xref: /titanic_44/usr/src/cmd/fwflash/plugins/vendor/sd-GENERIC.c (revision 499d222eb419e88c6ed51b3b246fee47972da5a4) 
1d65b419eSXinChen /*
2*499d222eSRobert Mustacchi  * This file and its contents are supplied under the terms of the
3*499d222eSRobert Mustacchi  * Common Development and Distribution License ("CDDL"), version 1.0.
4*499d222eSRobert Mustacchi  * You may only use this file in accordance with the terms of version
5*499d222eSRobert Mustacchi  * 1.0 of the CDDL.
6d65b419eSXinChen  *
7*499d222eSRobert Mustacchi  * A full copy of the text of the CDDL should have accompanied this
8*499d222eSRobert Mustacchi  * source.  A copy of the CDDL is also available via the Internet at
9*499d222eSRobert Mustacchi  * http://www.illumos.org/license/CDDL.
10d65b419eSXinChen  */
11*499d222eSRobert Mustacchi 
12d65b419eSXinChen /*
13*499d222eSRobert Mustacchi  * Copyright 2016 Joyent, Inc.
14d65b419eSXinChen  */
15d65b419eSXinChen 
16*499d222eSRobert Mustacchi /*
17*499d222eSRobert Mustacchi  * This is a general firmware flash plugin that does basic verification for
18*499d222eSRobert Mustacchi  * devices backed by sd(7D).
19*499d222eSRobert Mustacchi  *
20*499d222eSRobert Mustacchi  * The sd(7D) target for firmware flashing uses the general SCSI WRITE BUFFER
21*499d222eSRobert Mustacchi  * options with various modes to instruct the drive to download and install
22*499d222eSRobert Mustacchi  * microcode (what SPC-3 calls firmware). To verify that something fits, we can
23*499d222eSRobert Mustacchi  * use the READ BUFFER command with mode 03h to indicate that we want to
24*499d222eSRobert Mustacchi  * buffer's descriptor. This gives us both the buffer's total size and the
25*499d222eSRobert Mustacchi  * required alignment for writes.
26*499d222eSRobert Mustacchi  *
27*499d222eSRobert Mustacchi  * Unfortunately, it's impossible to know for certain if that size is supposed
28*499d222eSRobert Mustacchi  * to be equivalent to the microcode's. While a READ BUFFER is supposed to
29*499d222eSRobert Mustacchi  * return the same data as with a WRITE BUFFER command, experimental evidence
30*499d222eSRobert Mustacchi  * has shown that this isn't always the case. Especially as the firmware buffer
31*499d222eSRobert Mustacchi  * usually leverages buffer zero, but has custom modes to access it.
32*499d222eSRobert Mustacchi  */
33d65b419eSXinChen 
34*499d222eSRobert Mustacchi #include <libintl.h>
35d65b419eSXinChen #include <fwflash/fwflash.h>
36*499d222eSRobert Mustacchi #include <scsi/libscsi.h>
37d65b419eSXinChen 
38*499d222eSRobert Mustacchi /*
39*499d222eSRobert Mustacchi  * The fwflash plugin interface is a bit odd for a modern committed interface
40*499d222eSRobert Mustacchi  * and requires us to refer to data objects in the parent explicitly to get
41*499d222eSRobert Mustacchi  * access to and set various information. It also doesn't allow us a means of
42*499d222eSRobert Mustacchi  * setting data for our transport layer.
43*499d222eSRobert Mustacchi  */
44d65b419eSXinChen extern struct vrfyplugin *verifier;
45d65b419eSXinChen 
46d65b419eSXinChen /*
47*499d222eSRobert Mustacchi  * Declare the name of our vendor. This is required by the fwflash
48*499d222eSRobert Mustacchi  * plugin interface. Note it must be a character array. Using a pointer may
49*499d222eSRobert Mustacchi  * confuse the framework and its use of dlsym.
