1 // SPDX-License-Identifier: GPL-2.0
3 * Copyright © 2016 Intel Corporation
6 * Scott Bauer <scott.bauer@intel.com>
7 * Rafael Antognolli <rafael.antognolli@intel.com>
10 #define pr_fmt(fmt) KBUILD_MODNAME ":OPAL: " fmt
12 #include <linux/delay.h>
13 #include <linux/device.h>
14 #include <linux/kernel.h>
15 #include <linux/list.h>
16 #include <linux/genhd.h>
17 #include <linux/slab.h>
18 #include <linux/uaccess.h>
19 #include <uapi/linux/sed-opal.h>
20 #include <linux/sed-opal.h>
21 #include <linux/string.h>
22 #include <linux/kdev_t.h>
24 #include "opal_proto.h"
26 #define IO_BUFFER_LENGTH 2048
29 /* Number of bytes needed by cmd_finalize. */
30 #define CMD_FINALIZE_BYTES_NEEDED 7
33 int (*fn)(struct opal_dev *dev, void *data);
36 typedef int (cont_fn)(struct opal_dev *dev);
38 enum opal_atom_width {
47 * On the parsed response, we don't store again the toks that are already
48 * stored in the response buffer. Instead, for each token, we just store a
49 * pointer to the position in the buffer where the token starts, and the size
50 * of the token in bytes.
52 struct opal_resp_tok {
55 enum opal_response_token type;
56 enum opal_atom_width width;
64 * From the response header it's not possible to know how many tokens there are
65 * on the payload. So we hardcode that the maximum will be MAX_TOKS, and later
66 * if we start dealing with messages that have more than that, we can increase
67 * this number. This is done to avoid having to make two passes through the
68 * response, the first one counting how many tokens we have and the second one
69 * actually storing the positions.
73 struct opal_resp_tok toks[MAX_TOKS];
81 sec_send_recv *send_recv;
83 struct mutex dev_lock;
94 struct parsed_resp parsed;
98 struct list_head unlk_lst;
102 static const u8 opaluid[][OPAL_UID_LENGTH] = {
105 { 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0xff },
107 { 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x01 },
109 { 0x00, 0x00, 0x02, 0x05, 0x00, 0x00, 0x00, 0x01 },
110 [OPAL_LOCKINGSP_UID] =
111 { 0x00, 0x00, 0x02, 0x05, 0x00, 0x00, 0x00, 0x02 },
112 [OPAL_ENTERPRISE_LOCKINGSP_UID] =
113 { 0x00, 0x00, 0x02, 0x05, 0x00, 0x01, 0x00, 0x01 },
115 { 0x00, 0x00, 0x00, 0x09, 0x00, 0x00, 0x00, 0x01 },
117 { 0x00, 0x00, 0x00, 0x09, 0x00, 0x00, 0x00, 0x06 },
119 { 0x00, 0x00, 0x00, 0x09, 0x00, 0x01, 0x00, 0x01 },
121 { 0x00, 0x00, 0x00, 0x09, 0x00, 0x03, 0x00, 0x01 },
123 { 0x00, 0x00, 0x00, 0x09, 0x00, 0x03, 0x00, 0x02 },
125 { 0x00, 0x00, 0x00, 0x09, 0x00, 0x01, 0xff, 0x01 },
126 [OPAL_ENTERPRISE_BANDMASTER0_UID] =
127 { 0x00, 0x00, 0x00, 0x09, 0x00, 0x00, 0x80, 0x01 },
128 [OPAL_ENTERPRISE_ERASEMASTER_UID] =
129 { 0x00, 0x00, 0x00, 0x09, 0x00, 0x00, 0x84, 0x01 },
133 { 0x00, 0x00, 0x00, 0x01, 0x00, 0x00, 0x00, 0x01 },
134 [OPAL_LOCKINGRANGE_GLOBAL] =
135 { 0x00, 0x00, 0x08, 0x02, 0x00, 0x00, 0x00, 0x01 },
136 [OPAL_LOCKINGRANGE_ACE_RDLOCKED] =
137 { 0x00, 0x00, 0x00, 0x08, 0x00, 0x03, 0xE0, 0x01 },
138 [OPAL_LOCKINGRANGE_ACE_WRLOCKED] =
139 { 0x00, 0x00, 0x00, 0x08, 0x00, 0x03, 0xE8, 0x01 },
141 { 0x00, 0x00, 0x08, 0x03, 0x00, 0x00, 0x00, 0x01 },
143 { 0x00, 0x00, 0x08, 0x04, 0x00, 0x00, 0x00, 0x00 },
144 [OPAL_AUTHORITY_TABLE] =
145 { 0x00, 0x00, 0x00, 0x09, 0x00, 0x00, 0x00, 0x00},
147 { 0x00, 0x00, 0x00, 0x0B, 0x00, 0x00, 0x00, 0x00},
148 [OPAL_LOCKING_INFO_TABLE] =
149 { 0x00, 0x00, 0x08, 0x01, 0x00, 0x00, 0x00, 0x01 },
150 [OPAL_ENTERPRISE_LOCKING_INFO_TABLE] =
151 { 0x00, 0x00, 0x08, 0x01, 0x00, 0x00, 0x00, 0x00 },
153 { 0x00, 0x00, 0x10, 0x01, 0x00, 0x00, 0x00, 0x00 },
155 /* C_PIN_TABLE object ID's */
157 { 0x00, 0x00, 0x00, 0x0B, 0x00, 0x00, 0x84, 0x02},
159 { 0x00, 0x00, 0x00, 0x0B, 0x00, 0x00, 0x00, 0x01},
160 [OPAL_C_PIN_ADMIN1] =
161 { 0x00, 0x00, 0x00, 0x0B, 0x00, 0x01, 0x00, 0x01},
163 /* half UID's (only first 4 bytes used) */
164 [OPAL_HALF_UID_AUTHORITY_OBJ_REF] =
165 { 0x00, 0x00, 0x0C, 0x05, 0xff, 0xff, 0xff, 0xff },
166 [OPAL_HALF_UID_BOOLEAN_ACE] =
167 { 0x00, 0x00, 0x04, 0x0E, 0xff, 0xff, 0xff, 0xff },
169 /* special value for omitted optional parameter */
171 { 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff},
175 * TCG Storage SSC Methods.
176 * Derived from: TCG_Storage_Architecture_Core_Spec_v2.01_r1.00
177 * Section: 6.3 Assigned UIDs
179 static const u8 opalmethod[][OPAL_METHOD_LENGTH] = {
181 { 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0xff, 0x01 },
182 [OPAL_STARTSESSION] =
183 { 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0xff, 0x02 },
185 { 0x00, 0x00, 0x00, 0x06, 0x00, 0x00, 0x02, 0x02 },
187 { 0x00, 0x00, 0x00, 0x06, 0x00, 0x00, 0x02, 0x03 },
189 { 0x00, 0x00, 0x00, 0x06, 0x00, 0x00, 0x00, 0x06 },
191 { 0x00, 0x00, 0x00, 0x06, 0x00, 0x00, 0x00, 0x07 },
193 { 0x00, 0x00, 0x00, 0x06, 0x00, 0x00, 0x00, 0x08 },
194 [OPAL_EAUTHENTICATE] =
195 { 0x00, 0x00, 0x00, 0x06, 0x00, 0x00, 0x00, 0x0c },
197 { 0x00, 0x00, 0x00, 0x06, 0x00, 0x00, 0x00, 0x0d },
199 { 0x00, 0x00, 0x00, 0x06, 0x00, 0x00, 0x00, 0x10 },
201 { 0x00, 0x00, 0x00, 0x06, 0x00, 0x00, 0x00, 0x11 },
203 { 0x00, 0x00, 0x00, 0x06, 0x00, 0x00, 0x00, 0x16 },
205 { 0x00, 0x00, 0x00, 0x06, 0x00, 0x00, 0x00, 0x17 },
206 [OPAL_AUTHENTICATE] =
207 { 0x00, 0x00, 0x00, 0x06, 0x00, 0x00, 0x00, 0x1c },
209 { 0x00, 0x00, 0x00, 0x06, 0x00, 0x00, 0x06, 0x01 },
211 { 0x00, 0x00, 0x00, 0x06, 0x00, 0x00, 0x08, 0x03 },
214 static int end_opal_session_error(struct opal_dev *dev);
215 static int opal_discovery0_step(struct opal_dev *dev);
217 struct opal_suspend_data {
218 struct opal_lock_unlock unlk;
220 struct list_head node;
225 * TCG_Storage_Architecture_Core_Spec_v2.01_r1.00
226 * Section: 5.1.5 Method Status Codes
228 static const char * const opal_errors[] = {
236 "No Sessions Available",
237 "Uniqueness Conflict",
238 "Insufficient Space",
245 "Transaction Failure",
247 "Authority Locked Out",
250 static const char *opal_error_to_human(int error)
255 if (error >= ARRAY_SIZE(opal_errors) || error < 0)
256 return "Unknown Error";
258 return opal_errors[error];
261 static void print_buffer(const u8 *ptr, u32 length)
264 print_hex_dump_bytes("OPAL: ", DUMP_PREFIX_OFFSET, ptr, length);
269 static bool check_tper(const void *data)
271 const struct d0_tper_features *tper = data;
272 u8 flags = tper->supported_features;
274 if (!(flags & TPER_SYNC_SUPPORTED)) {
275 pr_debug("TPer sync not supported. flags = %d\n",
276 tper->supported_features);
283 static bool check_mbrenabled(const void *data)
285 const struct d0_locking_features *lfeat = data;
286 u8 sup_feat = lfeat->supported_features;
288 return !!(sup_feat & MBR_ENABLED_MASK);
291 static bool check_sum(const void *data)
293 const struct d0_single_user_mode *sum = data;
294 u32 nlo = be32_to_cpu(sum->num_locking_objects);
297 pr_debug("Need at least one locking object.\n");
301 pr_debug("Number of locking objects: %d\n", nlo);
306 static u16 get_comid_v100(const void *data)
308 const struct d0_opal_v100 *v100 = data;
310 return be16_to_cpu(v100->baseComID);
313 static u16 get_comid_v200(const void *data)
315 const struct d0_opal_v200 *v200 = data;
317 return be16_to_cpu(v200->baseComID);
320 static int opal_send_cmd(struct opal_dev *dev)
322 return dev->send_recv(dev->data, dev->comid, TCG_SECP_01,
323 dev->cmd, IO_BUFFER_LENGTH,
327 static int opal_recv_cmd(struct opal_dev *dev)
329 return dev->send_recv(dev->data, dev->comid, TCG_SECP_01,
330 dev->resp, IO_BUFFER_LENGTH,
334 static int opal_recv_check(struct opal_dev *dev)
336 size_t buflen = IO_BUFFER_LENGTH;
337 void *buffer = dev->resp;
338 struct opal_header *hdr = buffer;
342 pr_debug("Sent OPAL command: outstanding=%d, minTransfer=%d\n",
343 hdr->cp.outstandingData,
344 hdr->cp.minTransfer);
346 if (hdr->cp.outstandingData == 0 ||
347 hdr->cp.minTransfer != 0)
350 memset(buffer, 0, buflen);
351 ret = opal_recv_cmd(dev);
357 static int opal_send_recv(struct opal_dev *dev, cont_fn *cont)
361 ret = opal_send_cmd(dev);
364 ret = opal_recv_cmd(dev);
367 ret = opal_recv_check(dev);
373 static void check_geometry(struct opal_dev *dev, const void *data)
375 const struct d0_geometry_features *geo = data;
377 dev->align = be64_to_cpu(geo->alignment_granularity);
378 dev->lowest_lba = be64_to_cpu(geo->lowest_aligned_lba);
381 static int execute_step(struct opal_dev *dev,
382 const struct opal_step *step, size_t stepIndex)
384 int error = step->fn(dev, step->data);
387 pr_debug("Step %zu (%pS) failed with error %d: %s\n",
388 stepIndex, step->fn, error,
389 opal_error_to_human(error));
395 static int execute_steps(struct opal_dev *dev,
396 const struct opal_step *steps, size_t n_steps)
401 /* first do a discovery0 */
402 error = opal_discovery0_step(dev);
406 for (state = 0; state < n_steps; state++) {
407 error = execute_step(dev, &steps[state], state);
416 * For each OPAL command the first step in steps starts some sort of
417 * session. If an error occurred in the initial discovery0 or if an
418 * error occurred in the first step (and thus stopping the loop with
419 * state == 0) then there was an error before or during the attempt to
420 * start a session. Therefore we shouldn't attempt to terminate a
421 * session, as one has not yet been created.
