|
|
|
/*
|
|
|
|
* Copyright (c) 2016, The Linux Foundation. All rights reserved.
|
|
|
|
*
|
|
|
|
* Redistribution and use in source and binary forms, with or without
|
|
|
|
* modification, are permitted provided that the following conditions are
|
|
|
|
* met:
|
|
|
|
* * Redistributions of source code must retain the above copyright
|
|
|
|
* notice, this list of conditions and the following disclaimer.
|
|
|
|
* * Redistributions in binary form must reproduce the above
|
|
|
|
* copyright notice, this list of conditions and the following
|
|
|
|
* disclaimer in the documentation and/or other materials provided
|
|
|
|
* with the distribution.
|
|
|
|
* * Neither the name of The Linux Foundation nor the names of its
|
|
|
|
* contributors may be used to endorse or promote products derived
|
|
|
|
* from this software without specific prior written permission.
|
|
|
|
*
|
|
|
|
* THIS SOFTWARE IS PROVIDED "AS IS" AND ANY EXPRESS OR IMPLIED
|
|
|
|
* WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF
|
|
|
|
* MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NON-INFRINGEMENT
|
|
|
|
* ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS
|
|
|
|
* BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
|
|
|
|
* CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
|
|
|
|
* SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR
|
|
|
|
* BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,
|
|
|
|
* WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE
|
|
|
|
* OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN
|
|
|
|
* IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
|
|
|
|
*/
|
|
|
|
/*
|
|
|
|
* Copyright (C) 2021-2023 Caleb Connolly <caleb@connolly.tech>
|
|
|
|
*
|
|
|
|
* This program is free software: you can redistribute it and/or modify
|
|
|
|
* it under the terms of the GNU General Public License as published by
|
|
|
|
* the Free Software Foundation, either version 3 of the License, or
|
|
|
|
* (at your option) any later version.
|
|
|
|
*
|
|
|
|
* This program is distributed in the hope that it will be useful,
|
|
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
* GNU General Public License for more details.
|
|
|
|
*
|
|
|
|
* You should have received a copy of the GNU General Public License
|
|
|
|
* along with this program. If not, see <http:// www.gnu.org/licenses/>.
|
|
|
|
*/
|
|
|
|
|
|
|
|
#include <assert.h>
|
|
|
|
#include <dirent.h>
|
|
|
|
#include <errno.h>
|
|
|
|
#include <fcntl.h>
|
|
|
|
#include <limits.h>
|
|
|
|
#include <stdbool.h>
|
|
|
|
#include <stdint.h>
|
|
|
|
#include <stdio.h>
|
|
|
|
#include <string.h>
|
|
|
|
#include <sys/stat.h>
|
|
|
|
#include <sys/types.h>
|
|
|
|
#include <unistd.h>
|
|
|
|
|
|
|
|
#include "gpt-utils.h"
|
|
|
|
#include "ufs-bsg.h"
|
|
|
|
#include "utils.h"
|
|
|
|
|
|
|
|
#include "bootctrl.h"
|
|
|
|
|
|
|
|
#define BOOTDEV_DIR "/dev/disk/by-partlabel"
|
|
|
|
#define BOOT_IMG_PTN_NAME "boot_"
|
|
|
|
#define LUN_NAME_END_LOC 14
|
|
|
|
#define BOOT_SLOT_PROP "slot_suffix"
|
|
|
|
|