50d65b419eSXinChen  */
51*499d222eSRobert Mustacchi char vendor[] = "GENERIC";
52d65b419eSXinChen 
53d65b419eSXinChen int
vendorvrfy(struct devicelist * dvp)54*499d222eSRobert Mustacchi vendorvrfy(struct devicelist *dvp)
55d65b419eSXinChen {
56*499d222eSRobert Mustacchi 	libscsi_hdl_t *hdl = NULL;
57*499d222eSRobert Mustacchi 	libscsi_target_t *targ = NULL;
58*499d222eSRobert Mustacchi 	libscsi_action_t *act = NULL;
59*499d222eSRobert Mustacchi 	libscsi_errno_t serr;
60*499d222eSRobert Mustacchi 	spc3_read_buffer_cdb_t *rb_cdb;
61*499d222eSRobert Mustacchi 	uint8_t descbuf[4];
62*499d222eSRobert Mustacchi 	uint32_t size;
63*499d222eSRobert Mustacchi 
64*499d222eSRobert Mustacchi 	int ret = FWFLASH_FAILURE;
65*499d222eSRobert Mustacchi 
66*499d222eSRobert Mustacchi 	if ((hdl = libscsi_init(LIBSCSI_VERSION, &serr)) == NULL) {
67*499d222eSRobert Mustacchi 		logmsg(MSG_ERROR, gettext("%s: failed to initialize "
68*499d222eSRobert Mustacchi 		    "libscsi: %s\n"),
69*499d222eSRobert Mustacchi 		    verifier->vendor, libscsi_strerror(serr));
70d65b419eSXinChen 		return (FWFLASH_FAILURE);
71d65b419eSXinChen 	}
72d65b419eSXinChen 
73*499d222eSRobert Mustacchi 	if ((targ = libscsi_open(hdl, NULL, dvp->access_devname)) ==
74*499d222eSRobert Mustacchi 	    NULL) {
75*499d222eSRobert Mustacchi 		logmsg(MSG_ERROR,
76*499d222eSRobert Mustacchi 		    gettext("%s: unable to open device %s\n"),
77*499d222eSRobert Mustacchi 		    verifier->vendor, dvp->access_devname);
78*499d222eSRobert Mustacchi 		goto cleanup;
79*499d222eSRobert Mustacchi 	}
80d65b419eSXinChen 
81*499d222eSRobert Mustacchi 	if ((act = libscsi_action_alloc(hdl, SPC3_CMD_READ_BUFFER,
82*499d222eSRobert Mustacchi 	    LIBSCSI_AF_READ, descbuf, sizeof (descbuf))) == NULL) {
83*499d222eSRobert Mustacchi 		logmsg(MSG_ERROR, "%s: failed to alloc scsi action: %s\n",
84*499d222eSRobert Mustacchi 		    verifier->vendor, libscsi_errmsg(hdl));
85*499d222eSRobert Mustacchi 		goto cleanup;
86*499d222eSRobert Mustacchi 	}
87*499d222eSRobert Mustacchi 
88*499d222eSRobert Mustacchi 	rb_cdb = (spc3_read_buffer_cdb_t *)libscsi_action_get_cdb(act);
89*499d222eSRobert Mustacchi 
90*499d222eSRobert Mustacchi 	rb_cdb->rbc_mode = SPC3_RB_MODE_DESCRIPTOR;
91*499d222eSRobert Mustacchi 
92*499d222eSRobert Mustacchi 	/*
93*499d222eSRobert Mustacchi 	 * Microcode upgrade usually only uses the first buffer ID which are
94*499d222eSRobert Mustacchi 	 * sequentially indexed from zero. Strictly speaking these are all
95*499d222eSRobert Mustacchi 	 * vendor defined, but so far most vendors we've seen use index zero
96*499d222eSRobert Mustacchi 	 * for this.