424 end_opal_session_error(dev);
429 static int opal_discovery0_end(struct opal_dev *dev)
431 bool found_com_id = false, supported = true, single_user = false;
432 const struct d0_header *hdr = (struct d0_header *)dev->resp;
433 const u8 *epos = dev->resp, *cpos = dev->resp;
435 u32 hlen = be32_to_cpu(hdr->length);
437 print_buffer(dev->resp, hlen);
438 dev->mbr_enabled = false;
440 if (hlen > IO_BUFFER_LENGTH - sizeof(*hdr)) {
441 pr_debug("Discovery length overflows buffer (%zu+%u)/%u\n",
442 sizeof(*hdr), hlen, IO_BUFFER_LENGTH);
446 epos += hlen; /* end of buffer */
447 cpos += sizeof(*hdr); /* current position on buffer */
449 while (cpos < epos && supported) {
450 const struct d0_features *body =
451 (const struct d0_features *)cpos;
453 switch (be16_to_cpu(body->code)) {
455 supported = check_tper(body->features);
458 single_user = check_sum(body->features);
461 check_geometry(dev, body);
464 dev->mbr_enabled = check_mbrenabled(body->features);
468 /* some ignored properties */
469 pr_debug("Found OPAL feature description: %d\n",
470 be16_to_cpu(body->code));
473 comid = get_comid_v100(body->features);
477 comid = get_comid_v200(body->features);
480 case 0xbfff ... 0xffff:
481 /* vendor specific, just ignore */
484 pr_debug("OPAL Unknown feature: %d\n",
485 be16_to_cpu(body->code));
488 cpos += body->length + 4;
492 pr_debug("This device is not Opal enabled. Not Supported!\n");
497 pr_debug("Device doesn't support single user mode\n");
501 pr_debug("Could not find OPAL comid for device. Returning early\n");
510 static int opal_discovery0(struct opal_dev *dev, void *data)
514 memset(dev->resp, 0, IO_BUFFER_LENGTH);
515 dev->comid = OPAL_DISCOVERY_COMID;
516 ret = opal_recv_cmd(dev);
520 return opal_discovery0_end(dev);
523 static int opal_discovery0_step(struct opal_dev *dev)
525 const struct opal_step discovery0_step = {
529 return execute_step(dev, &discovery0_step, 0);
532 static size_t remaining_size(struct opal_dev *cmd)
534 return IO_BUFFER_LENGTH - cmd->pos;
537 static bool can_add(int *err, struct opal_dev *cmd, size_t len)
542 if (remaining_size(cmd) < len) {
543 pr_debug("Error adding %zu bytes: end of buffer.\n", len);
551 static void add_token_u8(int *err, struct opal_dev *cmd, u8 tok)
553 if (!can_add(err, cmd, 1))
556 cmd->cmd[cmd->pos++] = tok;
559 static void add_short_atom_header(struct opal_dev *cmd, bool bytestring,
560 bool has_sign, int len)
565 atom = SHORT_ATOM_ID;
566 atom |= bytestring ? SHORT_ATOM_BYTESTRING : 0;
567 atom |= has_sign ? SHORT_ATOM_SIGNED : 0;
568 atom |= len & SHORT_ATOM_LEN_MASK;
570 add_token_u8(&err, cmd, atom);
573 static void add_medium_atom_header(struct opal_dev *cmd, bool bytestring,
574 bool has_sign, int len)
578 header0 = MEDIUM_ATOM_ID;
579 header0 |= bytestring ? MEDIUM_ATOM_BYTESTRING : 0;
580 header0 |= has_sign ? MEDIUM_ATOM_SIGNED : 0;
581 header0 |= (len >> 8) & MEDIUM_ATOM_LEN_MASK;
583 cmd->cmd[cmd->pos++] = header0;
584 cmd->cmd[cmd->pos++] = len;
587 static void add_token_u64(int *err, struct opal_dev *cmd, u64 number)
592 if (!(number & ~TINY_ATOM_DATA_MASK)) {
593 add_token_u8(err, cmd, number);
598 len = DIV_ROUND_UP(msb, 8);
600 if (!can_add(err, cmd, len + 1)) {
601 pr_debug("Error adding u64: end of buffer.\n");
604 add_short_atom_header(cmd, false, false, len);
606 add_token_u8(err, cmd, number >> (len * 8));
609 static u8 *add_bytestring_header(int *err, struct opal_dev *cmd, size_t len)
611 size_t header_len = 1;
612 bool is_short_atom = true;
614 if (len & ~SHORT_ATOM_LEN_MASK) {
616 is_short_atom = false;
619 if (!can_add(err, cmd, header_len + len)) {
620 pr_debug("Error adding bytestring: end of buffer.\n");
625 add_short_atom_header(cmd, true, false, len);
627 add_medium_atom_header(cmd, true, false, len);
629 return &cmd->cmd[cmd->pos];
632 static void add_token_bytestring(int *err, struct opal_dev *cmd,
633 const u8 *bytestring, size_t len)
637 start = add_bytestring_header(err, cmd, len);
640 memcpy(start, bytestring, len);
644 static int build_locking_range(u8 *buffer, size_t length, u8 lr)
646 if (length > OPAL_UID_LENGTH) {
647 pr_debug("Can't build locking range. Length OOB\n");
651 memcpy(buffer, opaluid[OPAL_LOCKINGRANGE_GLOBAL], OPAL_UID_LENGTH);
656 buffer[5] = LOCKING_RANGE_NON_GLOBAL;
662 static int build_locking_user(u8 *buffer, size_t length, u8 lr)
664 if (length > OPAL_UID_LENGTH) {
665 pr_debug("Can't build locking range user. Length OOB\n");
669 memcpy(buffer, opaluid[OPAL_USER1_UID], OPAL_UID_LENGTH);
676 static void set_comid(struct opal_dev *cmd, u16 comid)
678 struct opal_header *hdr = (struct opal_header *)cmd->cmd;
680 hdr->cp.extendedComID[0] = comid >> 8;
681 hdr->cp.extendedComID[1] = comid;
682 hdr->cp.extendedComID[2] = 0;
683 hdr->cp.extendedComID[3] = 0;
686 static int cmd_finalize(struct opal_dev *cmd, u32 hsn, u32 tsn)
688 struct opal_header *hdr;
692 * Close the parameter list opened from cmd_start.
693 * The number of bytes added must be equal to
694 * CMD_FINALIZE_BYTES_NEEDED.