|
|
|
#define MAX_CMDLINE_SIZE 4096
|
|
|
|
|
|
|
|
#define SLOT_ACTIVE 1
|
|
|
|
#define SLOT_INACTIVE 2
|
|
|
|
#define UPDATE_SLOT(pentry, guid, slot_state) \
|
|
|
|
({ \
|
|
|
|
memcpy(pentry, guid, TYPE_GUID_SIZE); \
|
|
|
|
if (slot_state == SLOT_ACTIVE) \
|
|
|
|
*(pentry + AB_FLAG_OFFSET) = AB_SLOT_ACTIVE_VAL; \
|
|
|
|
else if (slot_state == SLOT_INACTIVE) \
|
|
|
|
*(pentry + AB_FLAG_OFFSET) = \
|
|
|
|
(*(pentry + AB_FLAG_OFFSET) & ~AB_PARTITION_ATTR_SLOT_ACTIVE); \
|
|
|
|
})
|
|
|
|
|
|
|
|
const char *slot_suffix_arr[] = { AB_SLOT_A_SUFFIX, AB_SLOT_B_SUFFIX, NULL };
|
|
|
|
|
|
|
|
enum part_attr_type {
|
|
|
|
ATTR_SLOT_ACTIVE = 0,
|
|
|
|
ATTR_BOOT_SUCCESSFUL,
|
|
|
|
ATTR_UNBOOTABLE,
|
|
|
|
ATTR_BOOTABLE,
|
|
|
|
};
|
|
|
|
|
|
|
|
void get_kernel_cmdline_arg(const char *arg, char *buf, const char *def)
|
|
|
|
{
|
|
|
|
int fd;
|
|
|
|
char pcmd[MAX_CMDLINE_SIZE];
|
|
|
|
char *val, *found, *ptr = buf;
|
|
|
|
fd = open("/proc/cmdline", O_RDONLY);
|
|
|
|
int rc = read(fd, pcmd, MAX_CMDLINE_SIZE);
|
|
|
|
if (rc < 0) {
|
|
|
|
fprintf(stderr, "Couldn't open /proc/cmdline: %d (%s)\n", rc, strerror(errno));
|
|
|
|
goto error;
|
|
|
|
}
|
|
|
|
close(fd);
|
|
|
|
found = strstr(pcmd, arg);
|
|
|
|
if (!found || !(val = strstr(found, "="))) {
|
|
|
|
fprintf(stderr, "Couldn't find cmdline arg: '%s'\n", arg);
|
|
|
|
goto error;
|
|
|
|
}
|
|
|
|
|
|
|
|
val++;
|
|
|
|
// no this doesn't handle quotes lol
|
|
|
|
while (*val != ' ') {
|
|
|
|
*ptr++ = *val++;
|
|
|
|
}
|
|
|
|
|
|
|
|
return;
|
|
|
|
|
|
|
|
error:
|
|
|
|
strcpy(buf, def);
|
|
|
|
}
|
|
|
|
|
|
|
|
// Get the value of one of the attribute fields for a partition.
|
|
|
|
static int get_partition_attribute(struct gpt_disk *disk, const char *partname,
|
|
|
|
enum part_attr_type part_attr)
|
|
|
|
{
|
|
|
|
uint8_t *pentry = NULL;
|
|
|
|
int retval = -1;
|
|
|
|
uint8_t *attr = NULL;
|
|
|
|
if (!partname)
|
|
|
|
return -1;
|
|
|
|
|
|
|
|
// Will initialise the disk if null, or reinitialise it if
|
|
|
|
// it's for a partition on a different disk
|
|
|
|
if (gpt_disk_get_disk_info(partname, disk) < 0) {
|
|
|
|
fprintf(stderr, "%s: gpt_disk_get_disk_info failed\n", __func__);
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
pentry = gpt_disk_get_pentry(disk, partname, PRIMARY_GPT);
|
|
|
|
|
|
|
|
if (!pentry) {
|
|
|
|
fprintf(stderr, "%s: pentry does not exist in disk struct\n", __func__);
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
attr = pentry + AB_FLAG_OFFSET;
|
|
|
|
LOGD("%s() partname = %s, attr = 0x%x\n", __func__, partname, *attr);
|
|
|
|
switch (part_attr) {
|
|
|
|
case ATTR_SLOT_ACTIVE:
|
|
|
|
retval = !!(*attr & AB_PARTITION_ATTR_SLOT_ACTIVE);
|
|
|
|
LOGD("ATTR_SLOT_ACTIVE, retval = %d\n", retval);
|
|
|
|
break;
|
|
|
|
case ATTR_BOOT_SUCCESSFUL:
|
|
|
|
retval = !!(*attr & AB_PARTITION_ATTR_BOOT_SUCCESSFUL);
|
|
|
|
LOGD("AB_PARTITION_ATTR_BOOT_SUCCESSFUL, retval = %d\n", retval);
|
|
|
|
break;
|
|
|
|
case ATTR_UNBOOTABLE:
|
|
|
|
retval = !!(*attr & AB_PARTITION_ATTR_UNBOOTABLE);
