2 Capsule update PEIM for UEFI2.0
4 Copyright (c) 2006 - 2011, Intel Corporation. All rights reserved.<BR>
6 This program and the accompanying materials
7 are licensed and made available under the terms and conditions
8 of the BSD License which accompanies this distribution. The
9 full text of the license may be found at
10 http://opensource.org/licenses/bsd-license.php
12 THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,
13 WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED.
21 // Global Descriptor Table (GDT)
23 GLOBAL_REMOVE_IF_UNREFERENCED IA32_SEGMENT_DESCRIPTOR mGdtEntries
[] = {
24 /* selector { Global Segment Descriptor } */
25 /* 0x00 */ {{0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0}}, //null descriptor
26 /* 0x08 */ {{0xffff, 0, 0, 0x3, 1, 0, 1, 0xf, 0, 0, 1, 1, 0}}, //linear data segment descriptor
27 /* 0x10 */ {{0xffff, 0, 0, 0xf, 1, 0, 1, 0xf, 0, 0, 1, 1, 0}}, //linear code segment descriptor
28 /* 0x18 */ {{0xffff, 0, 0, 0x3, 1, 0, 1, 0xf, 0, 0, 1, 1, 0}}, //system data segment descriptor
29 /* 0x20 */ {{0xffff, 0, 0, 0xb, 1, 0, 1, 0xf, 0, 0, 1, 1, 0}}, //system code segment descriptor
30 /* 0x28 */ {{0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0}}, //spare segment descriptor
31 /* 0x30 */ {{0xffff, 0, 0, 0x3, 1, 0, 1, 0xf, 0, 0, 1, 1, 0}}, //system data segment descriptor
32 /* 0x38 */ {{0xffff, 0, 0, 0xb, 1, 0, 1, 0xf, 0, 1, 0, 1, 0}}, //system code segment descriptor
33 /* 0x40 */ {{0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0}}, //spare segment descriptor
39 GLOBAL_REMOVE_IF_UNREFERENCED CONST IA32_DESCRIPTOR mGdt
= {
40 sizeof (mGdtEntries
) - 1,
45 Calculate the total size of page table.
47 @return The size of page table.
52 CalculatePageTableSize (
59 UINT8 PhysicalAddressBits
;
61 UINT32 NumberOfPml4EntriesNeeded
;
62 UINT32 NumberOfPdpEntriesNeeded
;
63 BOOLEAN Page1GSupport
;
65 Page1GSupport
= FALSE
;
66 AsmCpuid (0x80000000, &RegEax
, NULL
, NULL
, NULL
);
67 if (RegEax
>= 0x80000001) {
68 AsmCpuid (0x80000001, NULL
, NULL
, NULL
, &RegEdx
);
69 if ((RegEdx
& BIT26
) != 0) {
75 // Get physical address bits supported.
77 Hob
= GetFirstHob (EFI_HOB_TYPE_CPU
);
79 PhysicalAddressBits
= ((EFI_HOB_CPU
*) Hob
)->SizeOfMemorySpace
;
81 AsmCpuid (0x80000000, &RegEax
, NULL
, NULL
, NULL
);
82 if (RegEax
>= 0x80000008) {
83 AsmCpuid (0x80000008, &RegEax
, NULL
, NULL
, NULL
);
84 PhysicalAddressBits
= (UINT8
) RegEax
;
86 PhysicalAddressBits
= 36;
91 // IA-32e paging translates 48-bit linear addresses to 52-bit physical addresses.
93 ASSERT (PhysicalAddressBits
<= 52);
94 if (PhysicalAddressBits
> 48) {
95 PhysicalAddressBits
= 48;
99 // Calculate the table entries needed.
101 if (PhysicalAddressBits
<= 39 ) {
102 NumberOfPml4EntriesNeeded
= 1;
103 NumberOfPdpEntriesNeeded
= (UINT32
)LShiftU64 (1, (PhysicalAddressBits
- 30));
105 NumberOfPml4EntriesNeeded
= (UINT32
)LShiftU64 (1, (PhysicalAddressBits
- 39));
106 NumberOfPdpEntriesNeeded
= 512;
109 if (!Page1GSupport
) {
110 TotalPagesNum
= (NumberOfPdpEntriesNeeded
+ 1) * NumberOfPml4EntriesNeeded
+ 1;
112 TotalPagesNum
= NumberOfPml4EntriesNeeded
+ 1;
115 return EFI_PAGES_TO_SIZE (TotalPagesNum
);
119 Allocates and fills in the Page Directory and Page Table Entries to
120 establish a 1:1 Virtual to Physical mapping.
122 @param[in] PageTablesAddress The base address of page table.