696 add_token_u8(&err, cmd, OPAL_ENDLIST);
698 add_token_u8(&err, cmd, OPAL_ENDOFDATA);
699 add_token_u8(&err, cmd, OPAL_STARTLIST);
700 add_token_u8(&err, cmd, 0);
701 add_token_u8(&err, cmd, 0);
702 add_token_u8(&err, cmd, 0);
703 add_token_u8(&err, cmd, OPAL_ENDLIST);
706 pr_debug("Error finalizing command.\n");
710 hdr = (struct opal_header *) cmd->cmd;
712 hdr->pkt.tsn = cpu_to_be32(tsn);
713 hdr->pkt.hsn = cpu_to_be32(hsn);
715 hdr->subpkt.length = cpu_to_be32(cmd->pos - sizeof(*hdr));
716 while (cmd->pos % 4) {
717 if (cmd->pos >= IO_BUFFER_LENGTH) {
718 pr_debug("Error: Buffer overrun\n");
721 cmd->cmd[cmd->pos++] = 0;
723 hdr->pkt.length = cpu_to_be32(cmd->pos - sizeof(hdr->cp) -
725 hdr->cp.length = cpu_to_be32(cmd->pos - sizeof(hdr->cp));
730 static const struct opal_resp_tok *response_get_token(
731 const struct parsed_resp *resp,
734 const struct opal_resp_tok *tok;
737 pr_debug("Response is NULL\n");
738 return ERR_PTR(-EINVAL);
741 if (n >= resp->num) {
742 pr_debug("Token number doesn't exist: %d, resp: %d\n",
744 return ERR_PTR(-EINVAL);
747 tok = &resp->toks[n];
749 pr_debug("Token length must be non-zero\n");
750 return ERR_PTR(-EINVAL);
756 static ssize_t response_parse_tiny(struct opal_resp_tok *tok,
761 tok->width = OPAL_WIDTH_TINY;
763 if (pos[0] & TINY_ATOM_SIGNED) {
764 tok->type = OPAL_DTA_TOKENID_SINT;
766 tok->type = OPAL_DTA_TOKENID_UINT;
767 tok->stored.u = pos[0] & 0x3f;
773 static ssize_t response_parse_short(struct opal_resp_tok *tok,
777 tok->len = (pos[0] & SHORT_ATOM_LEN_MASK) + 1;
778 tok->width = OPAL_WIDTH_SHORT;
780 if (pos[0] & SHORT_ATOM_BYTESTRING) {
781 tok->type = OPAL_DTA_TOKENID_BYTESTRING;
782 } else if (pos[0] & SHORT_ATOM_SIGNED) {
783 tok->type = OPAL_DTA_TOKENID_SINT;
788 tok->type = OPAL_DTA_TOKENID_UINT;
790 pr_debug("uint64 with more than 8 bytes\n");
793 for (i = tok->len - 1; i > 0; i--) {
794 u_integer |= ((u64)pos[i] << (8 * b));
797 tok->stored.u = u_integer;
803 static ssize_t response_parse_medium(struct opal_resp_tok *tok,
807 tok->len = (((pos[0] & MEDIUM_ATOM_LEN_MASK) << 8) | pos[1]) + 2;
808 tok->width = OPAL_WIDTH_MEDIUM;
810 if (pos[0] & MEDIUM_ATOM_BYTESTRING)
811 tok->type = OPAL_DTA_TOKENID_BYTESTRING;
812 else if (pos[0] & MEDIUM_ATOM_SIGNED)
813 tok->type = OPAL_DTA_TOKENID_SINT;
815 tok->type = OPAL_DTA_TOKENID_UINT;
820 static ssize_t response_parse_long(struct opal_resp_tok *tok,
824 tok->len = ((pos[1] << 16) | (pos[2] << 8) | pos[3]) + 4;
825 tok->width = OPAL_WIDTH_LONG;
827 if (pos[0] & LONG_ATOM_BYTESTRING)
828 tok->type = OPAL_DTA_TOKENID_BYTESTRING;
829 else if (pos[0] & LONG_ATOM_SIGNED)
830 tok->type = OPAL_DTA_TOKENID_SINT;
832 tok->type = OPAL_DTA_TOKENID_UINT;
837 static ssize_t response_parse_token(struct opal_resp_tok *tok,
842 tok->type = OPAL_DTA_TOKENID_TOKEN;
843 tok->width = OPAL_WIDTH_TOKEN;
848 static int response_parse(const u8 *buf, size_t length,
849 struct parsed_resp *resp)
851 const struct opal_header *hdr;
852 struct opal_resp_tok *iter;
855 ssize_t token_length;
857 u32 clen, plen, slen;
865 hdr = (struct opal_header *)buf;
869 clen = be32_to_cpu(hdr->cp.length);
870 plen = be32_to_cpu(hdr->pkt.length);
871 slen = be32_to_cpu(hdr->subpkt.length);
872 pr_debug("Response size: cp: %u, pkt: %u, subpkt: %u\n",
875 if (clen == 0 || plen == 0 || slen == 0 ||
876 slen > IO_BUFFER_LENGTH - sizeof(*hdr)) {
877 pr_debug("Bad header length. cp: %u, pkt: %u, subpkt: %u\n",
879 print_buffer(pos, sizeof(*hdr));
883 if (pos > buf + length)
888 print_buffer(pos, total);
890 if (pos[0] <= TINY_ATOM_BYTE) /* tiny atom */
891 token_length = response_parse_tiny(iter, pos);
892 else if (pos[0] <= SHORT_ATOM_BYTE) /* short atom */
893 token_length = response_parse_short(iter, pos);
894 else if (pos[0] <= MEDIUM_ATOM_BYTE) /* medium atom */
895 token_length = response_parse_medium(iter, pos);
896 else if (pos[0] <= LONG_ATOM_BYTE) /* long atom */
897 token_length = response_parse_long(iter, pos);
898 else if (pos[0] == EMPTY_ATOM_BYTE) /* empty atom */
901 token_length = response_parse_token(iter, pos);
903 if (token_length < 0)
906 if (pos[0] != EMPTY_ATOM_BYTE)
910 total -= token_length;
914 resp->num = num_entries;
919 static size_t response_get_string(const struct parsed_resp *resp, int n,
923 const struct opal_resp_tok *tok;
926 tok = response_get_token(resp, n);
930 if (tok->type != OPAL_DTA_TOKENID_BYTESTRING) {
931 pr_debug("Token is not a byte string!\n");
935 switch (tok->width) {
936 case OPAL_WIDTH_TINY:
937 case OPAL_WIDTH_SHORT:
940 case OPAL_WIDTH_MEDIUM:
943 case OPAL_WIDTH_LONG:
947 pr_debug("Token has invalid width!\n");
951 *store = tok->pos + skip;
953 return tok->len - skip;
956 static u64 response_get_u64(const struct parsed_resp *resp, int n)
958 const struct opal_resp_tok *tok;
960 tok = response_get_token(resp, n);
964 if (tok->type != OPAL_DTA_TOKENID_UINT) {
965 pr_debug("Token is not unsigned int: %d\n", tok->type);
969 if (tok->width != OPAL_WIDTH_TINY && tok->width != OPAL_WIDTH_SHORT) {
970 pr_debug("Atom is not short or tiny: %d\n", tok->width);
974 return tok->stored.u;
977 static bool response_token_matches(const struct opal_resp_tok *token, u8 match)
980 token->type != OPAL_DTA_TOKENID_TOKEN ||
981 token->pos[0] != match)
986 static u8 response_status(const struct parsed_resp *resp)
988 const struct opal_resp_tok *tok;
990 tok = response_get_token(resp, 0);
991 if (response_token_matches(tok, OPAL_ENDOFSESSION))
995 return DTAERROR_NO_METHOD_STATUS;
997 tok = response_get_token(resp, resp->num - 5);
998 if (!response_token_matches(tok, OPAL_STARTLIST))
999 return DTAERROR_NO_METHOD_STATUS;
1001 tok = response_get_token(resp, resp->num - 1);
1002 if (!response_token_matches(tok, OPAL_ENDLIST))
1003 return DTAERROR_NO_METHOD_STATUS;
1005 return response_get_u64(resp, resp->num - 4);
1008 /* Parses and checks for errors */
1009 static int parse_and_check_status(struct opal_dev *dev)
1013 print_buffer(dev->cmd, dev->pos);
1015 error = response_parse(dev->resp, IO_BUFFER_LENGTH, &dev->parsed);
1017 pr_debug("Couldn't parse response.\n");
1021 return response_status(&dev->parsed);
1024 static void clear_opal_cmd(struct opal_dev *dev)
1026 dev->pos = sizeof(struct opal_header);
1027 memset(dev->cmd, 0, IO_BUFFER_LENGTH);
1030 static int cmd_start(struct opal_dev *dev, const u8 *uid, const u8 *method)
1034 clear_opal_cmd(dev);
1035 set_comid(dev, dev->comid);
1037 add_token_u8(&err, dev, OPAL_CALL);
1038 add_token_bytestring(&err, dev, uid, OPAL_UID_LENGTH);
1039 add_token_bytestring(&err, dev, method, OPAL_METHOD_LENGTH);
1042 * Every method call is followed by its parameters enclosed within
1043 * OPAL_STARTLIST and OPAL_ENDLIST tokens. We automatically open the
1044 * parameter list here and close it later in cmd_finalize.