|
|
|
|
LOGD("AB_PARTITION_ATTR_UNBOOTABLE, retval = %d\n", retval);
|
|
|
|
break;
|
|
|
|
default:
|
|
|
|
retval = -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
return retval;
|
|
|
|
}
|
|
|
|
|
|
|
|
// Set a particular attribute for all the partitions in a
|
|
|
|
// slot
|
|
|
|
static int update_slot_attribute(struct gpt_disk *disk, unsigned slot,
|
|
|
|
enum part_attr_type ab_attr)
|
|
|
|
{
|
|
|
|
unsigned int i = 0;
|
|
|
|
char buf[GPT_PTN_PATH_MAX];
|
|
|
|
struct stat st;
|
|
|
|
uint8_t *pentry = NULL;
|
|
|
|
uint8_t *pentry_bak = NULL;
|
|
|
|
int rc = -1;
|
|
|
|
uint8_t *attr = NULL;
|
|
|
|
uint8_t *attr_bak = NULL;
|
|
|
|
const char *partName;
|
|
|
|
char devpath[GPT_PTN_PATH_MAX] = { 0 };
|
|
|
|
|
|
|
|
for (i = 0; i < ARRAY_SIZE(g_all_ptns); i++) {
|
|
|
|
memset(buf, '\0', sizeof(buf));
|
|
|
|
// Check if A/B versions of this ptn exist
|
|
|
|
rc = snprintf(buf, sizeof(buf) - 1, "%s/%.72s", BOOT_DEV_DIR, g_all_ptns[i]);
|
|
|
|
if (stat(buf, &st) < 0) {
|
|
|
|
// partition does not have _a version
|
|
|
|
continue;
|
|
|
|
}
|
|
|
|
|
|
|
|
buf[strlen(buf) - 1] = 'b';
|
|
|
|
if (stat(buf, &st) < 0) {
|
|
|
|
// partition does not have _b version
|
|
|
|
continue;
|
|
|
|
}
|
|
|
|
|
|
|
|
if (slot == 0)
|
|
|
|
partName = g_all_ptns[i];
|
|
|
|
else
|
|
|
|
partName = buf + strlen(BOOT_DEV_DIR) + 1;
|
|
|
|
|
|
|
|
LOGD("%s: partName = '%s'\n", __func__, partName);
|
|
|
|
|
|
|
|
// If the current partition is for a different disk (e.g. /dev/sde when the current disk is /dev/sda)
|
|
|
|
// Then commit the current disk
|
|
|
|
if (!partition_is_for_disk(disk, partName, devpath, sizeof(devpath))) {
|
|
|
|
if (gpt_disk_commit(disk)) {
|
|
|
|
fprintf(stderr, "%s: Failed to commit disk\n", __func__);
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
rc = gpt_disk_get_disk_info(partName, disk);
|
|
|
|
if (rc != 0) {
|
|
|
|
fprintf(stderr, "%s: Failed to get disk info for %s\n", __func__, partName);
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
pentry = gpt_disk_get_pentry(disk, partName, PRIMARY_GPT);
|
|
|
|
pentry_bak = gpt_disk_get_pentry(disk, partName, SECONDARY_GPT);
|
|
|
|
if (!pentry || !pentry_bak) {
|
|
|
|
fprintf(stderr, "%s: Failed to get pentry/pentry_bak for %s\n", __func__,
|
|
|
|
partName);
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
attr = pentry + AB_FLAG_OFFSET;
|
|
|
|
// LOGD("%s: got pentry for part '%s': 0x%lx (at flags: 0x%x)\n", __func__, partName,
|
|
|
|
// *(uint64_t *)pentry, *attr);
|
|
|
|
attr_bak = pentry_bak + AB_FLAG_OFFSET;
|
|
|
|
switch (ab_attr) {
|
|
|
|
case ATTR_BOOT_SUCCESSFUL:
|
|
|
|
*attr = (*attr) | AB_PARTITION_ATTR_BOOT_SUCCESSFUL;
|
|
|
|
*attr_bak = (*attr_bak) | AB_PARTITION_ATTR_BOOT_SUCCESSFUL;
|
|
|
|
break;
|
|
|
|
case ATTR_UNBOOTABLE:
|
|
|
|
*attr = (*attr) | AB_PARTITION_ATTR_UNBOOTABLE;
|
|
|
|
*attr_bak = (*attr_bak) | AB_PARTITION_ATTR_UNBOOTABLE;
|
|
|
|
break;
|
|
|
|
case ATTR_BOOTABLE:
|
|
|
|
*attr = (*attr) ^ AB_PARTITION_ATTR_UNBOOTABLE;
|
|
|
|