126 CreateIdentityMappingPageTables (
127 IN EFI_PHYSICAL_ADDRESS PageTablesAddress
132 UINT8 PhysicalAddressBits
;
133 EFI_PHYSICAL_ADDRESS PageAddress
;
134 UINTN IndexOfPml4Entries
;
135 UINTN IndexOfPdpEntries
;
136 UINTN IndexOfPageDirectoryEntries
;
137 UINT32 NumberOfPml4EntriesNeeded
;
138 UINT32 NumberOfPdpEntriesNeeded
;
139 PAGE_MAP_AND_DIRECTORY_POINTER
*PageMapLevel4Entry
;
140 PAGE_MAP_AND_DIRECTORY_POINTER
*PageMap
;
141 PAGE_MAP_AND_DIRECTORY_POINTER
*PageDirectoryPointerEntry
;
142 PAGE_TABLE_ENTRY
*PageDirectoryEntry
;
143 UINTN BigPageAddress
;
145 BOOLEAN Page1GSupport
;
146 PAGE_TABLE_1G_ENTRY
*PageDirectory1GEntry
;
148 Page1GSupport
= FALSE
;
149 AsmCpuid (0x80000000, &RegEax
, NULL
, NULL
, NULL
);
150 if (RegEax
>= 0x80000001) {
151 AsmCpuid (0x80000001, NULL
, NULL
, NULL
, &RegEdx
);
152 if ((RegEdx
& BIT26
) != 0) {
153 Page1GSupport
= TRUE
;
158 // Get physical address bits supported.
160 Hob
= GetFirstHob (EFI_HOB_TYPE_CPU
);
162 PhysicalAddressBits
= ((EFI_HOB_CPU
*) Hob
)->SizeOfMemorySpace
;
164 AsmCpuid (0x80000000, &RegEax
, NULL
, NULL
, NULL
);
165 if (RegEax
>= 0x80000008) {
166 AsmCpuid (0x80000008, &RegEax
, NULL
, NULL
, NULL
);
167 PhysicalAddressBits
= (UINT8
) RegEax
;
169 PhysicalAddressBits
= 36;
174 // IA-32e paging translates 48-bit linear addresses to 52-bit physical addresses.
176 ASSERT (PhysicalAddressBits
<= 52);
177 if (PhysicalAddressBits
> 48) {
178 PhysicalAddressBits
= 48;
182 // Calculate the table entries needed.
184 if (PhysicalAddressBits
<= 39 ) {
185 NumberOfPml4EntriesNeeded
= 1;
186 NumberOfPdpEntriesNeeded
= (UINT32
)LShiftU64 (1, (PhysicalAddressBits
- 30));
188 NumberOfPml4EntriesNeeded
= (UINT32
)LShiftU64 (1, (PhysicalAddressBits
- 39));
189 NumberOfPdpEntriesNeeded
= 512;
193 // Pre-allocate big pages to avoid later allocations.
195 BigPageAddress
= (UINTN
) PageTablesAddress
;
198 // By architecture only one PageMapLevel4 exists - so lets allocate storage for it.
200 PageMap
= (VOID
*) BigPageAddress
;
201 BigPageAddress
+= SIZE_4KB
;
203 PageMapLevel4Entry
= PageMap
;
205 for (IndexOfPml4Entries
= 0; IndexOfPml4Entries
< NumberOfPml4EntriesNeeded
; IndexOfPml4Entries
++, PageMapLevel4Entry
++) {
207 // Each PML4 entry points to a page of Page Directory Pointer entires.
208 // So lets allocate space for them and fill them in in the IndexOfPdpEntries loop.
210 PageDirectoryPointerEntry
= (VOID
*) BigPageAddress
;
211 BigPageAddress
+= SIZE_4KB
;
216 PageMapLevel4Entry
->Uint64
= (UINT64
)(UINTN
)PageDirectoryPointerEntry
;
217 PageMapLevel4Entry
->Bits
.ReadWrite
= 1;
218 PageMapLevel4Entry
->Bits
.Present
= 1;
221 PageDirectory1GEntry
= (VOID
*) BigPageAddress
;
222 BigPageAddress
+= SIZE_4KB
;
224 for (IndexOfPageDirectoryEntries
= 0; IndexOfPageDirectoryEntries
< 512; IndexOfPageDirectoryEntries
++, PageDirectory1GEntry
++, PageAddress
+= SIZE_1GB
) {
226 // Fill in the Page Directory entries
228 PageDirectory1GEntry
->Uint64
= (UINT64
)PageAddress
;
229 PageDirectory1GEntry
->Bits
.ReadWrite
= 1;
230 PageDirectory1GEntry
->Bits
.Present
= 1;
231 PageDirectory1GEntry
->Bits
.MustBe1
= 1;
234 for (IndexOfPdpEntries
= 0; IndexOfPdpEntries
< NumberOfPdpEntriesNeeded
; IndexOfPdpEntries
++, PageDirectoryPointerEntry
++) {
236 // Each Directory Pointer entries points to a page of Page Directory entires.
