UKI: add support for choosing between multiple device trees

[diogo-ivo]

In connection with the discussion in 1 this pull request implements a possible solution where further device trees are appended to the .dtb section and the stub tries to match the FW provided device tree with the ones present in the UKI. It also adds the necessary changes to ukify for it to be able to build such UKIs. The specification change can be found in 2.

[medhefgo]

This header is not provided by the compiler and therefore not guaranteed to be safe to use in freedstanding env.

[diogo-ivo]

OK, thank you for the review, I will use another header file then

[diogo-ivo]

On second thought, what should the approach here be? Should be32toh() be defined just for this purpose (just on this file) or should it go somewhere in src/fundamental?

[medhefgo]

Since it's the only user, you can keep it in the file and just define it with __builtin_bswap* directly. UEFI is little endian exclusively, so no point in dealing with the other case.

[medhefgo]

Suggested change

	while (true) {
	for (;;) {

[medhefgo]

Suggested change

	if (strcmp8(string_block + be32toh(*cursor++), "compatible") == 0)
	if (streq8(string_block + be32toh(*cursor++), "compatible"))

[medhefgo]

What are these numbers?

[diogo-ivo]

These numbers are for rounding up the cursor to the next word, since len can be any integer. However I can change how this is done if this is not so clear to see when looking at the code

[medhefgo]

We use uint_8* for raw byte access.

[diogo-ivo]

Noted, will fix

[medhefgo]

No matching dt is not an error here. You ought to log about bad dtbs, though: e.g. !IN_SET(EFI_SUCCESS, EFI_NOT_FOUND)

[diogo-ivo]

So the behavior here should be if(!IN_SET(err, EFI_SUCCESS, EFI_NOT_FOUND)) { log() }?

[medhefgo]

We generally use CamelCase for (new) structs.

[medhefgo]

Indentation is wrong.

[medhefgo]

Please assert input pointers.

[medhefgo]

Suggested change

	padding = b'\0' * (round_up(n, 8) - n) # pad to 64 bit alignment
	padding = bytes(round_up(n, 8) - n) # pad to 64 bit alignment

[poettering]

hmm, you area dereferencing an offset here that originates in untrusted data, no? that's no ok, you need to validate this against the size of the dtb object

[poettering]

also, alignment is weird here, the offset might not be 32bit aligned yet you just dereference the value

[diogo-ivo]

Yes, I will add these checks in the updated version

[poettering]

use UINT32_C() around the constant, since otherwise the constant is a bit weird, since the values is not expressible as a signed int, yet it is made one, and then converted back to unsigned

[poettering]

this lacks proper validation of the returned data, i.e. that the returned string is NUL terminated, that all the offsets fit in the dtb blob before we deref them, that we don#t do unaligned accesses and so on.

[poettering]

also this behaviour needs some documentation somwhere, i.e. sd-stub man page or so

[bluca]

I think we need a more generalized approach. Appending like this might work for DTBs, but I don't think it will work for command lines or other stuff that we want to make selectable among multiple options. We should find a way to use separate sections for each payload I think.

@medhefgo does the PE spec/tooling allow multiple sections with the same name?

[medhefgo]

@medhefgo does the PE spec/tooling allow multiple sections with the same name?

Theoretically, yes.

[diogo-ivo]

Is there an advantage to keeping the same section name or would it be possible to name the extra sections .dtb-* as well?

[bluca]

I think using the same name would be easier, as the definition doesn't need to change, the names are fixed and not dynamic, and appending doesn't need to care about current state

[medhefgo]

How big (roughly) is an average dtb and how many would typically be added to an image?

[diogo-ivo]

For the use case that we are targeting it would be something around 5 dtbs, each around 50 to 80 kB

[poettering]

@medhefgo does the PE spec/tooling allow multiple sections with the same name?