*attr_bak = (*attr_bak) ^ AB_PARTITION_ATTR_UNBOOTABLE;
|
|
|
|
break;
|
|
|
|
case ATTR_SLOT_ACTIVE:
|
|
|
|
*attr = (*attr) | AB_PARTITION_ATTR_SLOT_ACTIVE;
|
|
|
|
*attr_bak = (*attr) | AB_PARTITION_ATTR_SLOT_ACTIVE;
|
|
|
|
break;
|
|
|
|
default:
|
|
|
|
fprintf(stderr, "%s: Unrecognized attr\n", __func__);
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
if (gpt_disk_commit(disk)) {
|
|
|
|
fprintf(stderr, "%s: Failed to commit disk %s\n", __func__, disk->devpath);
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
/*
|
|
|
|
* Returns 0 for no slots, or the number of slots found.
|
|
|
|
* Fun semantic note: Having "1" slot (ie just a "boot" partition)
|
|
|
|
* is the same as having "no slots".
|
|
|
|
*
|
|
|
|
* This function will never return 1.
|
|
|
|
*/
|
|
|
|
unsigned get_number_slots()
|
|
|
|
{
|
|
|
|
struct dirent *de = NULL;
|
|
|
|
DIR *dir_bootdev = NULL;
|
|
|
|
static int slot_count = 0;
|
|
|
|
|
|
|
|
// If we've already counted the slots, return the cached value.
|
|
|
|
// If there are no slots then we'll always rerun the search...
|
|
|
|
if (slot_count > 0)
|
|
|
|
return slot_count;
|
|
|
|
|
|
|
|
assert(AB_SLOT_A_SUFFIX[0] == '_');
|
|
|
|
assert(AB_SLOT_B_SUFFIX[0] == '_');
|
|
|
|
|
|
|
|
dir_bootdev = opendir(BOOTDEV_DIR);
|
|
|
|
// Shouldn't this be an assert?
|
|
|
|
if (!dir_bootdev) {
|
|
|
|
fprintf(stderr, "%s: Failed to open bootdev dir (%s)\n", __func__, strerror(errno));
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
while ((de = readdir(dir_bootdev))) {
|
|
|
|
if (de->d_name[0] == '.')
|
|
|
|
continue;
|
|
|
|
if (!strncmp(de->d_name, BOOT_IMG_PTN_NAME, strlen(BOOT_IMG_PTN_NAME)) &&
|
|
|
|
!!strncmp(de->d_name, "boot_aging\n", strlen("boot_aging"))) {
|
|
|
|
slot_count++;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
if (slot_count < 0)
|
|
|
|
slot_count = 0;
|
|
|
|
|
|
|
|
closedir(dir_bootdev);
|
|
|
|
|
|
|
|
return slot_count;
|
|
|
|
}
|
|
|
|
|
|
|
|
static int boot_control_check_slot_sanity(unsigned slot)
|
|
|
|
{
|
|
|
|
uint32_t num_slots = get_number_slots();
|
|
|
|
if ((num_slots < 1) || (slot > num_slots - 1)) {
|
|
|
|
fprintf(stderr, "Invalid slot number %u\n", slot);
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
int get_boot_attr(struct gpt_disk *disk, unsigned slot, enum part_attr_type attr)
|
|
|
|
{
|
|
|
|
char bootPartition[MAX_GPT_NAME_SIZE + 1] = { 0 };
|
|
|
|
|
|
|
|
if (boot_control_check_slot_sanity(slot) != 0) {
|
|
|
|
fprintf(stderr, "%s: Argument check failed\n", __func__);
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
snprintf(bootPartition, sizeof(bootPartition) - 1, "boot%s", slot_suffix_arr[slot]);
|
|
|
|
|
|
|
|
return get_partition_attribute(disk, bootPartition, attr);
|
|
|
|
}
|
|
|
|
|
|
|
|
static unsigned int get_current_slot_from_kernel_cmdline()
|
|
|
|
{
|
|
|
|
uint32_t num_slots = 0;
|
|
|
|
char bootSlotProp[MAX_CMDLINE_SIZE] = { '\0' };
|
|
|
|
unsigned i = 0;
|
|
|
|
num_slots = get_number_slots();
|
|
|
|
if (num_slots <= 1) {
|
|
|
|
// Slot 0 is the only slot around.
