mirror of
https://git.hardenedbsd.org/hardenedbsd/HardenedBSD.git
synced 2024-11-15 06:42:51 +01:00
e307eb94ae
bootonce feature is temporary, one time boot, activated by "bectl activate -t BE", "bectl activate -T BE" will reset the bootonce flag. By default, the bootonce setting is reset on attempt to boot and the next boot will use previously active BE. By setting zfs_bootonce_activate="YES" in rc.conf, the bootonce BE will be set permanently active. bootonce dataset name is recorded in boot pool labels, bootenv area. in case of nextboot, the nextboot_enable boolean variable is recorded in freebsd:nvstore nvlist, also stored in boot pool label bootenv area. On boot, the loader will process /boot/nextboot.conf if nextboot_enable is "YES", and will set nextboot_enable to "NO", preventing /boot/nextboot.conf processing on next boot. bootonce and nextboot features are usable in both UEFI and BIOS boot. To use bootonce/nextboot features, the boot loader needs to be updated on disk; if loader.efi is stored on ESP, then ESP needs to be updated and for BIOS boot, stage2 (zfsboot or gptzfsboot) needs to be updated (gpart or other tools). At this time, only lua loader is updated. Sponsored by: Netflix, Klara Inc. Differential Revision: https://reviews.freebsd.org/D25512
319 lines
7.5 KiB
C
319 lines
7.5 KiB
C
/*-
|
|
* SPDX-License-Identifier: BSD-2-Clause-FreeBSD
|
|
*
|
|
* Copyright (c) 2017 Kyle J. Kneitinger <kyle@kneit.in>
|
|
* Copyright (c) 2018 Kyle Evans <kevans@FreeBSD.org>
|
|
*
|
|
* Redistribution and use in source and binary forms, with or without
|
|
* modification, are permitted provided that the following conditions
|
|
* are met:
|
|
* 1. Redistributions of source code must retain the above copyright
|
|
* notice, this list of conditions and the following disclaimer.
|
|
* 2. Redistributions in binary form must reproduce the above copyright
|
|
* notice, this list of conditions and the following disclaimer in the
|
|
* documentation and/or other materials provided with the distribution.
|
|
*
|
|
* THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
|
|
* ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
|
|
* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
|
|
* ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
|
|
* FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
|
|
* DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
|
|
* OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
|
|
* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
|
|
* LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
|
|
* OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
|
|
* SUCH DAMAGE.
|
|
*/
|
|
|
|
#include <sys/cdefs.h>
|
|
__FBSDID("$FreeBSD$");
|
|
|
|
#include <sys/zfs_context.h>
|
|
#include <libzfsbootenv.h>
|
|
|
|
#include "be.h"
|
|
#include "be_impl.h"
|
|
|
|
static int snapshot_proplist_update(zfs_handle_t *hdl, prop_data_t *data);
|
|
|
|
/*
|
|
* Returns the name of the active boot environment
|
|
*/
|
|
const char *
|
|
be_active_name(libbe_handle_t *lbh)
|
|
{
|
|
|
|
if (*lbh->rootfs != '\0')
|
|
return (strrchr(lbh->rootfs, '/') + sizeof(char));
|
|
else
|
|
return (lbh->rootfs);
|
|
}
|
|
|
|
|
|
/*
|
|
* Returns full path of the active boot environment
|
|
*/
|
|
const char *
|
|
be_active_path(libbe_handle_t *lbh)
|
|
{
|
|
|
|
return (lbh->rootfs);
|
|
}
|
|
|
|
/*
|
|
* Returns the name of the next active boot environment
|
|
*/
|
|
const char *
|
|
be_nextboot_name(libbe_handle_t *lbh)
|
|
{
|
|
|
|
if (*lbh->bootfs != '\0')
|
|
return (strrchr(lbh->bootfs, '/') + sizeof(char));
|
|
else
|
|
return (lbh->bootfs);
|
|
}
|
|
|
|
|
|
/*
|
|
* Returns full path of the active boot environment
|
|
*/
|
|
const char *
|
|
be_nextboot_path(libbe_handle_t *lbh)
|
|
{
|
|
|
|
return (lbh->bootfs);
|
|
}
|
|
|
|
|
|
/*
|
|
* Returns the path of the boot environment root dataset
|
|
*/
|
|
const char *
|
|
be_root_path(libbe_handle_t *lbh)
|
|
{
|
|
|
|
return (lbh->root);
|
|
}
|
|
|
|
|
|
/*
|
|
* Populates dsnvl with one nvlist per bootenv dataset describing the properties
|
|
* of that dataset that we've declared ourselves to care about.