1046 add_token_u8(&err, dev, OPAL_STARTLIST);
1051 static int start_opal_session_cont(struct opal_dev *dev)
1056 error = parse_and_check_status(dev);
1060 hsn = response_get_u64(&dev->parsed, 4);
1061 tsn = response_get_u64(&dev->parsed, 5);
1063 if (hsn != GENERIC_HOST_SESSION_NUM || tsn < FIRST_TPER_SESSION_NUM) {
1064 pr_debug("Couldn't authenticate session\n");
1074 static void add_suspend_info(struct opal_dev *dev,
1075 struct opal_suspend_data *sus)
1077 struct opal_suspend_data *iter;
1079 list_for_each_entry(iter, &dev->unlk_lst, node) {
1080 if (iter->lr == sus->lr) {
1081 list_del(&iter->node);
1086 list_add_tail(&sus->node, &dev->unlk_lst);
1089 static int end_session_cont(struct opal_dev *dev)
1094 return parse_and_check_status(dev);
1097 static int finalize_and_send(struct opal_dev *dev, cont_fn cont)
1101 ret = cmd_finalize(dev, dev->hsn, dev->tsn);
1103 pr_debug("Error finalizing command buffer: %d\n", ret);
1107 print_buffer(dev->cmd, dev->pos);
1109 return opal_send_recv(dev, cont);
1113 * request @column from table @table on device @dev. On success, the column
1114 * data will be available in dev->resp->tok[4]
1116 static int generic_get_column(struct opal_dev *dev, const u8 *table,
1121 err = cmd_start(dev, table, opalmethod[OPAL_GET]);
1123 add_token_u8(&err, dev, OPAL_STARTLIST);
1125 add_token_u8(&err, dev, OPAL_STARTNAME);
1126 add_token_u8(&err, dev, OPAL_STARTCOLUMN);
1127 add_token_u64(&err, dev, column);
1128 add_token_u8(&err, dev, OPAL_ENDNAME);
1130 add_token_u8(&err, dev, OPAL_STARTNAME);
1131 add_token_u8(&err, dev, OPAL_ENDCOLUMN);
1132 add_token_u64(&err, dev, column);
1133 add_token_u8(&err, dev, OPAL_ENDNAME);
1135 add_token_u8(&err, dev, OPAL_ENDLIST);
1140 return finalize_and_send(dev, parse_and_check_status);
1144 * see TCG SAS 5.3.2.3 for a description of the available columns
1146 * the result is provided in dev->resp->tok[4]
1148 static int generic_get_table_info(struct opal_dev *dev, const u8 *table_uid,
1151 u8 uid[OPAL_UID_LENGTH];
1152 const unsigned int half = OPAL_UID_LENGTH_HALF;
1154 /* sed-opal UIDs can be split in two halves:
1155 * first: actual table index
1156 * second: relative index in the table
1157 * so we have to get the first half of the OPAL_TABLE_TABLE and use the
1158 * first part of the target table as relative index into that table
1160 memcpy(uid, opaluid[OPAL_TABLE_TABLE], half);
1161 memcpy(uid + half, table_uid, half);
1163 return generic_get_column(dev, uid, column);
1166 static int gen_key(struct opal_dev *dev, void *data)
1168 u8 uid[OPAL_UID_LENGTH];
1171 memcpy(uid, dev->prev_data, min(sizeof(uid), dev->prev_d_len));
1172 kfree(dev->prev_data);
1173 dev->prev_data = NULL;
1175 err = cmd_start(dev, uid, opalmethod[OPAL_GENKEY]);
1178 pr_debug("Error building gen key command\n");
1183 return finalize_and_send(dev, parse_and_check_status);
1186 static int get_active_key_cont(struct opal_dev *dev)
1188 const char *activekey;
1192 error = parse_and_check_status(dev);
1196 keylen = response_get_string(&dev->parsed, 4, &activekey);
1198 pr_debug("%s: Couldn't extract the Activekey from the response\n",
1200 return OPAL_INVAL_PARAM;
1203 dev->prev_data = kmemdup(activekey, keylen, GFP_KERNEL);
1205 if (!dev->prev_data)
1208 dev->prev_d_len = keylen;
1213 static int get_active_key(struct opal_dev *dev, void *data)
1215 u8 uid[OPAL_UID_LENGTH];
1219 err = build_locking_range(uid, sizeof(uid), *lr);
1223 err = generic_get_column(dev, uid, OPAL_ACTIVEKEY);
1227 return get_active_key_cont(dev);
1230 static int generic_table_write_data(struct opal_dev *dev, const u64 data,
1231 u64 offset, u64 size, const u8 *uid)
1233 const u8 __user *src = (u8 __user *)(uintptr_t)data;
1239 /* do we fit in the available space? */
1240 err = generic_get_table_info(dev, uid, OPAL_TABLE_ROWS);
1242 pr_debug("Couldn't get the table size\n");
1246 len = response_get_u64(&dev->parsed, 4);
1247 if (size > len || offset > len - size) {
1248 pr_debug("Does not fit in the table (%llu vs. %llu)\n",
1249 offset + size, len);
1253 /* do the actual transmission(s) */
1254 while (off < size) {
1255 err = cmd_start(dev, uid, opalmethod[OPAL_SET]);
1256 add_token_u8(&err, dev, OPAL_STARTNAME);
1257 add_token_u8(&err, dev, OPAL_WHERE);
1258 add_token_u64(&err, dev, offset + off);
1259 add_token_u8(&err, dev, OPAL_ENDNAME);
1261 add_token_u8(&err, dev, OPAL_STARTNAME);
1262 add_token_u8(&err, dev, OPAL_VALUES);
1265 * The bytestring header is either 1 or 2 bytes, so assume 2.
1266 * There also needs to be enough space to accommodate the
1267 * trailing OPAL_ENDNAME (1 byte) and tokens added by
1270 len = min(remaining_size(dev) - (2+1+CMD_FINALIZE_BYTES_NEEDED),
1271 (size_t)(size - off));
1272 pr_debug("Write bytes %zu+%llu/%llu\n", off, len, size);
1274 dst = add_bytestring_header(&err, dev, len);
1278 if (copy_from_user(dst, src + off, len)) {
1285 add_token_u8(&err, dev, OPAL_ENDNAME);
1289 err = finalize_and_send(dev, parse_and_check_status);
1299 static int generic_lr_enable_disable(struct opal_dev *dev,
1300 u8 *uid, bool rle, bool wle,
1305 err = cmd_start(dev, uid, opalmethod[OPAL_SET]);
1307 add_token_u8(&err, dev, OPAL_STARTNAME);
1308 add_token_u8(&err, dev, OPAL_VALUES);
1309 add_token_u8(&err, dev, OPAL_STARTLIST);
1311 add_token_u8(&err, dev, OPAL_STARTNAME);
1312 add_token_u8(&err, dev, OPAL_READLOCKENABLED);
1313 add_token_u8(&err, dev, rle);
1314 add_token_u8(&err, dev, OPAL_ENDNAME);
1316 add_token_u8(&err, dev, OPAL_STARTNAME);
1317 add_token_u8(&err, dev, OPAL_WRITELOCKENABLED);
1318 add_token_u8(&err, dev, wle);
1319 add_token_u8(&err, dev, OPAL_ENDNAME);
1321 add_token_u8(&err, dev, OPAL_STARTNAME);
1322 add_token_u8(&err, dev, OPAL_READLOCKED);
1323 add_token_u8(&err, dev, rl);
1324 add_token_u8(&err, dev, OPAL_ENDNAME);
1326 add_token_u8(&err, dev, OPAL_STARTNAME);
1327 add_token_u8(&err, dev, OPAL_WRITELOCKED);
1328 add_token_u8(&err, dev, wl);
1329 add_token_u8(&err, dev, OPAL_ENDNAME);
1331 add_token_u8(&err, dev, OPAL_ENDLIST);
1332 add_token_u8(&err, dev, OPAL_ENDNAME);
1337 static inline int enable_global_lr(struct opal_dev *dev, u8 *uid,
1338 struct opal_user_lr_setup *setup)
1342 err = generic_lr_enable_disable(dev, uid, !!setup->RLE, !!setup->WLE,
1345 pr_debug("Failed to create enable global lr command\n");
1350 static int setup_locking_range(struct opal_dev *dev, void *data)
1352 u8 uid[OPAL_UID_LENGTH];
1353 struct opal_user_lr_setup *setup = data;
1357 lr = setup->session.opal_key.lr;
1358 err = build_locking_range(uid, sizeof(uid), lr);
1363 err = enable_global_lr(dev, uid, setup);
1365 err = cmd_start(dev, uid, opalmethod[OPAL_SET]);
1367 add_token_u8(&err, dev, OPAL_STARTNAME);
1368 add_token_u8(&err, dev, OPAL_VALUES);
1369 add_token_u8(&err, dev, OPAL_STARTLIST);
1371 add_token_u8(&err, dev, OPAL_STARTNAME);
1372 add_token_u8(&err, dev, OPAL_RANGESTART);
1373 add_token_u64(&err, dev, setup->range_start);
1374 add_token_u8(&err, dev, OPAL_ENDNAME);
1376 add_token_u8(&err, dev, OPAL_STARTNAME);
1377 add_token_u8(&err, dev, OPAL_RANGELENGTH);
1378 add_token_u64(&err, dev, setup->range_length);
1379 add_token_u8(&err, dev, OPAL_ENDNAME);
1381 add_token_u8(&err, dev, OPAL_STARTNAME);
1382 add_token_u8(&err, dev, OPAL_READLOCKENABLED);
1383 add_token_u64(&err, dev, !!setup->RLE);