237 // So allocate space for them and fill them in in the IndexOfPageDirectoryEntries loop.
239 PageDirectoryEntry
= (VOID
*) BigPageAddress
;
240 BigPageAddress
+= SIZE_4KB
;
243 // Fill in a Page Directory Pointer Entries
245 PageDirectoryPointerEntry
->Uint64
= (UINT64
)(UINTN
)PageDirectoryEntry
;
246 PageDirectoryPointerEntry
->Bits
.ReadWrite
= 1;
247 PageDirectoryPointerEntry
->Bits
.Present
= 1;
249 for (IndexOfPageDirectoryEntries
= 0; IndexOfPageDirectoryEntries
< 512; IndexOfPageDirectoryEntries
++, PageDirectoryEntry
++, PageAddress
+= SIZE_2MB
) {
251 // Fill in the Page Directory entries
253 PageDirectoryEntry
->Uint64
= (UINT64
)PageAddress
;
254 PageDirectoryEntry
->Bits
.ReadWrite
= 1;
255 PageDirectoryEntry
->Bits
.Present
= 1;
256 PageDirectoryEntry
->Bits
.MustBe1
= 1;
260 for (; IndexOfPdpEntries
< 512; IndexOfPdpEntries
++, PageDirectoryPointerEntry
++) {
262 PageDirectoryPointerEntry
,
263 sizeof(PAGE_MAP_AND_DIRECTORY_POINTER
)
270 // For the PML4 entries we are not using fill in a null entry.
272 for (; IndexOfPml4Entries
< 512; IndexOfPml4Entries
++, PageMapLevel4Entry
++) {
275 sizeof (PAGE_MAP_AND_DIRECTORY_POINTER
)
281 Return function from long mode to 32-bit mode.
283 @param EntrypointContext Context for mode switching
284 @param ReturnContext Context for mode switching
289 SWITCH_32_TO_64_CONTEXT
*EntrypointContext
,
290 SWITCH_64_TO_32_CONTEXT
*ReturnContext
294 // Restore original GDT
296 AsmWriteGdtr (&ReturnContext
->Gdtr
);
299 // return to original caller
301 LongJump ((BASE_LIBRARY_JUMP_BUFFER
*)(UINTN
)EntrypointContext
->JumpBuffer
, 1);
310 Thunk function from 32-bit protection mode to long mode.
312 @param PageTableAddress Page table base address
313 @param Context Context for mode switching
314 @param ReturnContext Context for mode switching
316 @retval EFI_SUCCESS Function successfully executed.
321 EFI_PHYSICAL_ADDRESS PageTableAddress
,
322 SWITCH_32_TO_64_CONTEXT
*Context
,
323 SWITCH_64_TO_32_CONTEXT
*ReturnContext
330 // Save return address, LongJump will return here then
332 SetJumpFlag
= SetJump ((BASE_LIBRARY_JUMP_BUFFER
*) (UINTN
) Context
->JumpBuffer
);
334 if (SetJumpFlag
== 0) {
337 // Build Page Tables for all physical memory processor supports
339 CreateIdentityMappingPageTables (PageTableAddress
);
344 AsmWriteGdtr (&mGdt
);
349 AsmWriteCr3 ((UINTN
) PageTableAddress
);
352 // Transfer to long mode
356 (UINT64
) Context
->EntryPoint
,
357 (UINT64
)(UINTN
) Context
,
358 (UINT64
)(UINTN
) ReturnContext
,
359 Context
->StackBufferBase
+ Context
->StackBufferLength
364 // Convert to 32-bit Status and return
366 Status
= EFI_SUCCESS
;
367 if ((UINTN
) ReturnContext
->ReturnStatus
!= 0) {
368 Status
= ENCODE_ERROR ((UINTN
) ReturnContext
->ReturnStatus
);
375 If in 32 bit protection mode, and coalesce image is of X64, switch to long mode.
377 @param LongModeBuffer The context of long mode.
378 @param CoalesceEntry Entry of coalesce image.
379 @param BlockListAddr Address of block list.
380 @param MemoryBase Base of memory range.
381 @param MemorySize Size of memory range.
383 @retval EFI_SUCCESS Successfully switched to long mode and execute coalesce.
384 @retval Others Failed to execute coalesce in long mode.