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
get_kernel_cmdline_arg(BOOT_SLOT_PROP, bootSlotProp, "_a");
|
|
|
|
if (!strncmp(bootSlotProp, "N/A\n", strlen("N/A"))) {
|
|
|
|
fprintf(stderr, "%s: Unable to read boot slot property\n", __func__);
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
// Iterate through a list of partitons named as boot+suffix
|
|
|
|
// and see which one is currently active.
|
|
|
|
for (i = 0; slot_suffix_arr[i] != NULL; i++) {
|
|
|
|
if (!strncmp(bootSlotProp, slot_suffix_arr[i], strlen(slot_suffix_arr[i]))) {
|
|
|
|
// printf("%s current_slot = %d\n", __func__, i);
|
|
|
|
return i;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
// The HAL spec requires that we return a number between
|
|
|
|
// 0 to num_slots - 1. Since something went wrong here we
|
|
|
|
// are just going to return the default slot.
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
int is_slot_bootable(unsigned slot)
|
|
|
|
{
|
|
|
|
int attr = 0;
|
|
|
|
struct gpt_disk disk = { 0 };
|
|
|
|
|
|
|
|
attr = get_boot_attr(&disk, slot, ATTR_UNBOOTABLE);
|
|
|
|
if (attr >= 0)
|
|
|
|
return !attr;
|
|
|
|
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
int mark_boot_successful(unsigned slot)
|
|
|
|
{
|
|
|
|
struct gpt_disk disk = { 0 };
|
|
|
|
int successful = get_boot_attr(&disk, slot, ATTR_BOOT_SUCCESSFUL);
|
|
|
|
int unbootable = get_boot_attr(&disk, slot, ATTR_UNBOOTABLE);
|
|
|
|
int ret = 0;
|
|
|
|
|
|
|
|
if (successful < 0 || unbootable < 0) {
|
|
|
|
fprintf(stderr, "SLOT %s: Failed to read attributes\n", slot_suffix_arr[slot]);
|
|
|
|
ret = -1;
|
|
|
|
goto out;
|
|
|
|
}
|
|
|
|
|
|
|
|
if (unbootable) {
|
|
|
|
printf("SLOT %s: was marked unbootable, fixing this"
|
|
|
|
" (I hope you know what you're doing...)\n",
|
|
|
|
slot_suffix_arr[slot]);
|
|
|
|
update_slot_attribute(&disk, slot, ATTR_BOOTABLE);
|
|
|
|
}
|
|
|
|
|
|
|
|
if (successful) {
|
|
|
|
fprintf(stderr, "SLOT %s: already marked successful\n", slot_suffix_arr[slot]);
|
|
|
|
goto out;
|
|
|
|
}
|
|
|
|
|
|
|
|
if (update_slot_attribute(&disk, slot, ATTR_BOOT_SUCCESSFUL)) {
|
|
|
|
fprintf(stderr, "SLOT %s: Failed to mark boot successful\n", slot_suffix_arr[slot]);
|
|
|
|
ret = -1;
|
|
|
|
goto out;
|
|
|
|
}
|
|
|
|
|
|
|
|
out:
|
|
|
|
gpt_disk_free(&disk);
|
|
|
|
return ret;
|
|
|
|
}
|
|
|
|
|
|
|
|
const char *get_suffix(unsigned slot)
|
|
|
|
{
|
|
|
|
if (boot_control_check_slot_sanity(slot) != 0)
|
|
|
|
return "";
|
|
|
|
else
|
|
|
|
return slot_suffix_arr[slot];