|
|
*/
|
|
int
|
|
be_get_bootenv_props(libbe_handle_t *lbh, nvlist_t *dsnvl)
|
|
{
|
|
prop_data_t data;
|
|
|
|
data.lbh = lbh;
|
|
data.list = dsnvl;
|
|
data.single_object = false;
|
|
data.bootonce = NULL;
|
|
return (be_proplist_update(&data));
|
|
}
|
|
|
|
int
|
|
be_get_dataset_props(libbe_handle_t *lbh, const char *name, nvlist_t *props)
|
|
{
|
|
zfs_handle_t *snap_hdl;
|
|
prop_data_t data;
|
|
int ret;
|
|
|
|
data.lbh = lbh;
|
|
data.list = props;
|
|
data.single_object = true;
|
|
data.bootonce = NULL;
|
|
if ((snap_hdl = zfs_open(lbh->lzh, name,
|
|
ZFS_TYPE_FILESYSTEM | ZFS_TYPE_SNAPSHOT)) == NULL)
|
|
return (BE_ERR_ZFSOPEN);
|
|
|
|
ret = prop_list_builder_cb(snap_hdl, &data);
|
|
zfs_close(snap_hdl);
|
|
return (ret);
|
|
}
|
|
|
|
int
|
|
be_get_dataset_snapshots(libbe_handle_t *lbh, const char *name, nvlist_t *props)
|
|
{
|
|
zfs_handle_t *ds_hdl;
|
|
prop_data_t data;
|
|
int ret;
|
|
|
|
data.lbh = lbh;
|
|
data.list = props;
|
|
data.single_object = false;
|
|
data.bootonce = NULL;
|
|
if ((ds_hdl = zfs_open(lbh->lzh, name,
|
|
ZFS_TYPE_FILESYSTEM)) == NULL)
|
|
return (BE_ERR_ZFSOPEN);
|
|
|
|
ret = snapshot_proplist_update(ds_hdl, &data);
|
|
zfs_close(ds_hdl);
|
|
return (ret);
|
|
}
|
|
|
|
/*
|
|
* Internal callback function used by zfs_iter_filesystems. For each dataset in
|
|
* the bootenv root, populate an nvlist_t of its relevant properties.
|
|
*/
|
|
int
|
|
prop_list_builder_cb(zfs_handle_t *zfs_hdl, void *data_p)
|
|
{
|
|
char buf[512], *mountpoint;
|
|
prop_data_t *data;
|
|
libbe_handle_t *lbh;
|
|
nvlist_t *props;
|
|
const char *dataset, *name;
|
|
boolean_t mounted;
|
|
|
|
/*
|
|
* XXX TODO:
|
|
* some system for defining constants for the nvlist keys
|
|
* error checking
|
|
*/
|
|
data = (prop_data_t *)data_p;
|
|
lbh = data->lbh;
|
|
|
|
if (data->single_object)
|
|
props = data->list;
|
|
else
|
|
nvlist_alloc(&props, NV_UNIQUE_NAME, KM_SLEEP);
|
|
|
|
dataset = zfs_get_name(zfs_hdl);
|
|
nvlist_add_string(props, "dataset", dataset);
|
|
|
|
if (data->bootonce != NULL &&
|
|
strcmp(dataset, data->bootonce) == 0)
|
|
nvlist_add_boolean_value(props, "bootonce", true);
|
|
|
|
name = strrchr(dataset, '/') + 1;
|
|
nvlist_add_string(props, "name", name);
|
|
|
|
mounted = zfs_is_mounted(zfs_hdl, &mountpoint);
|
|
|
|
if (mounted)
|
|
nvlist_add_string(props, "mounted", mountpoint);
|
|
|
|
if (zfs_prop_get(zfs_hdl, ZFS_PROP_MOUNTPOINT, buf, 512,
|
|
NULL, NULL, 0, 1) == 0)
|
|
nvlist_add_string(props, "mountpoint", buf);
|
|
|
|
if (zfs_prop_get(zfs_hdl, ZFS_PROP_ORIGIN, buf, 512,
|
|
NULL, NULL, 0, 1) == 0)
|
|
nvlist_add_string(props, "origin", buf);
|
|
|
|
if (zfs_prop_get(zfs_hdl, ZFS_PROP_CREATION, buf, 512,
|
|
NULL, NULL, 0, 1) == 0)
|
|
nvlist_add_string(props, "creation", buf);