389 IN EFI_CAPSULE_LONG_MODE_BUFFER
*LongModeBuffer
,
390 IN COALESCE_ENTRY CoalesceEntry
,
391 IN EFI_PHYSICAL_ADDRESS BlockListAddr
,
392 IN OUT VOID
**MemoryBase
,
393 IN OUT UINTN
*MemorySize
397 EFI_PHYSICAL_ADDRESS MemoryBase64
;
399 EFI_PHYSICAL_ADDRESS MemoryEnd64
;
400 SWITCH_32_TO_64_CONTEXT Context
;
401 SWITCH_64_TO_32_CONTEXT ReturnContext
;
402 BASE_LIBRARY_JUMP_BUFFER JumpBuffer
;
403 EFI_PHYSICAL_ADDRESS ReservedRangeBase
;
404 EFI_PHYSICAL_ADDRESS ReservedRangeEnd
;
406 ZeroMem (&Context
, sizeof (SWITCH_32_TO_64_CONTEXT
));
407 ZeroMem (&ReturnContext
, sizeof (SWITCH_64_TO_32_CONTEXT
));
409 MemoryBase64
= (UINT64
) (UINTN
) *MemoryBase
;
410 MemorySize64
= (UINT64
) (UINTN
) *MemorySize
;
411 MemoryEnd64
= MemoryBase64
+ MemorySize64
;
414 // Merge memory range reserved for stack and page table
416 if (LongModeBuffer
->StackBaseAddress
< LongModeBuffer
->PageTableAddress
) {
417 ReservedRangeBase
= LongModeBuffer
->StackBaseAddress
;
418 ReservedRangeEnd
= LongModeBuffer
->PageTableAddress
+ CalculatePageTableSize ();
420 ReservedRangeBase
= LongModeBuffer
->PageTableAddress
;
421 ReservedRangeEnd
= LongModeBuffer
->StackBaseAddress
+ LongModeBuffer
->StackSize
;
425 // Check if memory range reserved is overlap with MemoryBase ~ MemoryBase + MemorySize.
426 // If they are overlapped, get a larger range to process capsule data.
428 if (ReservedRangeBase
<= MemoryBase64
) {
429 if (ReservedRangeEnd
< MemoryEnd64
) {
430 MemoryBase64
= ReservedRangeEnd
;
432 DEBUG ((EFI_D_ERROR
, "Memory is not enough to process capsule!\n"));
433 return EFI_OUT_OF_RESOURCES
;
435 } else if (ReservedRangeBase
< MemoryEnd64
) {
436 if (ReservedRangeEnd
< MemoryEnd64
&&
437 ReservedRangeBase
- MemoryBase64
< MemoryEnd64
- ReservedRangeEnd
) {
438 MemoryBase64
= ReservedRangeEnd
;
440 MemorySize64
= (UINT64
)(UINTN
)(ReservedRangeBase
- MemoryBase64
);
445 // Initialize context jumping to 64-bit enviroment
447 Context
.JumpBuffer
= (EFI_PHYSICAL_ADDRESS
)(UINTN
)&JumpBuffer
;
448 Context
.StackBufferBase
= LongModeBuffer
->StackBaseAddress
;
449 Context
.StackBufferLength
= LongModeBuffer
->StackSize
;
450 Context
.EntryPoint
= (EFI_PHYSICAL_ADDRESS
)(UINTN
)CoalesceEntry
;
451 Context
.BlockListAddr
= BlockListAddr
;
452 Context
.MemoryBase64Ptr
= (EFI_PHYSICAL_ADDRESS
)(UINTN
)&MemoryBase64
;
453 Context
.MemorySize64Ptr
= (EFI_PHYSICAL_ADDRESS
)(UINTN
)&MemorySize64
;
456 // Prepare data for return back
458 ReturnContext
.ReturnCs
= 0x10;
459 ReturnContext
.ReturnEntryPoint
= (EFI_PHYSICAL_ADDRESS
)(UINTN
)ReturnFunction
;
461 // Will save the return status of processing capsule
463 ReturnContext
.ReturnStatus
= 0;
468 AsmReadGdtr ((IA32_DESCRIPTOR
*)&ReturnContext
.Gdtr
);
470 Status
= Thunk32To64 (LongModeBuffer
->PageTableAddress
, &Context
, &ReturnContext
);
472 if (!EFI_ERROR (Status
)) {
473 *MemoryBase
= (VOID
*) (UINTN
) MemoryBase64
;
474 *MemorySize
= (UINTN
) MemorySize64
;
482 Locates the coalesce image entry point, and detects its machine type.
484 @param CoalesceImageEntryPoint Pointer to coalesce image entry point for output.
485 @param CoalesceImageMachineType Pointer to machine type of coalesce image.
487 @retval EFI_SUCCESS Coalesce image successfully located.
488 @retval Others Failed to locate the coalesce image.