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
// The argument here is a vector of partition names(including the slot suffix)
|
|
|
|
// that lie on a single disk
|
|
|
|
static int boot_ctl_set_active_slot_for_partitions(struct gpt_disk *disk,
|
|
|
|
unsigned slot)
|
|
|
|
{
|
|
|
|
char buf[GPT_PTN_PATH_MAX] = { 0 };
|
|
|
|
const char *slotA;
|
|
|
|
char slotB[MAX_GPT_NAME_SIZE] = { 0 };
|
|
|
|
char active_guid[TYPE_GUID_SIZE + 1] = { 0 };
|
|
|
|
char inactive_guid[TYPE_GUID_SIZE + 1] = { 0 };
|
|
|
|
int rc, i;
|
|
|
|
// Pointer to the partition entry of current 'A' partition
|
|
|
|
uint8_t *pentryA = NULL;
|
|
|
|
uint8_t *pentryA_bak = NULL;
|
|
|
|
// Pointer to partition entry of current 'B' partition
|
|
|
|
uint8_t *pentryB = NULL;
|
|
|
|
uint8_t *pentryB_bak = NULL;
|
|
|
|
struct stat st;
|
|
|
|
|
|
|
|
LOGD("Marking slot %s as active:\n", slot_suffix_arr[slot]);
|
|
|
|
|
|
|
|
for (i = 0, slotA = g_all_ptns[0]; i < ARRAY_SIZE(g_all_ptns); slotA = g_all_ptns[++i]) {
|
|
|
|
// Chop off the slot suffix from the partition name to
|
|
|
|
// make the string easier to work with.
|
|
|
|
LOGD("Part: %s\n", slotA);
|
|
|
|
int n = strlen(slotA) - strlen(AB_SLOT_A_SUFFIX);
|
|
|
|
if (n + 1 < 3 || n + 1 > MAX_GPT_NAME_SIZE) {
|
|
|
|
fprintf(stderr, "Invalid partition name: %s\n", slotA);
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
memset(slotB, 0, sizeof(slotB));
|
|
|
|
strncat(slotB, slotA, MAX_GPT_NAME_SIZE - 1);
|
|
|
|
slotB[strlen(slotB) - 1] = 'b';
|
|
|
|
|
|
|
|
rc = snprintf(buf, sizeof(buf) - 1, "%s", BOOT_DEV_DIR);
|
|
|
|
snprintf(buf + rc, GPT_PTN_PATH_MAX - rc, "/%s", slotA);
|
|
|
|
LOGD("Checking for partition %s\n", buf);
|
|
|
|
if (stat(buf, &st)) {
|
|
|
|
if (!strcmp(slotA, "boot_a") || !strcmp(slotA, "dtbo_a")) {
|
|
|
|
fprintf(stderr, "Couldn't find required partition %s\n", slotA);
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
// Not every device has every partition
|
|
|
|
continue;
|
|
|
|
}
|
|
|
|
|
|
|
|
buf[strlen(buf) - 1] = 'b';
|
|
|
|
if (stat(buf, &st)) {
|
|
|
|
fprintf(stderr, "Partition %s does not exist\n", buf);
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
// Get the disk containing this partition. This only
|
|
|
|
// actually re-initialises disk if this partition refers
|
|
|
|
// to a different block device than the last one.
|
|
|
|
if (gpt_disk_get_disk_info(slotA, disk) < 0)
|
|
|
|
return -1;
|
|
|
|
|
|
|
|
// Get partition entry for slot A & B from the primary
|
|
|
|
// and backup tables.