1384 add_token_u8(&err, dev, OPAL_ENDNAME);
1386 add_token_u8(&err, dev, OPAL_STARTNAME);
1387 add_token_u8(&err, dev, OPAL_WRITELOCKENABLED);
1388 add_token_u64(&err, dev, !!setup->WLE);
1389 add_token_u8(&err, dev, OPAL_ENDNAME);
1391 add_token_u8(&err, dev, OPAL_ENDLIST);
1392 add_token_u8(&err, dev, OPAL_ENDNAME);
1395 pr_debug("Error building Setup Locking range command.\n");
1399 return finalize_and_send(dev, parse_and_check_status);
1402 static int start_generic_opal_session(struct opal_dev *dev,
1404 enum opal_uid sp_type,
1411 if (key == NULL && auth != OPAL_ANYBODY_UID)
1412 return OPAL_INVAL_PARAM;
1414 hsn = GENERIC_HOST_SESSION_NUM;
1415 err = cmd_start(dev, opaluid[OPAL_SMUID_UID],
1416 opalmethod[OPAL_STARTSESSION]);
1418 add_token_u64(&err, dev, hsn);
1419 add_token_bytestring(&err, dev, opaluid[sp_type], OPAL_UID_LENGTH);
1420 add_token_u8(&err, dev, 1);
1423 case OPAL_ANYBODY_UID:
1425 case OPAL_ADMIN1_UID:
1428 add_token_u8(&err, dev, OPAL_STARTNAME);
1429 add_token_u8(&err, dev, 0); /* HostChallenge */
1430 add_token_bytestring(&err, dev, key, key_len);
1431 add_token_u8(&err, dev, OPAL_ENDNAME);
1432 add_token_u8(&err, dev, OPAL_STARTNAME);
1433 add_token_u8(&err, dev, 3); /* HostSignAuth */
1434 add_token_bytestring(&err, dev, opaluid[auth],
1436 add_token_u8(&err, dev, OPAL_ENDNAME);
1439 pr_debug("Cannot start Admin SP session with auth %d\n", auth);
1440 return OPAL_INVAL_PARAM;
1444 pr_debug("Error building start adminsp session command.\n");
1448 return finalize_and_send(dev, start_opal_session_cont);
1451 static int start_anybodyASP_opal_session(struct opal_dev *dev, void *data)
1453 return start_generic_opal_session(dev, OPAL_ANYBODY_UID,
1454 OPAL_ADMINSP_UID, NULL, 0);
1457 static int start_SIDASP_opal_session(struct opal_dev *dev, void *data)
1460 const u8 *key = dev->prev_data;
1463 const struct opal_key *okey = data;
1465 ret = start_generic_opal_session(dev, OPAL_SID_UID,
1470 ret = start_generic_opal_session(dev, OPAL_SID_UID,
1472 key, dev->prev_d_len);
1474 dev->prev_data = NULL;
1480 static int start_admin1LSP_opal_session(struct opal_dev *dev, void *data)
1482 struct opal_key *key = data;
1484 return start_generic_opal_session(dev, OPAL_ADMIN1_UID,
1486 key->key, key->key_len);
1489 static int start_PSID_opal_session(struct opal_dev *dev, void *data)
1491 const struct opal_key *okey = data;
1493 return start_generic_opal_session(dev, OPAL_PSID_UID,
1499 static int start_auth_opal_session(struct opal_dev *dev, void *data)
1501 struct opal_session_info *session = data;
1502 u8 lk_ul_user[OPAL_UID_LENGTH];
1503 size_t keylen = session->opal_key.key_len;
1506 u8 *key = session->opal_key.key;
1507 u32 hsn = GENERIC_HOST_SESSION_NUM;
1510 err = build_locking_user(lk_ul_user, sizeof(lk_ul_user),
1511 session->opal_key.lr);
1512 else if (session->who != OPAL_ADMIN1 && !session->sum)
1513 err = build_locking_user(lk_ul_user, sizeof(lk_ul_user),
1516 memcpy(lk_ul_user, opaluid[OPAL_ADMIN1_UID], OPAL_UID_LENGTH);
1521 err = cmd_start(dev, opaluid[OPAL_SMUID_UID],
1522 opalmethod[OPAL_STARTSESSION]);
1524 add_token_u64(&err, dev, hsn);
1525 add_token_bytestring(&err, dev, opaluid[OPAL_LOCKINGSP_UID],
1527 add_token_u8(&err, dev, 1);
1528 add_token_u8(&err, dev, OPAL_STARTNAME);
1529 add_token_u8(&err, dev, 0);
1530 add_token_bytestring(&err, dev, key, keylen);
1531 add_token_u8(&err, dev, OPAL_ENDNAME);
1532 add_token_u8(&err, dev, OPAL_STARTNAME);
1533 add_token_u8(&err, dev, 3);
1534 add_token_bytestring(&err, dev, lk_ul_user, OPAL_UID_LENGTH);
1535 add_token_u8(&err, dev, OPAL_ENDNAME);
1538 pr_debug("Error building STARTSESSION command.\n");
1542 return finalize_and_send(dev, start_opal_session_cont);
1545 static int revert_tper(struct opal_dev *dev, void *data)
1549 err = cmd_start(dev, opaluid[OPAL_ADMINSP_UID],
1550 opalmethod[OPAL_REVERT]);
1552 pr_debug("Error building REVERT TPER command.\n");
1556 return finalize_and_send(dev, parse_and_check_status);
1559 static int internal_activate_user(struct opal_dev *dev, void *data)
1561 struct opal_session_info *session = data;
1562 u8 uid[OPAL_UID_LENGTH];
1565 memcpy(uid, opaluid[OPAL_USER1_UID], OPAL_UID_LENGTH);
1566 uid[7] = session->who;
1568 err = cmd_start(dev, uid, opalmethod[OPAL_SET]);
1569 add_token_u8(&err, dev, OPAL_STARTNAME);
1570 add_token_u8(&err, dev, OPAL_VALUES);
1571 add_token_u8(&err, dev, OPAL_STARTLIST);
1572 add_token_u8(&err, dev, OPAL_STARTNAME);
1573 add_token_u8(&err, dev, 5); /* Enabled */
1574 add_token_u8(&err, dev, OPAL_TRUE);
1575 add_token_u8(&err, dev, OPAL_ENDNAME);
1576 add_token_u8(&err, dev, OPAL_ENDLIST);
1577 add_token_u8(&err, dev, OPAL_ENDNAME);
1580 pr_debug("Error building Activate UserN command.\n");
1584 return finalize_and_send(dev, parse_and_check_status);
1587 static int erase_locking_range(struct opal_dev *dev, void *data)
1589 struct opal_session_info *session = data;
1590 u8 uid[OPAL_UID_LENGTH];
1593 if (build_locking_range(uid, sizeof(uid), session->opal_key.lr) < 0)
1596 err = cmd_start(dev, uid, opalmethod[OPAL_ERASE]);
1599 pr_debug("Error building Erase Locking Range Command.\n");
1603 return finalize_and_send(dev, parse_and_check_status);
1606 static int set_mbr_done(struct opal_dev *dev, void *data)
1608 u8 *mbr_done_tf = data;
1611 err = cmd_start(dev, opaluid[OPAL_MBRCONTROL],
1612 opalmethod[OPAL_SET]);
1614 add_token_u8(&err, dev, OPAL_STARTNAME);
1615 add_token_u8(&err, dev, OPAL_VALUES);
1616 add_token_u8(&err, dev, OPAL_STARTLIST);
1617 add_token_u8(&err, dev, OPAL_STARTNAME);
1618 add_token_u8(&err, dev, OPAL_MBRDONE);
1619 add_token_u8(&err, dev, *mbr_done_tf); /* Done T or F */
1620 add_token_u8(&err, dev, OPAL_ENDNAME);
1621 add_token_u8(&err, dev, OPAL_ENDLIST);
1622 add_token_u8(&err, dev, OPAL_ENDNAME);
1625 pr_debug("Error Building set MBR Done command\n");
1629 return finalize_and_send(dev, parse_and_check_status);
1632 static int set_mbr_enable_disable(struct opal_dev *dev, void *data)
1634 u8 *mbr_en_dis = data;
1637 err = cmd_start(dev, opaluid[OPAL_MBRCONTROL],
1638 opalmethod[OPAL_SET]);
1640 add_token_u8(&err, dev, OPAL_STARTNAME);
1641 add_token_u8(&err, dev, OPAL_VALUES);
1642 add_token_u8(&err, dev, OPAL_STARTLIST);
1643 add_token_u8(&err, dev, OPAL_STARTNAME);
1644 add_token_u8(&err, dev, OPAL_MBRENABLE);
1645 add_token_u8(&err, dev, *mbr_en_dis);
1646 add_token_u8(&err, dev, OPAL_ENDNAME);
1647 add_token_u8(&err, dev, OPAL_ENDLIST);
1648 add_token_u8(&err, dev, OPAL_ENDNAME);
1651 pr_debug("Error Building set MBR done command\n");
1655 return finalize_and_send(dev, parse_and_check_status);
1658 static int write_shadow_mbr(struct opal_dev *dev, void *data)
1660 struct opal_shadow_mbr *shadow = data;
1662 return generic_table_write_data(dev, shadow->data, shadow->offset,
1663 shadow->size, opaluid[OPAL_MBR]);
1666 static int generic_pw_cmd(u8 *key, size_t key_len, u8 *cpin_uid,
1667 struct opal_dev *dev)
1671 err = cmd_start(dev, cpin_uid, opalmethod[OPAL_SET]);
1673 add_token_u8(&err, dev, OPAL_STARTNAME);
1674 add_token_u8(&err, dev, OPAL_VALUES);
1675 add_token_u8(&err, dev, OPAL_STARTLIST);
1676 add_token_u8(&err, dev, OPAL_STARTNAME);
1677 add_token_u8(&err, dev, OPAL_PIN);
1678 add_token_bytestring(&err, dev, key, key_len);
1679 add_token_u8(&err, dev, OPAL_ENDNAME);