492 FindCapsuleCoalesceImage (
493 OUT EFI_PHYSICAL_ADDRESS
*CoalesceImageEntryPoint
,
494 OUT UINT16
*CoalesceImageMachineType
499 EFI_PEI_LOAD_FILE_PPI
*LoadFile
;
500 EFI_PEI_FV_HANDLE VolumeHandle
;
501 EFI_PEI_FILE_HANDLE FileHandle
;
502 EFI_PHYSICAL_ADDRESS CoalesceImageAddress
;
503 UINT64 CoalesceImageSize
;
504 UINT32 AuthenticationState
;
509 Status
= PeiServicesFfsFindNextVolume (Instance
++, &VolumeHandle
);
510 if (EFI_ERROR (Status
)) {
513 Status
= PeiServicesFfsFindFileByName (PcdGetPtr(PcdCapsuleCoalesceFile
), VolumeHandle
, &FileHandle
);
514 if (!EFI_ERROR (Status
)) {
515 Status
= PeiServicesLocatePpi (&gEfiPeiLoadFilePpiGuid
, 0, NULL
, (VOID
**) &LoadFile
);
516 ASSERT_EFI_ERROR (Status
);
518 Status
= LoadFile
->LoadFile (
521 &CoalesceImageAddress
,
523 CoalesceImageEntryPoint
,
526 if (EFI_ERROR (Status
)) {
527 DEBUG ((EFI_D_ERROR
, "Unable to find PE32 section in CapsuleRelocate image ffs %r!\n", Status
));
530 *CoalesceImageMachineType
= PeCoffLoaderGetMachineType ((VOID
*) (UINTN
) CoalesceImageAddress
);
543 Checks for the presence of capsule descriptors.
544 Get capsule descriptors from variable CapsuleUpdateData, CapsuleUpdateData1, CapsuleUpdateData2...
545 and save to DescriptorBuffer.
547 @param DescriptorBuffer Pointer to the capsule descriptors
549 @retval EFI_SUCCESS a valid capsule is present
550 @retval EFI_NOT_FOUND if a valid capsule is not present
553 GetCapsuleDescriptors (
554 IN EFI_PHYSICAL_ADDRESS
*DescriptorBuffer
563 CHAR16 CapsuleVarName
[30];
565 EFI_PHYSICAL_ADDRESS CapsuleDataPtr64
;
566 EFI_PEI_READ_ONLY_VARIABLE2_PPI
*PPIVariableServices
;
570 CapsuleVarName
[0] = 0;
573 Status
= PeiServicesLocatePpi (
574 &gEfiPeiReadOnlyVariable2PpiGuid
,
577 (VOID
**) &PPIVariableServices
579 if (Status
== EFI_SUCCESS
) {
580 StrCpy (CapsuleVarName
, EFI_CAPSULE_VARIABLE_NAME
);
581 TempVarName
= CapsuleVarName
+ StrLen (CapsuleVarName
);
582 Size
= sizeof (CapsuleDataPtr64
);
586 // For the first Capsule Image
588 Status
= PPIVariableServices
->GetVariable (
591 &gEfiCapsuleVendorGuid
,
594 (VOID
*) &CapsuleDataPtr64
596 if (EFI_ERROR (Status
)) {
597 DEBUG ((EFI_D_ERROR
, "Capsule -- capsule variable not set\n"));
598 return EFI_NOT_FOUND
;
601 // We have a chicken/egg situation where the memory init code needs to
602 // know the boot mode prior to initializing memory. For this case, our
603 // validate function will fail. We can detect if this is the case if blocklist
604 // pointer is null. In that case, return success since we know that the
607 if (DescriptorBuffer
== NULL
) {
611 UnicodeValueToString (TempVarName
, 0, Index
, 0);
612 Status
= PPIVariableServices
->GetVariable (
615 &gEfiCapsuleVendorGuid
,
618 (VOID
*) &CapsuleDataPtr64
620 if (EFI_ERROR (Status
)) {
625 // If this BlockList has been linked before, skip this variable
628 for (TempIndex
= 0; TempIndex
< ValidIndex
; TempIndex
++) {
629 if (DescriptorBuffer
[TempIndex
] == CapsuleDataPtr64
) {
641 // Cache BlockList which has been processed
643 DescriptorBuffer
[ValidIndex
++] = CapsuleDataPtr64
;
652 Gets the reserved long mode buffer.
654 @param LongModeBuffer Pointer to the long mode buffer for output.
656 @retval EFI_SUCCESS Long mode buffer successfully retrieved.
657 @retval Others Variable storing long mode buffer not found.