|
|
|
|
pentryA = gpt_disk_get_pentry(disk, slotA, PRIMARY_GPT);
|
|
|
|
pentryA_bak = gpt_disk_get_pentry(disk, slotA, SECONDARY_GPT);
|
|
|
|
pentryB = gpt_disk_get_pentry(disk, slotB, PRIMARY_GPT);
|
|
|
|
pentryB_bak = gpt_disk_get_pentry(disk, slotB, SECONDARY_GPT);
|
|
|
|
if (!pentryA || !pentryA_bak || !pentryB || !pentryB_bak) {
|
|
|
|
// None of these should be NULL since we have already
|
|
|
|
// checked for A & B versions earlier.
|
|
|
|
fprintf(stderr, "Slot pentries for %s not found.\n", slotA);
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
LOGD("\tAB attr (A): 0x%x (backup: 0x%x)\n", *(uint16_t *)(pentryA + AB_FLAG_OFFSET),
|
|
|
|
*(uint16_t *)(pentryA_bak + AB_FLAG_OFFSET));
|
|
|
|
LOGD("\tAB attr (B): 0x%x (backup: 0x%x)\n", *(uint16_t *)(pentryB + AB_FLAG_OFFSET),
|
|
|
|
*(uint16_t *)(pentryB_bak + AB_FLAG_OFFSET));
|
|
|
|
memset(active_guid, '\0', sizeof(active_guid));
|
|
|
|
memset(inactive_guid, '\0', sizeof(inactive_guid));
|
|
|
|
if (get_partition_attribute(disk, slotA, ATTR_SLOT_ACTIVE) == 1) {
|
|
|
|
// A is the current active slot
|
|
|
|
memcpy((void *)active_guid, (const void *)pentryA, TYPE_GUID_SIZE);
|
|
|
|
memcpy((void *)inactive_guid, (const void *)pentryB, TYPE_GUID_SIZE);
|
|
|
|
} else if (get_partition_attribute(disk, slotB, ATTR_SLOT_ACTIVE) == 1) {
|
|
|
|
// B is the current active slot
|
|
|
|
memcpy((void *)active_guid, (const void *)pentryB, TYPE_GUID_SIZE);
|
|
|
|
memcpy((void *)inactive_guid, (const void *)pentryA, TYPE_GUID_SIZE);
|
|
|
|
} else {
|
|
|
|
fprintf(stderr, "Both A & B are inactive..Aborting");
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
int a_state = slot == 0 ? SLOT_ACTIVE : SLOT_INACTIVE;
|
|
|
|
int b_state = slot == 1 ? SLOT_ACTIVE : SLOT_INACTIVE;
|
|
|
|
|
|
|
|
// This check *Really* shouldn't be here... But I don't know this codebase
|
|
|
|
// well enough to remove it.
|
|
|
|
if (slot > 1) {
|
|
|
|
fprintf(stderr, "%s: Unknown slot %d!\n", __func__, slot);
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
// Mark A as active in primary table
|
|
|
|
UPDATE_SLOT(pentryA, active_guid, a_state);
|
|
|
|
// Mark A as active in backup table
|
|
|
|
UPDATE_SLOT(pentryA_bak, active_guid, a_state);
|
|
|
|
// Mark B as inactive in primary table
|
|
|
|
UPDATE_SLOT(pentryB, inactive_guid, b_state);
|
|
|
|
// Mark B as inactive in backup table
|
|
|
|
UPDATE_SLOT(pentryB_bak, inactive_guid, b_state);
|
|
|
|
}
|
|
|
|
|
|
|
|
// write updated content to disk
|
|
|
|
if (gpt_disk_commit(disk)) {
|
|
|
|
fprintf(stderr, "Failed to commit disk entry");
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
unsigned get_active_boot_slot()
|
|
|
|
{
|
|
|
|
struct gpt_disk disk = { 0 };
|
|
|
|
uint32_t num_slots = get_number_slots();
|
|
|
|
|
|
|
|
if (num_slots <= 1) {
|
|
|
|
// Slot 0 is the only slot around.