|
|
|
|
nvlist_add_boolean_value(props, "active",
|
|
(strcmp(be_active_path(lbh), dataset) == 0));
|
|
|
|
if (zfs_prop_get(zfs_hdl, ZFS_PROP_USED, buf, 512,
|
|
NULL, NULL, 0, 1) == 0)
|
|
nvlist_add_string(props, "used", buf);
|
|
|
|
if (zfs_prop_get(zfs_hdl, ZFS_PROP_USEDDS, buf, 512,
|
|
NULL, NULL, 0, 1) == 0)
|
|
nvlist_add_string(props, "usedds", buf);
|
|
|
|
if (zfs_prop_get(zfs_hdl, ZFS_PROP_USEDSNAP, buf, 512,
|
|
NULL, NULL, 0, 1) == 0)
|
|
nvlist_add_string(props, "usedsnap", buf);
|
|
|
|
if (zfs_prop_get(zfs_hdl, ZFS_PROP_USEDREFRESERV, buf, 512,
|
|
NULL, NULL, 0, 1) == 0)
|
|
nvlist_add_string(props, "usedrefreserv", buf);
|
|
|
|
if (zfs_prop_get(zfs_hdl, ZFS_PROP_REFERENCED, buf, 512,
|
|
NULL, NULL, 0, 1) == 0)
|
|
nvlist_add_string(props, "referenced", buf);
|
|
|
|
nvlist_add_boolean_value(props, "nextboot",
|
|
(strcmp(be_nextboot_path(lbh), dataset) == 0));
|
|
|
|
if (!data->single_object)
|
|
nvlist_add_nvlist(data->list, name, props);
|
|
|
|
return (0);
|
|
}
|
|
|
|
|
|
/*
|
|
* Updates the properties of each bootenv in the libbe handle
|
|
* XXX TODO: ensure that this is always consistent (run after adds, deletes,
|
|
* renames,etc
|
|
*/
|
|
int
|
|
be_proplist_update(prop_data_t *data)
|
|
{
|
|
zfs_handle_t *root_hdl;
|
|
|
|
if ((root_hdl = zfs_open(data->lbh->lzh, data->lbh->root,
|
|
ZFS_TYPE_FILESYSTEM)) == NULL)
|
|
return (BE_ERR_ZFSOPEN);
|
|
|
|
(void) lzbe_get_boot_device(zpool_get_name(data->lbh->active_phandle),
|
|
&data->bootonce);
|
|
|
|
/* XXX TODO: some error checking here */
|
|
zfs_iter_filesystems(root_hdl, prop_list_builder_cb, data);
|
|
|
|
zfs_close(root_hdl);
|
|
|
|
return (0);
|
|
}
|
|
|
|
static int
|
|
snapshot_proplist_update(zfs_handle_t *hdl, prop_data_t *data)
|
|
{
|
|
|
|
return (zfs_iter_snapshots_sorted(hdl, prop_list_builder_cb, data,
|
|
0, 0));
|
|
}
|
|
|
|
|
|
int
|
|
be_prop_list_alloc(nvlist_t **be_list)
|
|
{
|
|
|
|
return (nvlist_alloc(be_list, NV_UNIQUE_NAME, KM_SLEEP));
|
|
}
|
|
|
|
/*
|
|
* frees property list and its children
|
|
*/
|
|
void
|
|
be_prop_list_free(nvlist_t *be_list)
|
|
{
|
|
nvlist_t *prop_list;
|
|
nvpair_t *be_pair;
|
|
|
|
be_pair = nvlist_next_nvpair(be_list, NULL);
|
|
if (nvpair_value_nvlist(be_pair, &prop_list) == 0)
|
|
nvlist_free(prop_list);
|
|
|
|
while ((be_pair = nvlist_next_nvpair(be_list, be_pair)) != NULL) {
|
|
if (nvpair_value_nvlist(be_pair, &prop_list) == 0)
|
|
nvlist_free(prop_list);
|
|
}
|
|
}
|
|
|
|
|
|
/*
|
|
* Usage
|
|
*/
|
|
int
|
|
be_exists(libbe_handle_t *lbh, char *be)
|
|
{
|
|
char buf[BE_MAXPATHLEN];
|
|
|
|
be_root_concat(lbh, be, buf);
|
|
|
|
if (!zfs_dataset_exists(lbh->lzh, buf, ZFS_TYPE_DATASET))
|
|
return (BE_ERR_NOENT);
|
|
|
|
return (BE_ERR_SUCCESS);
|
|
}
|