I'd prefer not to. the section name is such a nice identifier, let's maintain that as a unique handle. We could just say, that if multiple alternatives of specific sections shall be allowed, we define a clear algorithm how to generate section names from the "primary" section name plus some counter. i.e. take the section name, and suffix it with a decimal counter starting from 2. If this would be longer than 8ch then shorten the name before appending the suffix so that it fits.

Hence, for .initrd the next alternatives would be .initrd2, .initrd3, .initrd4, …, .initr65, … .init113, …

For .cmdline (which already is 8ch long), the alternative names would be .cmdlin2, .cmdlin3, .cmdlin4, …, .cmdli64, …, .cmdl113, …

you get the idea.

[bluca]

@medhefgo does the PE spec/tooling allow multiple sections with the same name?

I'd prefer not to. the section name is such a nice identifier, let's maintain that as a unique handle.

That's why I think it's nicer if the name is fixed, so that it's an easy and obvious api, no? It's what we already do for every other setting after all - eg: you add multiple ExecStart=, you don't add ExecStart1= ExecStart2= etc.

We could just say, that if multiple alternatives of specific sections shall be allowed, we define a clear algorithm how to generate section names from the "primary" section name plus some counter. i.e. take the section name, and suffix it with a decimal counter starting from 2. If this would be longer than 8ch then shorten the name before appending the suffix so that it fits.

Hence, for .initrd the next alternatives would be .initrd2, .initrd3, .initrd4, …, .initr65, … .init113, …

For .cmdline (which already is 8ch long), the alternative names would be .cmdlin2, .cmdlin3, .cmdlin4, …, .cmdli64, …, .cmdl113, …

you get the idea.

This seems quite complex and error prone, and not very nice on the eyes. We'd need to start worrying about clashes when there's enough entries and other unpleasantness. Every producer/parser will need to implement it exactly right. Can't say I like that scheme.

[diogo-ivo]

FWIW I agree with @bluca that keeping the same section name leads to a simpler design. I can implement this and update the pull request

[poettering]

just for paranoia, can you add change this to:

#if __BYTE_ORDER__ == __ORDER_LITTLE_ENDIAN__
#define be32toh(x) __builtin_bswap32(x)
#else
#error "Unexpected by order in EFI mode?"
#endif

this is formalized documentation if you so will, explaining a bit why we can just get away with defining be32toh like this

[medhefgo]

efi.h already asserts little endian

[poettering]

sure, but that's not visible here. here it's a bit surprising to have this lone definition of a byteswapping helper that hardcodes this.

[keszybz]

Please indent the nested defines by two spaces, # define, # error, etc.

[poettering]

in our codebase we have the rule that for numerical values (i.e. values that are not boolean or boolean-like) we want explicit numernical comparisons for zero/non-zero.

i.e. to match our coding style, please write:

if (struct_off % sizeof(uin32_t) != 0 || …

you get the idea

[poettering]

overflow checks missing

[poettering]

you are casting the const away here. please don't

[poettering]

dito

[poettering]

given that at this point you are indexing memory, and we generally do that with size_t i'd type i as size_t here.

[poettering]

you didn#t check for underflow of struct_size here first

[keszybz]

@diogo-ivo It'd be great if we could merge this for v255-rc1. Please post an update.

[kukrimate]

@keszybz Since we are interested in this feature too, if the original author no longer wishes to work on it, I think I can find some time next week to give this a facelift.

[xnox]

Nah that is just messy. Our tools can deal with it just fine, if others are broken just fix them. These are new features so it's fine.

we must ensure that authenticode calculation is stable, in the face of reordering sections. Or for example, we should restrict the spec that all ".dtb" sections must be one after the other. At this point I am not even sure if this matters, or if this is a red herring.

[xnox]

Separately thinking about a UKI which has one optional dtb, to be used when booting on real hardware. But not required at all when booting in qemu vm. I hope we have explicit test for this, of not loading dtb at all if it doesn't match at all. I believe currently we always load dtb if present even if it doesn't match the hw. And this is a behaviour change. Unless we simply require for dtbs to match, or like if one wants to force load the dtb, the dtb compatible must have a flag value for sd-boot to recommend always loading it.