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
for (uint32_t i = 0; i < num_slots; i++) {
|
|
|
|
if (get_boot_attr(&disk, i, ATTR_SLOT_ACTIVE)) {
|
|
|
|
gpt_disk_free(&disk);
|
|
|
|
return i;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
fprintf(stderr, "%s: Failed to find the active boot slot\n", __func__);
|
|
|
|
gpt_disk_free(&disk);
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
int set_active_boot_slot(unsigned slot)
|
|
|
|
{
|
|
|
|
enum boot_chain chain = (enum boot_chain)slot;
|
|
|
|
struct gpt_disk disk = { 0 };
|
|
|
|
int rc;
|
|
|
|
bool ismmc;
|
|
|
|
|
|
|
|
if (boot_control_check_slot_sanity(slot)) {
|
|
|
|
fprintf(stderr, "%s: Bad arguments\n", __func__);
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
ismmc = gpt_utils_is_partition_backed_by_emmc(PTN_XBL AB_SLOT_A_SUFFIX);
|
|
|
|
|
|
|
|
// Do this *before* updating all the slot attributes
|
|
|
|
// to make sure we can
|
|
|
|
if (!ismmc && ufs_bsg_dev_open() < 0) {
|
|
|
|
return -1;
|
|
|
|
}
|
|
|
|
|
|
|
|
rc = boot_ctl_set_active_slot_for_partitions(&disk, slot);
|
|
|
|
|
|
|
|
if (rc) {
|
|
|
|
fprintf(stderr, "%s: Failed to set active slot for partitions \n", __func__);
|
|
|
|
goto out;
|
|
|
|
}
|
|
|
|
|
|
|
|
// EMMC doesn't need attributes to be set.
|
|
|
|
if (ismmc)
|
|
|
|
goto out;
|
|
|
|
|
|
|
|
if (chain > BACKUP_BOOT) {
|
|
|
|
fprintf(stderr, "%s: Unknown slot %d!\n", __func__, slot);
|
|
|
|
rc = -1;
|
|
|
|
goto out;
|
|
|
|
}
|
|
|
|
|
|
|
|
rc = gpt_utils_set_xbl_boot_partition(chain);
|
|
|
|
if (rc) {
|
|
|
|
fprintf(stderr, "%s: Failed to switch xbl boot partition\n", __func__);
|
|
|
|
goto out;
|
|
|
|
}
|
|
|
|
|
|
|
|
out:
|
|
|
|
gpt_disk_free(&disk);
|
|
|
|
return rc;
|
|
|
|
}
|
|
|
|
|
|
|
|
int set_slot_as_unbootable(unsigned slot)
|
|
|
|
{
|
|
|
|
struct gpt_disk disk = { 0 };
|
|
|
|
int ret;
|
|
|
|
|
|
|
|
if (boot_control_check_slot_sanity(slot) != 0)
|
|
|
|
return -1;
|
|
|
|
|
|
|
|
ret = update_slot_attribute(&disk, slot, ATTR_UNBOOTABLE);
|
|
|
|
|
|
|
|
gpt_disk_free(&disk);
|
|
|
|
return ret;
|
|
|
|
}
|
|
|
|
|
|
|
|
int is_slot_marked_successful(unsigned slot)
|
|
|
|
{
|
|
|
|
int ret;
|
|
|
|
struct gpt_disk disk = { 0 };
|
|
|
|
|
|
|
|
if (boot_control_check_slot_sanity(slot) != 0)
|
|
|
|
return -1;
|
|
|
|
|
|
|
|
ret = get_boot_attr(&disk, slot, ATTR_BOOT_SUCCESSFUL);
|
|
|
|
gpt_disk_free(&disk);
|
|
|
|
return ret;
|
|
|
|
}
|
|
|
|
|
|
|
|
const struct boot_control_module bootctl = {
|
|
|
|
.getCurrentSlot = get_current_slot_from_kernel_cmdline,
|
|
|
|
.markBootSuccessful = mark_boot_successful,
|
|
|
|
.setActiveBootSlot = set_active_boot_slot,
|
|
|
|
.setSlotAsUnbootable = set_slot_as_unbootable,
|
|
|
|
.isSlotBootable = is_slot_bootable,
|
|
|
|
.getSuffix = get_suffix,
|
|
|
|
.isSlotMarkedSuccessful = is_slot_marked_successful,
|
|
|
|
.getActiveBootSlot = get_active_boot_slot,
|
|
|
|
};
|