662 OUT EFI_CAPSULE_LONG_MODE_BUFFER
*LongModeBuffer
667 EFI_PEI_READ_ONLY_VARIABLE2_PPI
*PPIVariableServices
;
669 Status
= PeiServicesLocatePpi (
670 &gEfiPeiReadOnlyVariable2PpiGuid
,
673 (VOID
**) &PPIVariableServices
675 ASSERT_EFI_ERROR (Status
);
677 Size
= sizeof (EFI_CAPSULE_LONG_MODE_BUFFER
);
678 Status
= PPIVariableServices
->GetVariable (
680 EFI_CAPSULE_LONG_MODE_BUFFER_NAME
,
681 &gEfiCapsuleVendorGuid
,
686 if (EFI_ERROR (Status
)) {
687 DEBUG (( EFI_D_ERROR
, "Error Get LongModeBuffer variable %r!\n", Status
));
693 Capsule PPI service to coalesce a fragmented capsule in memory.
695 @param PeiServices General purpose services available to every PEIM.
696 @param MemoryBase Pointer to the base of a block of memory that we can walk
697 all over while trying to coalesce our buffers.
698 On output, this variable will hold the base address of
700 @param MemorySize Size of the memory region pointed to by MemoryBase.
701 On output, this variable will contain the size of the
704 @retval EFI_NOT_FOUND if we can't determine the boot mode
705 if the boot mode is not flash-update
706 if we could not find the capsule descriptors
708 @retval EFI_BUFFER_TOO_SMALL
709 if we could not coalesce the capsule in the memory
710 region provided to us
712 @retval EFI_SUCCESS if there's no capsule, or if we processed the
713 capsule successfully.
718 IN EFI_PEI_SERVICES
**PeiServices
,
719 IN OUT VOID
**MemoryBase
,
720 IN OUT UINTN
*MemorySize
726 CHAR16 CapsuleVarName
[30];
728 EFI_PHYSICAL_ADDRESS CapsuleDataPtr64
;
730 EFI_BOOT_MODE BootMode
;
731 EFI_PEI_READ_ONLY_VARIABLE2_PPI
*PPIVariableServices
;
732 EFI_PHYSICAL_ADDRESS
*VariableArrayAddress
;
734 UINT16 CoalesceImageMachineType
;
735 EFI_PHYSICAL_ADDRESS CoalesceImageEntryPoint
;
736 COALESCE_ENTRY CoalesceEntry
;
737 EFI_CAPSULE_LONG_MODE_BUFFER LongModeBuffer
;
742 CapsuleVarName
[0] = 0;
745 // Someone should have already ascertained the boot mode. If it's not
746 // capsule update, then return normally.
748 Status
= PeiServicesGetBootMode (&BootMode
);
749 if (EFI_ERROR (Status
) || (BootMode
!= BOOT_ON_FLASH_UPDATE
)) {
750 DEBUG ((EFI_D_ERROR
, "Boot mode is not correct for capsule update path.\n"));
751 Status
= EFI_NOT_FOUND
;
756 // User may set the same ScatterGatherList with several different variables,
757 // so cache all ScatterGatherList for check later.
759 Status
= PeiServicesLocatePpi (
760 &gEfiPeiReadOnlyVariable2PpiGuid
,
763 (VOID
**) &PPIVariableServices
765 if (EFI_ERROR (Status
)) {
768 Size
= sizeof (CapsuleDataPtr64
);
769 StrCpy (CapsuleVarName
, EFI_CAPSULE_VARIABLE_NAME
);
770 TempVarName
= CapsuleVarName
+ StrLen (CapsuleVarName
);
773 UnicodeValueToString (TempVarName
, 0, Index
, 0);
775 Status
= PPIVariableServices
->GetVariable (
778 &gEfiCapsuleVendorGuid
,
781 (VOID
*) &CapsuleDataPtr64
783 if (EFI_ERROR (Status
)) {
785 // There is no capsule variables, quit
787 DEBUG ((EFI_D_INFO
,"Capsule variable Index = %d\n", Index
));
794 DEBUG ((EFI_D_INFO
,"Capsule variable count = %d\n", VariableCount
));
797 // The last entry is the end flag.
799 Status
= PeiServicesAllocatePool (
800 (VariableCount
+ 1) * sizeof (EFI_PHYSICAL_ADDRESS
),
801 (VOID
**)&VariableArrayAddress
804 if (Status
!= EFI_SUCCESS
) {
805 DEBUG ((EFI_D_ERROR
, "AllocatePages Failed!, Status = %x\n", Status
));
809 ZeroMem (VariableArrayAddress
, (VariableCount
+ 1) * sizeof (EFI_PHYSICAL_ADDRESS
));
812 // Find out if we actually have a capsule.
813 // GetCapsuleDescriptors depends on variable PPI, so it should run in 32-bit environment.