[bluca]

Nah that is just messy. Our tools can deal with it just fine, if others are broken just fix them. These are new features so it's fine.

we must ensure that authenticode calculation is stable, in the face of reordering sections. Or for example, we should restrict the spec that all ".dtb" sections must be one after the other. At this point I am not even sure if this matters, or if this is a red herring.

I wouldn't think that was any different than reordering any other section? Ukify processes them in a fixed order. As long as the input is the same, then output should be the same too, unless I'm missing something.

[poettering]

maybe it makes sense for ukify to write things out in the "canonical order" of sections which we use to measure them, as defined in the UKI spec. And maybe we should order the dtb sections by their binary contents (and maybe even suppress duplicates?)

That way, the order in which things are specified doesn't matter anymore, we'll build the same PE files no matter what it only matters that you have the same inputs, not in which order you give them to ukify.

[bluca]

maybe it makes sense for ukify to write things out in the "canonical order" of sections which we use to measure them, as defined in the UKI spec.

This definitely makes sense

And maybe we should order the dtb sections by their binary contents (and maybe even suppress duplicates?)

This seems more difficult, especially to define in a spec for cross-compatibility? Order of input seems easier to me

[diogo-ivo]

Thank you for the input, this version should address the comments made above except for the systemd-measure/ordering part, which I'll add when we reach an agreement on if/how we should order the sections

[bluca]

../src/boot/efi/devicetree.c:156:25: error: expected expression
                        size_t len = be32toh(cursor[++i]);
                        ^
../src/boot/efi/devicetree.c:158:57: error: use of undeclared identifier 'len'
                        size_t len_words = DIV_ROUND_UP(len, sizeof(uint32_t));
                                                        ^
../src/boot/efi/devicetree.c:158:57: error: use of undeclared identifier 'len'
../src/boot/efi/devicetree.c:164:81: error: use of undeclared identifier 'len'
                                if (len == 0 || i + len_words > size_words || c[len - 1] != '\0')
                                                                                ^
../src/boot/efi/devicetree.c:164:37: error: use of undeclared identifier 'len'
                                if (len == 0 || i + len_words > size_words || c[len - 1] != '\0')
                                    ^

[poettering]

This seems more difficult, especially to define in a spec for cross-compatibility? Order of input seems easier to me

just do a sort by binary memcmp() (and if one section is a prefix of another, then put the shorter one first).

[xnox]

If no match is found the first .dtb section in the image is selected.

worries me. as that will break booting the same uki in a QEMU KVM and hardware. Because one should not override the QEMU KVM provided DTB.

I am also worried about systems that are pure ACPI and thus do not have DeviceTree provided by the firmware -> because then we need to probably extend dtb with things to match on, and likely match on like SMBIOS3 table vendor / laptop SKU. This is to support all the Windows On Arm laptops.

I wonder if we can change this to:

If UKI has only one dtb, it will always be loaded. If UKI has more than one dtb, and none of them match, none of them will be loaded.

As that is both backwards compatible, and requires strict match out of multiple dtbs.

[xnox]

I would like to require a strict match, if more than one dtb is present in a UKI. And do not load any dtb, if there is no match out of multiple dtbs.

[kukrimate]

Shouldn't this be sizes[j] = sizes[j] ?: size;?
Not only that, but this whole logic is written in a rather confusing fashion.

[diogo-ivo]

I had that previously but changed it due to the comment 1. However in the version I'm working on this is no longer an issue since this logic cannot be here as we need to find all .dtb sections to correctly compute digests.

