ( rm_cs_top < fbms ) && ( rm_ds_top < fbms ) ) {
202 DBG ( "Detected potentially unsafe UNDI load at CS=%04x "
203 "DS=%04x FBMS=%dkB\n", rm_cs, rm_ds, fbms );
204 DBG ( "Disabling INT 15 memory hiding\n" );
205 return;
206 }
207
208 /* Hook INT 15 */
209 hook_bios_interrupt ( 0x15, ( intptr_t ) int15, &int15_vector );
210
211 /* Dump memory map after mangling */
212 DBG ( "Hidden iPXE from system memory map\n" );
213 memmap_dump_all ( 1 );
214}
intptr_t
unsigned long intptr_t
Definition stdint.h:21
hook_bios_interrupt
void hook_bios_interrupt(unsigned int interrupt, unsigned int handler, struct segoff *chain_vector)
Hook INT vector.
Definition biosint.c:25
fake_e820
void fake_e820(void)
Definition fakee820.c:64
hide_textdata
void hide_textdata(void)
Hide .text and .data.
Definition hidemem.c:125
int15
void int15()
Assembly routine in e820mangler.S.
hide_basemem
void hide_basemem(void)
Hide used base memory.
Definition hidemem.c:113
_text16_memsz
#define _text16_memsz
Definition hidemem.c:85
FAKE_E820
#define FAKE_E820
Set to true if you want to test a fake E820 map.
Definition hidemem.c:37
int15_sync
static void int15_sync(void)
Synchronise in-use regions with the externally visible system memory map.
Definition hidemem.c:134
_data16_memsz
#define _data16_memsz
Definition hidemem.c:87
int15_vector
#define int15_vector
Definition hidemem.c:75
memmap_dump_all
static void memmap_dump_all(int hide)
Dump system memory map (for debugging)
Definition memmap.h:216
rm_ds
#define rm_ds
Definition libkir.h:39
rm_cs
#define rm_cs
Definition libkir.h:38

References _data16_memsz, _text16_memsz, DBG, FAKE_E820, fake_e820(), get_fbms(), hide_basemem(), hide_textdata(), hook_bios_interrupt(), int15(), int15_sync(), int15_vector, memmap_dump_all(), rm_cs, and rm_ds.

Referenced by __startup_fn().

◆ unhide_etherboot()

void unhide_etherboot ( int flags __unused)
static

Unhide Etherboot.

Uninstalls the INT 15 handler installed by hide_etherboot(), if possible.

Definition at line 222 of file hidemem.c.

222 {
223 int rc;
224
225 /* If we have more than one hooked interrupt at this point, it
226 * means that some other vector is still hooked, in which case
227 * we can't safely unhook INT 15 because we need to keep our
228 * memory protected. (We expect there to be at least one
229 * hooked interrupt, because INT 15 itself is still hooked).
230 */
231 if ( hooked_bios_interrupts > 1 ) {
232 DBG ( "Cannot unhide: %d interrupt vectors still hooked\n",
233 hooked_bios_interrupts );
234 return;
235 }
236
237 /* Try to unhook INT 15 */
238 if ( ( rc = unhook_bios_interrupt ( 0x15, ( intptr_t ) int15,
239 &int15_vector ) ) != 0 ) {
240 DBG ( "Cannot unhook INT15: %s\n", strerror ( rc ) );
241 /* Leave it hooked; there's nothing else we can do,
242 * and it should be intrinsically safe (though
243 * wasteful of RAM).
244 */
245 }
246
247 /* Unhook fake E820 map, if used */
248 if ( FAKE_E820 )
249 unfake_e820();
250
251 /* Dump memory map after unhiding */
252 DBG ( "Unhidden iPXE from system memory map\n" );
253 memmap_dump_all ( 1 );
254}
rc
struct arbelprm_rc_send_wqe rc
Definition arbel.h:3
unhook_bios_interrupt
int unhook_bios_interrupt(unsigned int interrupt, unsigned int handler, struct segoff *chain_vector)
Unhook INT vector.
Definition biosint.c:70
hooked_bios_interrupts
#define hooked_bios_interrupts
Definition biosint.h:25
unfake_e820
void unfake_e820(void)
Definition fakee820.c:95
strerror
char * strerror(int errno)
Retrieve string representation of error number.
Definition strerror.c:79

References __unused, DBG, FAKE_E820, flags, hooked_bios_interrupts, int15(), int15_vector, memmap_dump_all(), rc, strerror(), unfake_e820(), and unhook_bios_interrupt().

Referenced by __startup_fn().

◆ __startup_fn()

struct startup_fn hide_etherboot_startup_fn __startup_fn ( STARTUP_EARLY )

Hide Etherboot startup function.

References __startup_fn, hide_etherboot(), STARTUP_EARLY, and unhide_etherboot().

◆ PROVIDE_MEMMAP()

PROVIDE_MEMMAP ( int15 ,
memmap_sync ,
int15_sync  )

References int15(), int15_sync(), and memmap_sync().

Variable Documentation

◆ _textdata

char _textdata[]
extern

◆ _etextdata

char _etextdata[]
extern
Generated by doxygen 1.14.0