815 Status
= GetCapsuleDescriptors (VariableArrayAddress
);
816 if (EFI_ERROR (Status
)) {
817 DEBUG ((EFI_D_ERROR
, "Fail to find capsule variables.\n"));
822 if (FeaturePcdGet (PcdDxeIplSwitchToLongMode
)) {
824 // Switch to 64-bit mode to process capsule data when:
825 // 1. When DXE phase is 64-bit
826 // 2. When the buffer for 64-bit transition exists
827 // 3. When Capsule X64 image is built in BIOS image
828 // In 64-bit mode, we can process capsule data above 4GB.
830 CoalesceImageEntryPoint
= 0;
831 Status
= GetLongModeContext (&LongModeBuffer
);
832 if (EFI_ERROR (Status
)) {
833 DEBUG ((EFI_D_ERROR
, "Fail to find the variables for long mode context!\n"));
834 Status
= EFI_NOT_FOUND
;
838 Status
= FindCapsuleCoalesceImage (&CoalesceImageEntryPoint
, &CoalesceImageMachineType
);
839 if ((EFI_ERROR (Status
)) || (CoalesceImageMachineType
!= EFI_IMAGE_MACHINE_X64
)) {
840 DEBUG ((EFI_D_ERROR
, "Fail to find CapsuleX64 module in FV!\n"));
841 Status
= EFI_NOT_FOUND
;
844 ASSERT (CoalesceImageEntryPoint
!= 0);
845 CoalesceEntry
= (COALESCE_ENTRY
) (UINTN
) CoalesceImageEntryPoint
;
846 Status
= ModeSwitch (&LongModeBuffer
, CoalesceEntry
, (EFI_PHYSICAL_ADDRESS
)(UINTN
)VariableArrayAddress
, MemoryBase
, MemorySize
);
849 // Capsule is processed in IA32 mode.
851 Status
= CapsuleDataCoalesce (PeiServices
, (EFI_PHYSICAL_ADDRESS
*)(UINTN
)VariableArrayAddress
, MemoryBase
, MemorySize
);
855 // Process capsule directly.
857 Status
= CapsuleDataCoalesce (PeiServices
, (EFI_PHYSICAL_ADDRESS
*)(UINTN
)VariableArrayAddress
, MemoryBase
, MemorySize
);
860 DEBUG ((EFI_D_INFO
, "Capsule Coalesce Status = %r!\n", Status
));
862 if (Status
== EFI_BUFFER_TOO_SMALL
) {
863 DEBUG ((EFI_D_ERROR
, "There is not enough memory to process capsule!\n"));
866 if (Status
== EFI_NOT_FOUND
) {
867 DEBUG ((EFI_D_ERROR
, "Fail to parse capsule descriptor in memory!\n"));
869 EFI_ERROR_CODE
| EFI_ERROR_MAJOR
,
870 (EFI_SOFTWARE_PEI_MODULE
| EFI_SW_PEI_EC_INVALID_CAPSULE_DESCRIPTOR
)
879 Determine if we're in capsule update boot mode.
881 @param PeiServices PEI services table
883 @retval EFI_SUCCESS if we have a capsule available
884 @retval EFI_NOT_FOUND no capsule detected
890 IN EFI_PEI_SERVICES
**PeiServices
894 Status
= GetCapsuleDescriptors (NULL
);
898 This function will look at a capsule and determine if it's a test pattern.
899 If it is, then it will verify it and emit an error message if corruption is detected.
901 @param PeiServices Standard pei services pointer
902 @param CapsuleBase Base address of coalesced capsule, which is preceeded
903 by private data. Very implementation specific.
905 @retval TRUE Capsule image is the test image
906 @retval FALSE Capsule image is not the test image.
911 IN EFI_PEI_SERVICES
**PeiServices
,
923 // Look at the capsule data and determine if it's a test pattern. If it
924 // is, then test it now.
926 TestPtr
= (UINT32
*) CapsuleBase
;
930 if (*TestPtr
== 0x54534554) {
932 DEBUG ((EFI_D_INFO
, "Capsule test pattern mode activated...\n"));
933 TestSize
= TestPtr
[1] / sizeof (UINT32
);
935 // Skip over the signature and the size fields in the pattern data header
939 while (TestSize
> 0) {
940 if (*TestPtr
!= TestCounter
) {
941 DEBUG ((EFI_D_INFO
, "Capsule test pattern mode FAILED: BaseAddr/FailAddr 0x%X 0x%X\n", (UINT32
)(UINTN
)(EFI_CAPSULE_PEIM_PRIVATE_DATA
*)CapsuleBase
, (UINT32
)(UINTN
)TestPtr
));
950 DEBUG ((EFI_D_INFO
, "Capsule test pattern mode SUCCESS\n"));
957 Capsule PPI service that gets called after memory is available. The
958 capsule coalesce function, which must be called first, returns a base
959 address and size, which can be anything actually. Once the memory init
960 PEIM has discovered memory, then it should call this function and pass in
961 the base address and size returned by the coalesce function. Then this
962 function can create a capsule HOB and return.