[keszybz]

60-ukify.install also needs to be updated:

About to execute /home/runner/work/systemd/systemd/build/src/kernel-install/60-ukify.install add 1.1.3 /tmp/test-kernel-install.FHH2sriOUF/boot/the-token/1.1.3 /tmp/test-kernel-install.FHH2sriOUF/sources/linux /tmp/test-kernel-install.FHH2sriOUF/sources/initrd
Successfully forked off '(direxec)' as PID 56278.
Traceback (most recent call last):
  File "/home/runner/work/systemd/systemd/build/src/kernel-install/60-ukify.install", line 264, in <module>
    main()
  File "/home/runner/work/systemd/systemd/build/src/kernel-install/60-ukify.install", line 260, in main
    call_ukify(opts)
  File "/home/runner/work/systemd/systemd/build/src/kernel-install/60-ukify.install", line 248, in call_ukify
    ukify['make_uki'](opts2)
  File "/home/runner/work/systemd/systemd/build/ukify", line 778, in make_uki
    *(('.dtb', dtb, True) for dtb in opts.devicetree),
TypeError: 'PosixPath' object is not iterable

[kukrimate]

Not strictly related to this patch, but I am working on a revised version of this, and confused about a few things:

• In case of DTB addons, why is it assumed that multiple calls to "BS->InstallConfigurationTable" with EFI_DTB_TABLE as a Guid is a valid way to install multiple addon dtbs in a loop?
  It seems to me from the EFI spec that subsequent config tables with the same guid simply overwrite the previous one, and you cannot have multiple config tables with a matching GUID
• Additionally why does the install_dtb{*} code bail when no existing dtb table exists? I think installing a dtb for linux use on a normally ACPI-only ARM machine is a valid usecase of including dtbs in UKIs.

[bluca]

• In case of DTB addons, why is it assumed that multiple calls to "BS->InstallConfigurationTable" with EFI_DTB_TABLE as a Guid is a valid way to install multiple addon dtbs in a loop?
  It seems to me from the EFI spec that subsequent config tables with the same guid simply overwrite the previous one, and you cannot have multiple config tables with a matching GUID
• Additionally why does the install_dtb{*} code bail when no existing dtb table exists? I think installing a dtb for linux use on a normally ACPI-only ARM machine is a valid usecase of including dtbs in UKIs.

Because fully and meaningfully testing this stuff with qemu (no real hardware) is next to impossible, so if you find problems, please file PRs to fix them, as only some very basic and minimal validation was done

[kukrimate]

@bluca I also only have qemu as a test setup as far as ARM UEFI goes unfortunately, but I will try to fix whatever I can.

However the addon dtb case, I am not sure how to fix exactly as the configuration table mechanism simply just doesn't provide way to have multiple configuration tables with the same GUID.

Would concatenating the DTBs into one configuration table make downstream consumers of it happy, or does everyone just try to (incorrectly) search for multiple config tables with the same GUID?

[kukrimate]

If the actual goal is to only provide a singular dtb to the kernel via a singular configuration table, there would have to be some kind of mechanism to collect all dtb from built-in ones from the image and from addons and somehow select a compatible one (from multiple potential candidates).

I can definitely code something from gut feeling, but it would be nice to have some kind of consensus of what everyone considers to be the "right thing".

[xnox]

• In case of DTB addons, why is it assumed that multiple calls to "BS->InstallConfigurationTable" with EFI_DTB_TABLE as a Guid is a valid way to install multiple addon dtbs in a loop?
  It seems to me from the EFI spec that subsequent config tables with the same guid simply overwrite the previous one, and you cannot have multiple config tables with a matching GUID
• Additionally why does the install_dtb{*} code bail when no existing dtb table exists? I think installing a dtb for linux use on a normally ACPI-only ARM machine is a valid usecase of including dtbs in UKIs.

Because fully and meaningfully testing this stuff with qemu (no real hardware) is next to impossible, so if you find problems, please file PRs to fix them, as only some very basic and minimal validation was done

@kukrimate we can also provide you both u-boot based & edk2 based hardware (i.e. u-boot / systemready things, and like full edk2 stuff like Windows on Arm laptops).