Home Explore Help
Sign In
samsung-sm8650
/
android_kernel_samsung_sm8650_ksu
2
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 9e449c3f83
Branches Tags
android_kernel_...
/
arch
/
powerpc
/
platforms
/
powernv
/
opal-secvar.c

opal-secvar.c 2.6 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140 
  1. // SPDX-License-Identifier: GPL-2.0
    2. 

  2. /*
    3. 

  3.  * PowerNV code for secure variables
    4. 

  4.  *
    5. 

  5.  * Copyright (C) 2019 IBM Corporation
    6. 

  6.  * Author: Claudio Carvalho
    7. 

  7.  *         Nayna Jain
    8. 

  8.  *
    9. 

  9.  * APIs to access secure variables managed by OPAL.
    10. 

  10.  */
    11. 

  11. 

  12. #define pr_fmt(fmt) "secvar: "fmt
    13. 

  13. 

  14. #include <linux/types.h>
    15. 

  15. #include <linux/platform_device.h>
    16. 

  16. #include <linux/of_platform.h>
    17. 

  17. #include <asm/opal.h>
    18. 

  18. #include <asm/secvar.h>
    19. 

  19. #include <asm/secure_boot.h>
    20. 

  20. 

  21. static int opal_status_to_err(int rc)
    22. 

  22. {
    23. 

  23. 	int err;
    24. 

  24. 

  25. 	switch (rc) {
    26. 

  26. 	case OPAL_SUCCESS:
    27. 

  27. 		err = 0;
    28. 

  28. 		break;
    29. 

  29. 	case OPAL_UNSUPPORTED:
    30. 

  30. 		err = -ENXIO;
    31. 

  31. 		break;
    32. 

  32. 	case OPAL_PARAMETER:
    33. 

  33. 		err = -EINVAL;
    34. 

  34. 		break;
    35. 

  35. 	case OPAL_RESOURCE:
    36. 

  36. 		err = -ENOSPC;
    37. 

  37. 		break;
    38. 

  38. 	case OPAL_HARDWARE:
    39. 

  39. 		err = -EIO;
    40. 

  40. 		break;
    41. 

  41. 	case OPAL_NO_MEM:
    42. 

  42. 		err = -ENOMEM;
    43. 

  43. 		break;
    44. 

  44. 	case OPAL_EMPTY:
    45. 

  45. 		err = -ENOENT;
    46. 

  46. 		break;
    47. 

  47. 	case OPAL_PARTIAL:
    48. 

  48. 		err = -EFBIG;
    49. 

  49. 		break;
    50. 

  50. 	default:
    51. 

  51. 		err = -EINVAL;
    52. 

  52. 	}
    53. 

  53. 

  54. 	return err;
    55. 

  55. }
    56. 

  56. 

  57. static int opal_get_variable(const char *key, uint64_t ksize,
    58. 

  58. 			     u8 *data, uint64_t *dsize)
    59. 

  59. {
    60. 

  60. 	int rc;
    61. 

  61. 

  62. 	if (!key || !dsize)
    63. 

  63. 		return -EINVAL;
    64. 

  64. 

  65. 	*dsize = cpu_to_be64(*dsize);
    66. 

  66. 

  67. 	rc = opal_secvar_get(key, ksize, data, dsize);
    68. 

  68. 

  69. 	*dsize = be64_to_cpu(*dsize);
    70. 

  70. 

  71. 	return opal_status_to_err(rc);
    72. 

  72. }
    73. 

  73. 

  74. static int opal_get_next_variable(const char *key, uint64_t *keylen,
    75. 

  75. 				  uint64_t keybufsize)
    76. 

  76. {
    77. 

  77. 	int rc;
    78. 

  78. 

  79. 	if (!key || !keylen)
    80. 

  80. 		return -EINVAL;
    81. 

  81. 

  82. 	*keylen = cpu_to_be64(*keylen);
    83. 

  83. 

  84. 	rc = opal_secvar_get_next(key, keylen, keybufsize);
    85. 

  85. 

  86. 	*keylen = be64_to_cpu(*keylen);
    87. 

  87. 

  88. 	return opal_status_to_err(rc);
    89. 

  89. }
    90. 

  90. 

  91. static int opal_set_variable(const char *key, uint64_t ksize, u8 *data,
    92. 

  92. 			     uint64_t dsize)
    93. 

  93. {
    94. 

  94. 	int rc;
    95. 

  95. 

  96. 	if (!key || !data)
    97. 

  97. 		return -EINVAL;
    98. 

  98. 

  99. 	rc = opal_secvar_enqueue_update(key, ksize, data, dsize);
    100. 

  100. 

  101. 	return opal_status_to_err(rc);
    102. 

  102. }
    103. 

  103. 

  104. static const struct secvar_operations opal_secvar_ops = {
    105. 

  105. 	.get = opal_get_variable,
    106. 

  106. 	.get_next = opal_get_next_variable,
    107. 

  107. 	.set = opal_set_variable,
    108. 

  108. };
    109. 

  109. 

  110. static int opal_secvar_probe(struct platform_device *pdev)
    111. 

  111. {
    112. 

  112. 	if (!opal_check_token(OPAL_SECVAR_GET)
    113. 

  113. 			|| !opal_check_token(OPAL_SECVAR_GET_NEXT)
    114. 

  114. 			|| !opal_check_token(OPAL_SECVAR_ENQUEUE_UPDATE)) {
    115. 

  115. 		pr_err("OPAL doesn't support secure variables\n");
    116. 

  116. 		return -ENODEV;
    117. 

  117. 	}
    118. 

  118. 

  119. 	set_secvar_ops(&opal_secvar_ops);
    120. 

  120. 

  121. 	return 0;
    122. 

  122. }
    123. 

  123. 

  124. static const struct of_device_id opal_secvar_match[] = {
    125. 

  125. 	{ .compatible = "ibm,secvar-backend",},
    126. 

  126. 	{},
    127. 

  127. };
    128. 

  128. 

  129. static struct platform_driver opal_secvar_driver = {
    130. 

  130. 	.driver = {
    131. 

  131. 		.name = "secvar",
    132. 

  132. 		.of_match_table = opal_secvar_match,
    133. 

  133. 	},
    134. 

  134. };
    135. 

  135. 

  136. static int __init opal_secvar_init(void)
    137. 

  137. {
    138. 

  138. 	return platform_driver_probe(&opal_secvar_driver, opal_secvar_probe);
    139. 

  139. }
    140. 

  140. device_initcall(opal_secvar_init);
    141.