1680 add_token_u8(&err, dev, OPAL_ENDLIST);
1681 add_token_u8(&err, dev, OPAL_ENDNAME);
1686 static int set_new_pw(struct opal_dev *dev, void *data)
1688 u8 cpin_uid[OPAL_UID_LENGTH];
1689 struct opal_session_info *usr = data;
1691 memcpy(cpin_uid, opaluid[OPAL_C_PIN_ADMIN1], OPAL_UID_LENGTH);
1693 if (usr->who != OPAL_ADMIN1) {
1696 cpin_uid[7] = usr->opal_key.lr + 1;
1698 cpin_uid[7] = usr->who;
1701 if (generic_pw_cmd(usr->opal_key.key, usr->opal_key.key_len,
1703 pr_debug("Error building set password command.\n");
1707 return finalize_and_send(dev, parse_and_check_status);
1710 static int set_sid_cpin_pin(struct opal_dev *dev, void *data)
1712 u8 cpin_uid[OPAL_UID_LENGTH];
1713 struct opal_key *key = data;
1715 memcpy(cpin_uid, opaluid[OPAL_C_PIN_SID], OPAL_UID_LENGTH);
1717 if (generic_pw_cmd(key->key, key->key_len, cpin_uid, dev)) {
1718 pr_debug("Error building Set SID cpin\n");
1721 return finalize_and_send(dev, parse_and_check_status);
1724 static int add_user_to_lr(struct opal_dev *dev, void *data)
1726 u8 lr_buffer[OPAL_UID_LENGTH];
1727 u8 user_uid[OPAL_UID_LENGTH];
1728 struct opal_lock_unlock *lkul = data;
1731 memcpy(lr_buffer, opaluid[OPAL_LOCKINGRANGE_ACE_RDLOCKED],
1734 if (lkul->l_state == OPAL_RW)
1735 memcpy(lr_buffer, opaluid[OPAL_LOCKINGRANGE_ACE_WRLOCKED],
1738 lr_buffer[7] = lkul->session.opal_key.lr;
1740 memcpy(user_uid, opaluid[OPAL_USER1_UID], OPAL_UID_LENGTH);
1742 user_uid[7] = lkul->session.who;
1744 err = cmd_start(dev, lr_buffer, opalmethod[OPAL_SET]);
1746 add_token_u8(&err, dev, OPAL_STARTNAME);
1747 add_token_u8(&err, dev, OPAL_VALUES);
1749 add_token_u8(&err, dev, OPAL_STARTLIST);
1750 add_token_u8(&err, dev, OPAL_STARTNAME);
1751 add_token_u8(&err, dev, 3);
1753 add_token_u8(&err, dev, OPAL_STARTLIST);
1756 add_token_u8(&err, dev, OPAL_STARTNAME);
1757 add_token_bytestring(&err, dev,
1758 opaluid[OPAL_HALF_UID_AUTHORITY_OBJ_REF],
1760 add_token_bytestring(&err, dev, user_uid, OPAL_UID_LENGTH);
1761 add_token_u8(&err, dev, OPAL_ENDNAME);
1764 add_token_u8(&err, dev, OPAL_STARTNAME);
1765 add_token_bytestring(&err, dev,
1766 opaluid[OPAL_HALF_UID_AUTHORITY_OBJ_REF],
1768 add_token_bytestring(&err, dev, user_uid, OPAL_UID_LENGTH);
1769 add_token_u8(&err, dev, OPAL_ENDNAME);
1772 add_token_u8(&err, dev, OPAL_STARTNAME);
1773 add_token_bytestring(&err, dev, opaluid[OPAL_HALF_UID_BOOLEAN_ACE],
1775 add_token_u8(&err, dev, 1);
1776 add_token_u8(&err, dev, OPAL_ENDNAME);
1779 add_token_u8(&err, dev, OPAL_ENDLIST);
1780 add_token_u8(&err, dev, OPAL_ENDNAME);
1781 add_token_u8(&err, dev, OPAL_ENDLIST);
1782 add_token_u8(&err, dev, OPAL_ENDNAME);
1785 pr_debug("Error building add user to locking range command.\n");
1789 return finalize_and_send(dev, parse_and_check_status);
1792 static int lock_unlock_locking_range(struct opal_dev *dev, void *data)
1794 u8 lr_buffer[OPAL_UID_LENGTH];
1795 struct opal_lock_unlock *lkul = data;
1796 u8 read_locked = 1, write_locked = 1;
1799 if (build_locking_range(lr_buffer, sizeof(lr_buffer),
1800 lkul->session.opal_key.lr) < 0)
1803 switch (lkul->l_state) {
1813 /* vars are initialized to locked */
1816 pr_debug("Tried to set an invalid locking state... returning to uland\n");
1817 return OPAL_INVAL_PARAM;
1820 err = cmd_start(dev, lr_buffer, opalmethod[OPAL_SET]);
1822 add_token_u8(&err, dev, OPAL_STARTNAME);
1823 add_token_u8(&err, dev, OPAL_VALUES);
1824 add_token_u8(&err, dev, OPAL_STARTLIST);
1826 add_token_u8(&err, dev, OPAL_STARTNAME);
1827 add_token_u8(&err, dev, OPAL_READLOCKED);
1828 add_token_u8(&err, dev, read_locked);
1829 add_token_u8(&err, dev, OPAL_ENDNAME);
1831 add_token_u8(&err, dev, OPAL_STARTNAME);
1832 add_token_u8(&err, dev, OPAL_WRITELOCKED);
1833 add_token_u8(&err, dev, write_locked);
1834 add_token_u8(&err, dev, OPAL_ENDNAME);
1836 add_token_u8(&err, dev, OPAL_ENDLIST);
1837 add_token_u8(&err, dev, OPAL_ENDNAME);
1840 pr_debug("Error building SET command.\n");
1844 return finalize_and_send(dev, parse_and_check_status);
1848 static int lock_unlock_locking_range_sum(struct opal_dev *dev, void *data)
1850 u8 lr_buffer[OPAL_UID_LENGTH];
1851 u8 read_locked = 1, write_locked = 1;
1852 struct opal_lock_unlock *lkul = data;
1855 clear_opal_cmd(dev);
1856 set_comid(dev, dev->comid);
1858 if (build_locking_range(lr_buffer, sizeof(lr_buffer),
1859 lkul->session.opal_key.lr) < 0)
1862 switch (lkul->l_state) {
1872 /* vars are initialized to locked */
1875 pr_debug("Tried to set an invalid locking state.\n");
1876 return OPAL_INVAL_PARAM;
1878 ret = generic_lr_enable_disable(dev, lr_buffer, 1, 1,
1879 read_locked, write_locked);
1882 pr_debug("Error building SET command.\n");
1886 return finalize_and_send(dev, parse_and_check_status);
1889 static int activate_lsp(struct opal_dev *dev, void *data)
1891 struct opal_lr_act *opal_act = data;
1892 u8 user_lr[OPAL_UID_LENGTH];
1895 err = cmd_start(dev, opaluid[OPAL_LOCKINGSP_UID],
1896 opalmethod[OPAL_ACTIVATE]);
1898 if (opal_act->sum) {
1899 err = build_locking_range(user_lr, sizeof(user_lr),
1904 add_token_u8(&err, dev, OPAL_STARTNAME);
1905 add_token_u64(&err, dev, OPAL_SUM_SET_LIST);
1907 add_token_u8(&err, dev, OPAL_STARTLIST);
1908 add_token_bytestring(&err, dev, user_lr, OPAL_UID_LENGTH);
1909 for (i = 1; i < opal_act->num_lrs; i++) {
1910 user_lr[7] = opal_act->lr[i];
1911 add_token_bytestring(&err, dev, user_lr, OPAL_UID_LENGTH);
1913 add_token_u8(&err, dev, OPAL_ENDLIST);
1914 add_token_u8(&err, dev, OPAL_ENDNAME);
1918 pr_debug("Error building Activate LockingSP command.\n");
1922 return finalize_and_send(dev, parse_and_check_status);
1925 /* Determine if we're in the Manufactured Inactive or Active state */
1926 static int get_lsp_lifecycle(struct opal_dev *dev, void *data)
1931 err = generic_get_column(dev, opaluid[OPAL_LOCKINGSP_UID],
1936 lc_status = response_get_u64(&dev->parsed, 4);
1937 /* 0x08 is Manufactured Inactive */
1938 /* 0x09 is Manufactured */
1939 if (lc_status != OPAL_MANUFACTURED_INACTIVE) {
1940 pr_debug("Couldn't determine the status of the Lifecycle state\n");
1947 static int get_msid_cpin_pin(struct opal_dev *dev, void *data)
1949 const char *msid_pin;
1953 err = generic_get_column(dev, opaluid[OPAL_C_PIN_MSID], OPAL_PIN);
1957 strlen = response_get_string(&dev->parsed, 4, &msid_pin);
1959 pr_debug("Couldn't extract MSID_CPIN from response\n");
1960 return OPAL_INVAL_PARAM;
1963 dev->prev_data = kmemdup(msid_pin, strlen, GFP_KERNEL);
1964 if (!dev->prev_data)
1967 dev->prev_d_len = strlen;
1972 static int write_table_data(struct opal_dev *dev, void *data)
1974 struct opal_read_write_table *write_tbl = data;
1976 return generic_table_write_data(dev, write_tbl->data, write_tbl->offset,
1977 write_tbl->size, write_tbl->table_uid);
1980 static int read_table_data_cont(struct opal_dev *dev)
1983 const char *data_read;
1985 err = parse_and_check_status(dev);
1989 dev->prev_d_len = response_get_string(&dev->parsed, 1, &data_read);
1990 dev->prev_data = (void *)data_read;
1991 if (!dev->prev_data) {
1992 pr_debug("%s: Couldn't read data from the table.\n", __func__);
1993 return OPAL_INVAL_PARAM;
2000 * IO_BUFFER_LENGTH = 2048
2001 * sizeof(header) = 56
2002 * No. of Token Bytes in the Response = 11
2003 * MAX size of data that can be carried in response buffer
2004 * at a time is : 2048 - (56 + 11) = 1981 = 0x7BD.
