src/include/cbfs_glue.h

   1 /* SPDX-License-Identifier: GPL-2.0-only */
   2
   3 #ifndef _CBFS_GLUE_H_
   4 #define _CBFS_GLUE_H_
   5
   6 #include <commonlib/region.h>
   7 #include <console/console.h>
   8 #include <security/vboot/misc.h>
   9
  10 /*
  11  * This flag prevents linking hashing functions into stages where they're not required. We don't
  12  * need them at all if verification is disabled. If verification is enabled without TOCTOU
  13  * safety, we only need to verify the metadata hash in the initial stage and can assume it stays
  14  * valid in later stages. If TOCTOU safety is required, we may need them in every stage to
  15  * reverify metadata that had to be reloaded from flash (e.g. because it didn't fit the mcache).
  16  * Moreover, if VBOOT_CBFS_INTEGRATION and verification are both enabled, then hashing functions
  17  * are required during verification stage.
  18  * Note that this only concerns metadata hashing -- file access functions may still link hashing
  19  * routines independently for file data hashing.
  20  */
  21 #define CBFS_ENABLE_HASHING (CONFIG(CBFS_VERIFICATION) && \
  22                              (CONFIG(TOCTOU_SAFETY) || ENV_INITIAL_STAGE || \
  23                               (CONFIG(VBOOT_CBFS_INTEGRATION) && \
  24                                 (verification_should_run() || \
  25                                  (verstage_should_load() && \
  26                                   CONFIG(VBOOT_RETURN_FROM_VERSTAGE))))))
  27 #define CBFS_HASH_HWCRYPTO vboot_hwcrypto_allowed()
  28
  29 #define ERROR(...) printk(BIOS_ERR, "CBFS ERROR: " __VA_ARGS__)
  30 #define LOG(...) printk(BIOS_INFO, "CBFS: " __VA_ARGS__)
  31 #define DEBUG(...) do { \
  32         if (CONFIG(DEBUG_CBFS)) \
  33                 printk(BIOS_SPEW, "CBFS DEBUG: " __VA_ARGS__); \
  34 } while (0)
  35
  36 typedef const struct region_device *cbfs_dev_t;
  37
  38 static inline ssize_t cbfs_dev_read(cbfs_dev_t dev, void *buffer, size_t offset, size_t size)
  39 {
  40         return rdev_readat(dev, buffer, offset, size);
  41 }
  42
  43 static inline size_t cbfs_dev_size(cbfs_dev_t dev)
  44 {
  45         return region_device_sz(dev);
  46 }
  47
  48 #endif  /* _CBFS_GLUE_H_ */