97*499d222eSRobert Mustacchi 	 */
98*499d222eSRobert Mustacchi 	rb_cdb->rbc_bufferid = 0;
99*499d222eSRobert Mustacchi 
100*499d222eSRobert Mustacchi 	rb_cdb->rbc_allocation_len[0] = 0;
101*499d222eSRobert Mustacchi 	rb_cdb->rbc_allocation_len[1] = 0;
102*499d222eSRobert Mustacchi 	rb_cdb->rbc_allocation_len[2] = sizeof (descbuf);
103*499d222eSRobert Mustacchi 
104*499d222eSRobert Mustacchi 	if (libscsi_exec(act, targ) != 0) {
105*499d222eSRobert Mustacchi 		logmsg(MSG_ERROR, gettext("%s: failed to execute SCSI buffer "
106*499d222eSRobert Mustacchi 		    "descriptor read: %s\n"), verifier->vendor,
107*499d222eSRobert Mustacchi 		    libscsi_errmsg(hdl));
108*499d222eSRobert Mustacchi 		goto cleanup;
109*499d222eSRobert Mustacchi 	}
110*499d222eSRobert Mustacchi 
111*499d222eSRobert Mustacchi 	if (libscsi_action_get_status(act) != SAM4_STATUS_GOOD) {
112*499d222eSRobert Mustacchi 		logmsg(MSG_ERROR, gettext("%s: SCSI READ BUFFER command to "
113*499d222eSRobert Mustacchi 		    "determine maximum image size failed\n"), verifier->vendor);
114*499d222eSRobert Mustacchi 		goto cleanup;
115*499d222eSRobert Mustacchi 	}
116*499d222eSRobert Mustacchi 
117*499d222eSRobert Mustacchi 	if (descbuf[0] == 0 && descbuf[1] == 0 && descbuf[2] == 0 &&
118*499d222eSRobert Mustacchi 	    descbuf[3] == 0) {
119*499d222eSRobert Mustacchi 		logmsg(MSG_ERROR, gettext("%s: devices %s does not support "
120*499d222eSRobert Mustacchi 		    "firmware upgrade\n"), verifier->vendor,
121*499d222eSRobert Mustacchi 		    dvp->access_devname);
122*499d222eSRobert Mustacchi 		goto cleanup;
123*499d222eSRobert Mustacchi 	}
124*499d222eSRobert Mustacchi 
125*499d222eSRobert Mustacchi 	size = (descbuf[1] << 16) | (descbuf[2] << 8) | descbuf[3];
126*499d222eSRobert Mustacchi 	logmsg(MSG_INFO, gettext("%s: checking maximum image size %u against "
127*499d222eSRobert Mustacchi 	    "actual image size: %u\n"), verifier->vendor, size,
128*499d222eSRobert Mustacchi 	    verifier->imgsize);
129*499d222eSRobert Mustacchi 	if (size < verifier->imgsize) {
130*499d222eSRobert Mustacchi 		logmsg(MSG_ERROR, gettext("%s: supplied firmware image %s "
131*499d222eSRobert Mustacchi 		    "exceeds maximum image size of %u\n"),
132*499d222eSRobert Mustacchi 		    verifier->vendor, verifier->imgfile, size);
133*499d222eSRobert Mustacchi 		goto cleanup;
134*499d222eSRobert Mustacchi 	}
135*499d222eSRobert Mustacchi 
136*499d222eSRobert Mustacchi 	logmsg(MSG_INFO, gettext("%s: successfully validated images %s\n"),
137*499d222eSRobert Mustacchi 	    verifier->vendor, verifier->imgfile);
138*499d222eSRobert Mustacchi 
139*499d222eSRobert Mustacchi 	verifier->flashbuf = 0;
140*499d222eSRobert Mustacchi 	ret = FWFLASH_SUCCESS;
141*499d222eSRobert Mustacchi cleanup:
142*499d222eSRobert Mustacchi 	if (act != NULL)
143*499d222eSRobert Mustacchi 		libscsi_action_free(act);
144*499d222eSRobert Mustacchi 	if (targ != NULL)
145*499d222eSRobert Mustacchi 		libscsi_close(hdl, targ);
146*499d222eSRobert Mustacchi 	if (hdl != NULL)
147*499d222eSRobert Mustacchi 		libscsi_fini(hdl);
148*499d222eSRobert Mustacchi 
149*499d222eSRobert Mustacchi 	return (ret);
150d65b419eSXinChen }
151