2006 #define OPAL_MAX_READ_TABLE (0x7BD)
2008 static int read_table_data(struct opal_dev *dev, void *data)
2010 struct opal_read_write_table *read_tbl = data;
2012 size_t off = 0, max_read_size = OPAL_MAX_READ_TABLE;
2014 u64 offset = read_tbl->offset, read_size = read_tbl->size - 1;
2017 err = generic_get_table_info(dev, read_tbl->table_uid, OPAL_TABLE_ROWS);
2019 pr_debug("Couldn't get the table size\n");
2023 table_len = response_get_u64(&dev->parsed, 4);
2025 /* Check if the user is trying to read from the table limits */
2026 if (read_size > table_len || offset > table_len - read_size) {
2027 pr_debug("Read size exceeds the Table size limits (%llu vs. %llu)\n",
2028 offset + read_size, table_len);
2032 while (off < read_size) {
2033 err = cmd_start(dev, read_tbl->table_uid, opalmethod[OPAL_GET]);
2035 add_token_u8(&err, dev, OPAL_STARTLIST);
2036 add_token_u8(&err, dev, OPAL_STARTNAME);
2037 add_token_u8(&err, dev, OPAL_STARTROW);
2038 add_token_u64(&err, dev, offset + off); /* start row value */
2039 add_token_u8(&err, dev, OPAL_ENDNAME);
2041 add_token_u8(&err, dev, OPAL_STARTNAME);
2042 add_token_u8(&err, dev, OPAL_ENDROW);
2044 len = min(max_read_size, (size_t)(read_size - off));
2045 add_token_u64(&err, dev, offset + off + len); /* end row value
2047 add_token_u8(&err, dev, OPAL_ENDNAME);
2048 add_token_u8(&err, dev, OPAL_ENDLIST);
2051 pr_debug("Error building read table data command.\n");
2055 err = finalize_and_send(dev, read_table_data_cont);
2059 /* len+1: This includes the NULL terminator at the end*/
2060 if (dev->prev_d_len > len + 1) {
2065 dst = (u8 __user *)(uintptr_t)read_tbl->data;
2066 if (copy_to_user(dst + off, dev->prev_data, dev->prev_d_len)) {
2067 pr_debug("Error copying data to userspace\n");
2071 dev->prev_data = NULL;
2079 static int end_opal_session(struct opal_dev *dev, void *data)
2083 clear_opal_cmd(dev);
2084 set_comid(dev, dev->comid);
2085 add_token_u8(&err, dev, OPAL_ENDOFSESSION);
2090 return finalize_and_send(dev, end_session_cont);
2093 static int end_opal_session_error(struct opal_dev *dev)
2095 const struct opal_step error_end_session = {
2099 return execute_step(dev, &error_end_session, 0);
2102 static inline void setup_opal_dev(struct opal_dev *dev)
2106 dev->prev_data = NULL;
2109 static int check_opal_support(struct opal_dev *dev)
2113 mutex_lock(&dev->dev_lock);
2114 setup_opal_dev(dev);
2115 ret = opal_discovery0_step(dev);
2116 dev->supported = !ret;
2117 mutex_unlock(&dev->dev_lock);
2122 static void clean_opal_dev(struct opal_dev *dev)
2125 struct opal_suspend_data *suspend, *next;
2127 mutex_lock(&dev->dev_lock);
2128 list_for_each_entry_safe(suspend, next, &dev->unlk_lst, node) {
2129 list_del(&suspend->node);
2132 mutex_unlock(&dev->dev_lock);
2135 void free_opal_dev(struct opal_dev *dev)
2140 clean_opal_dev(dev);
2145 EXPORT_SYMBOL(free_opal_dev);
2147 struct opal_dev *init_opal_dev(void *data, sec_send_recv *send_recv)
2149 struct opal_dev *dev;
2151 dev = kmalloc(sizeof(*dev), GFP_KERNEL);
2156 * Presumably DMA-able buffers must be cache-aligned. Kmalloc makes
2157 * sure the allocated buffer is DMA-safe in that regard.
2159 dev->cmd = kmalloc(IO_BUFFER_LENGTH, GFP_KERNEL);
2163 dev->resp = kmalloc(IO_BUFFER_LENGTH, GFP_KERNEL);
2167 INIT_LIST_HEAD(&dev->unlk_lst);
2168 mutex_init(&dev->dev_lock);
2170 dev->send_recv = send_recv;
2171 if (check_opal_support(dev) != 0) {
2172 pr_debug("Opal is not supported on this device\n");
2189 EXPORT_SYMBOL(init_opal_dev);
2191 static int opal_secure_erase_locking_range(struct opal_dev *dev,
2192 struct opal_session_info *opal_session)
2194 const struct opal_step erase_steps[] = {
2195 { start_auth_opal_session, opal_session },
2196 { get_active_key, &opal_session->opal_key.lr },
2198 { end_opal_session, }
2202 mutex_lock(&dev->dev_lock);
2203 setup_opal_dev(dev);
2204 ret = execute_steps(dev, erase_steps, ARRAY_SIZE(erase_steps));
2205 mutex_unlock(&dev->dev_lock);
2210 static int opal_erase_locking_range(struct opal_dev *dev,
2211 struct opal_session_info *opal_session)
2213 const struct opal_step erase_steps[] = {
2214 { start_auth_opal_session, opal_session },
2215 { erase_locking_range, opal_session },
2216 { end_opal_session, }
2220 mutex_lock(&dev->dev_lock);
2221 setup_opal_dev(dev);
2222 ret = execute_steps(dev, erase_steps, ARRAY_SIZE(erase_steps));
2223 mutex_unlock(&dev->dev_lock);
2228 static int opal_enable_disable_shadow_mbr(struct opal_dev *dev,
2229 struct opal_mbr_data *opal_mbr)
2231 u8 enable_disable = opal_mbr->enable_disable == OPAL_MBR_ENABLE ?
2232 OPAL_TRUE : OPAL_FALSE;
2234 const struct opal_step mbr_steps[] = {
2235 { start_admin1LSP_opal_session, &opal_mbr->key },
2236 { set_mbr_done, &enable_disable },
2237 { end_opal_session, },
2238 { start_admin1LSP_opal_session, &opal_mbr->key },
2239 { set_mbr_enable_disable, &enable_disable },
2240 { end_opal_session, }
2244 if (opal_mbr->enable_disable != OPAL_MBR_ENABLE &&
2245 opal_mbr->enable_disable != OPAL_MBR_DISABLE)
2248 mutex_lock(&dev->dev_lock);
2249 setup_opal_dev(dev);
2250 ret = execute_steps(dev, mbr_steps, ARRAY_SIZE(mbr_steps));
2251 mutex_unlock(&dev->dev_lock);
2256 static int opal_set_mbr_done(struct opal_dev *dev,
2257 struct opal_mbr_done *mbr_done)
2259 u8 mbr_done_tf = mbr_done->done_flag == OPAL_MBR_DONE ?
2260 OPAL_TRUE : OPAL_FALSE;
2262 const struct opal_step mbr_steps[] = {
2263 { start_admin1LSP_opal_session, &mbr_done->key },
2264 { set_mbr_done, &mbr_done_tf },
2265 { end_opal_session, }
2269 if (mbr_done->done_flag != OPAL_MBR_DONE &&
2270 mbr_done->done_flag != OPAL_MBR_NOT_DONE)
2273 mutex_lock(&dev->dev_lock);
2274 setup_opal_dev(dev);
2275 ret = execute_steps(dev, mbr_steps, ARRAY_SIZE(mbr_steps));
2276 mutex_unlock(&dev->dev_lock);
2281 static int opal_write_shadow_mbr(struct opal_dev *dev,
2282 struct opal_shadow_mbr *info)
2284 const struct opal_step mbr_steps[] = {
2285 { start_admin1LSP_opal_session, &info->key },
2286 { write_shadow_mbr, info },
2287 { end_opal_session, }
2291 if (info->size == 0)
2294 mutex_lock(&dev->dev_lock);
2295 setup_opal_dev(dev);
2296 ret = execute_steps(dev, mbr_steps, ARRAY_SIZE(mbr_steps));
2297 mutex_unlock(&dev->dev_lock);
2302 static int opal_save(struct opal_dev *dev, struct opal_lock_unlock *lk_unlk)
2304 struct opal_suspend_data *suspend;
2306 suspend = kzalloc(sizeof(*suspend), GFP_KERNEL);
2310 suspend->unlk = *lk_unlk;
2311 suspend->lr = lk_unlk->session.opal_key.lr;
2313 mutex_lock(&dev->dev_lock);
2314 setup_opal_dev(dev);
2315 add_suspend_info(dev, suspend);
2316 mutex_unlock(&dev->dev_lock);
2321 static int opal_add_user_to_lr(struct opal_dev *dev,
2322 struct opal_lock_unlock *lk_unlk)
2324 const struct opal_step steps[] = {
2325 { start_admin1LSP_opal_session, &lk_unlk->session.opal_key },
2326 { add_user_to_lr, lk_unlk },
2327 { end_opal_session, }
2331 if (lk_unlk->l_state != OPAL_RO &&
2332 lk_unlk->l_state != OPAL_RW) {
2333 pr_debug("Locking state was not RO or RW\n");
2337 if (lk_unlk->session.who < OPAL_USER1 ||
2338 lk_unlk->session.who > OPAL_USER9) {
2339 pr_debug("Authority was not within the range of users: %d\n",
2340 lk_unlk->session.who);
2344 if (lk_unlk->session.sum) {
2345 pr_debug("%s not supported in sum. Use setup locking range\n",
2350 mutex_lock(&dev->dev_lock);
2351 setup_opal_dev(dev);
2352 ret = execute_steps(dev, steps, ARRAY_SIZE(steps));
2353 mutex_unlock(&dev->dev_lock);
2358 static int opal_reverttper(struct opal_dev *dev, struct opal_key *opal, bool psid)
2360 /* controller will terminate session */
2361 const struct opal_step revert_steps[] = {
2362 { start_SIDASP_opal_session, opal },
2365 const struct opal_step psid_revert_steps[] = {
2366 { start_PSID_opal_session, opal },
2372 mutex_lock(&dev->dev_lock);
2373 setup_opal_dev(dev);
2375 ret = execute_steps(dev, psid_revert_steps,
2376 ARRAY_SIZE(psid_revert_steps));
2378 ret = execute_steps(dev, revert_steps,
2379 ARRAY_SIZE(revert_steps));
2380 mutex_unlock(&dev->dev_lock);
2383 * If we successfully reverted lets clean
2384 * any saved locking ranges.