964 @param PeiServices standard pei services pointer
965 @param CapsuleBase address returned by the capsule coalesce function. Most
966 likely this will actually be a pointer to private data.
967 @param CapsuleSize value returned by the capsule coalesce function.
969 @retval EFI_VOLUME_CORRUPTED CapsuleBase does not appear to point to a
971 @retval EFI_SUCCESS if all goes well.
976 IN EFI_PEI_SERVICES
**PeiServices
,
977 IN VOID
*CapsuleBase
,
982 EFI_CAPSULE_PEIM_PRIVATE_DATA
*PrivateData
;
984 EFI_PHYSICAL_ADDRESS NewBuffer
;
986 UINT32 CapsuleNumber
;
988 EFI_PHYSICAL_ADDRESS BaseAddress
;
993 PrivateData
= (EFI_CAPSULE_PEIM_PRIVATE_DATA
*) CapsuleBase
;
994 if (PrivateData
->Signature
!= EFI_CAPSULE_PEIM_PRIVATE_DATA_SIGNATURE
) {
995 return EFI_VOLUME_CORRUPTED
;
998 // Capsule Number and Capsule Offset is in the tail of Capsule data.
1000 Size
= (UINTN
) PrivateData
->CapsuleSize
;
1001 DataPtr
= (UINT32
*)((UINTN
)CapsuleBase
+ (UINTN
)sizeof(EFI_CAPSULE_PEIM_PRIVATE_DATA
)+ Size
);
1002 DataPtr
= (UINT32
*)(((UINTN
) DataPtr
+ sizeof(UINT32
) - 1) & ~(sizeof (UINT32
) - 1));
1003 CapsuleNumber
= *DataPtr
++;
1005 // Allocate the memory so that it gets preserved into DXE
1007 Status
= PeiServicesAllocatePages (
1008 EfiRuntimeServicesData
,
1009 EFI_SIZE_TO_PAGES (Size
),
1013 if (Status
!= EFI_SUCCESS
) {
1014 DEBUG ((EFI_D_ERROR
, "AllocatePages Failed!\n"));
1018 // Copy to our new buffer for DXE
1020 DEBUG ((EFI_D_INFO
, "Capsule copy from 0x%8X to 0x%8X with size 0x%8X\n", (UINTN
) (PrivateData
+ 1), (UINTN
) NewBuffer
, Size
));
1021 CopyMem ((VOID
*) (UINTN
) NewBuffer
, (VOID
*) (UINTN
) (PrivateData
+ 1), Size
);
1023 // Check for test data pattern. If it is the test pattern, then we'll
1024 // test it ans still create the HOB so that it can be used to verify
1025 // that capsules don't get corrupted all the way into BDS. BDS will
1026 // still try to turn it into a firmware volume, but will think it's
1027 // corrupted so nothing will happen.
1030 CapsuleTestPattern (PeiServices
, (VOID
*) (UINTN
) NewBuffer
);
1034 // Build the UEFI Capsule Hob for each capsule image.
1036 for (Index
= 0; Index
< CapsuleNumber
; Index
++) {
1037 BaseAddress
= NewBuffer
+ DataPtr
[Index
];
1038 Length
= ((EFI_CAPSULE_HEADER
*)((UINTN
) BaseAddress
))->CapsuleImageSize
;
1040 BuildCvHob (BaseAddress
, Length
);
1046 CONST PEI_CAPSULE_PPI mCapsulePpi
= {
1052 CONST EFI_PEI_PPI_DESCRIPTOR mUefiPpiListCapsule
= {
1053 (EFI_PEI_PPI_DESCRIPTOR_PPI
| EFI_PEI_PPI_DESCRIPTOR_TERMINATE_LIST
),
1054 &gPeiCapsulePpiGuid
,
1055 (PEI_CAPSULE_PPI
*) &mCapsulePpi
1059 Entry point function for the PEIM
1061 @param FileHandle Handle of the file being invoked.
1062 @param PeiServices Describes the list of possible PEI Services.
1064 @return EFI_SUCCESS If we installed our PPI
1070 IN EFI_PEI_FILE_HANDLE FileHandle
,
1071 IN CONST EFI_PEI_SERVICES
**PeiServices
1075 // Just produce our PPI
1077 return PeiServicesInstallPpi (&mUefiPpiListCapsule
);