2387 clean_opal_dev(dev);
2392 static int __opal_lock_unlock(struct opal_dev *dev,
2393 struct opal_lock_unlock *lk_unlk)
2395 const struct opal_step unlock_steps[] = {
2396 { start_auth_opal_session, &lk_unlk->session },
2397 { lock_unlock_locking_range, lk_unlk },
2398 { end_opal_session, }
2400 const struct opal_step unlock_sum_steps[] = {
2401 { start_auth_opal_session, &lk_unlk->session },
2402 { lock_unlock_locking_range_sum, lk_unlk },
2403 { end_opal_session, }
2406 if (lk_unlk->session.sum)
2407 return execute_steps(dev, unlock_sum_steps,
2408 ARRAY_SIZE(unlock_sum_steps));
2410 return execute_steps(dev, unlock_steps,
2411 ARRAY_SIZE(unlock_steps));
2414 static int __opal_set_mbr_done(struct opal_dev *dev, struct opal_key *key)
2416 u8 mbr_done_tf = OPAL_TRUE;
2417 const struct opal_step mbrdone_step[] = {
2418 { start_admin1LSP_opal_session, key },
2419 { set_mbr_done, &mbr_done_tf },
2420 { end_opal_session, }
2423 return execute_steps(dev, mbrdone_step, ARRAY_SIZE(mbrdone_step));
2426 static int opal_lock_unlock(struct opal_dev *dev,
2427 struct opal_lock_unlock *lk_unlk)
2431 if (lk_unlk->session.who > OPAL_USER9)
2434 mutex_lock(&dev->dev_lock);
2435 ret = __opal_lock_unlock(dev, lk_unlk);
2436 mutex_unlock(&dev->dev_lock);
2441 static int opal_take_ownership(struct opal_dev *dev, struct opal_key *opal)
2443 const struct opal_step owner_steps[] = {
2444 { start_anybodyASP_opal_session, },
2445 { get_msid_cpin_pin, },
2446 { end_opal_session, },
2447 { start_SIDASP_opal_session, opal },
2448 { set_sid_cpin_pin, opal },
2449 { end_opal_session, }
2456 mutex_lock(&dev->dev_lock);
2457 setup_opal_dev(dev);
2458 ret = execute_steps(dev, owner_steps, ARRAY_SIZE(owner_steps));
2459 mutex_unlock(&dev->dev_lock);
2464 static int opal_activate_lsp(struct opal_dev *dev,
2465 struct opal_lr_act *opal_lr_act)
2467 const struct opal_step active_steps[] = {
2468 { start_SIDASP_opal_session, &opal_lr_act->key },
2469 { get_lsp_lifecycle, },
2470 { activate_lsp, opal_lr_act },
2471 { end_opal_session, }
2475 if (!opal_lr_act->num_lrs || opal_lr_act->num_lrs > OPAL_MAX_LRS)
2478 mutex_lock(&dev->dev_lock);
2479 setup_opal_dev(dev);
2480 ret = execute_steps(dev, active_steps, ARRAY_SIZE(active_steps));
2481 mutex_unlock(&dev->dev_lock);
2486 static int opal_setup_locking_range(struct opal_dev *dev,
2487 struct opal_user_lr_setup *opal_lrs)
2489 const struct opal_step lr_steps[] = {
2490 { start_auth_opal_session, &opal_lrs->session },
2491 { setup_locking_range, opal_lrs },
2492 { end_opal_session, }
2496 mutex_lock(&dev->dev_lock);
2497 setup_opal_dev(dev);
2498 ret = execute_steps(dev, lr_steps, ARRAY_SIZE(lr_steps));
2499 mutex_unlock(&dev->dev_lock);
2504 static int opal_set_new_pw(struct opal_dev *dev, struct opal_new_pw *opal_pw)
2506 const struct opal_step pw_steps[] = {
2507 { start_auth_opal_session, &opal_pw->session },
2508 { set_new_pw, &opal_pw->new_user_pw },
2509 { end_opal_session, }
2513 if (opal_pw->session.who > OPAL_USER9 ||
2514 opal_pw->new_user_pw.who > OPAL_USER9)
2517 mutex_lock(&dev->dev_lock);
2518 setup_opal_dev(dev);
2519 ret = execute_steps(dev, pw_steps, ARRAY_SIZE(pw_steps));
2520 mutex_unlock(&dev->dev_lock);
2525 static int opal_activate_user(struct opal_dev *dev,
2526 struct opal_session_info *opal_session)
2528 const struct opal_step act_steps[] = {
2529 { start_admin1LSP_opal_session, &opal_session->opal_key },
2530 { internal_activate_user, opal_session },
2531 { end_opal_session, }
2535 /* We can't activate Admin1 it's active as manufactured */
2536 if (opal_session->who < OPAL_USER1 ||
2537 opal_session->who > OPAL_USER9) {
2538 pr_debug("Who was not a valid user: %d\n", opal_session->who);
2542 mutex_lock(&dev->dev_lock);
2543 setup_opal_dev(dev);
2544 ret = execute_steps(dev, act_steps, ARRAY_SIZE(act_steps));
2545 mutex_unlock(&dev->dev_lock);
2550 bool opal_unlock_from_suspend(struct opal_dev *dev)
2552 struct opal_suspend_data *suspend;
2553 bool was_failure = false;
2559 if (!dev->supported)
2562 mutex_lock(&dev->dev_lock);
2563 setup_opal_dev(dev);
2565 list_for_each_entry(suspend, &dev->unlk_lst, node) {
2569 ret = __opal_lock_unlock(dev, &suspend->unlk);
2571 pr_debug("Failed to unlock LR %hhu with sum %d\n",
2572 suspend->unlk.session.opal_key.lr,
2573 suspend->unlk.session.sum);
2577 if (dev->mbr_enabled) {
2578 ret = __opal_set_mbr_done(dev, &suspend->unlk.session.opal_key);
2580 pr_debug("Failed to set MBR Done in S3 resume\n");
2583 mutex_unlock(&dev->dev_lock);
2587 EXPORT_SYMBOL(opal_unlock_from_suspend);
2589 static int opal_read_table(struct opal_dev *dev,
2590 struct opal_read_write_table *rw_tbl)
2592 const struct opal_step read_table_steps[] = {
2593 { start_admin1LSP_opal_session, &rw_tbl->key },
2594 { read_table_data, rw_tbl },
2595 { end_opal_session, }
2602 return execute_steps(dev, read_table_steps,
2603 ARRAY_SIZE(read_table_steps));
2606 static int opal_write_table(struct opal_dev *dev,
2607 struct opal_read_write_table *rw_tbl)
2609 const struct opal_step write_table_steps[] = {
2610 { start_admin1LSP_opal_session, &rw_tbl->key },
2611 { write_table_data, rw_tbl },
2612 { end_opal_session, }
2619 return execute_steps(dev, write_table_steps,
2620 ARRAY_SIZE(write_table_steps));
2623 static int opal_generic_read_write_table(struct opal_dev *dev,
2624 struct opal_read_write_table *rw_tbl)
2628 mutex_lock(&dev->dev_lock);
2629 setup_opal_dev(dev);
2631 bit_set = fls64(rw_tbl->flags) - 1;
2633 case OPAL_READ_TABLE:
2634 ret = opal_read_table(dev, rw_tbl);
2636 case OPAL_WRITE_TABLE:
2637 ret = opal_write_table(dev, rw_tbl);
2640 pr_debug("Invalid bit set in the flag (%016llx).\n",
2646 mutex_unlock(&dev->dev_lock);
2651 int sed_ioctl(struct opal_dev *dev, unsigned int cmd, void __user *arg)
2656 if (!capable(CAP_SYS_ADMIN))
2660 if (!dev->supported)
2663 p = memdup_user(arg, _IOC_SIZE(cmd));
2669 ret = opal_save(dev, p);
2671 case IOC_OPAL_LOCK_UNLOCK:
2672 ret = opal_lock_unlock(dev, p);
2674 case IOC_OPAL_TAKE_OWNERSHIP:
2675 ret = opal_take_ownership(dev, p);
2677 case IOC_OPAL_ACTIVATE_LSP:
2678 ret = opal_activate_lsp(dev, p);
2680 case IOC_OPAL_SET_PW:
2681 ret = opal_set_new_pw(dev, p);
2683 case IOC_OPAL_ACTIVATE_USR:
2684 ret = opal_activate_user(dev, p);
2686 case IOC_OPAL_REVERT_TPR:
2687 ret = opal_reverttper(dev, p, false);
2689 case IOC_OPAL_LR_SETUP:
2690 ret = opal_setup_locking_range(dev, p);
2692 case IOC_OPAL_ADD_USR_TO_LR:
2693 ret = opal_add_user_to_lr(dev, p);
2695 case IOC_OPAL_ENABLE_DISABLE_MBR:
2696 ret = opal_enable_disable_shadow_mbr(dev, p);
2698 case IOC_OPAL_MBR_DONE:
2699 ret = opal_set_mbr_done(dev, p);
2701 case IOC_OPAL_WRITE_SHADOW_MBR:
2702 ret = opal_write_shadow_mbr(dev, p);
2704 case IOC_OPAL_ERASE_LR:
2705 ret = opal_erase_locking_range(dev, p);
2707 case IOC_OPAL_SECURE_ERASE_LR:
2708 ret = opal_secure_erase_locking_range(dev, p);
2710 case IOC_OPAL_PSID_REVERT_TPR:
2711 ret = opal_reverttper(dev, p, true);
2713 case IOC_OPAL_GENERIC_TABLE_RW:
2714 ret = opal_generic_read_write_table(dev, p);
2723 EXPORT_SYMBOL_GPL(sed_ioctl);
projects / releases.git / blob