mirror of
https://github.com/raspberrypi/linux.git
synced 2025-12-27 04:22:58 +00:00
291b38a756
Pull hw lockdown support from David Howells:
"Annotation of module parameters that configure hardware resources
including ioports, iomem addresses, irq lines and dma channels.
This allows a future patch to prohibit the use of such module
parameters to prevent that hardware from being abused to gain access
to the running kernel image as part of locking the kernel down under
UEFI secure boot conditions.
Annotations are made by changing:
module_param(n, t, p)
module_param_named(n, v, t, p)
module_param_array(n, t, m, p)
to:
module_param_hw(n, t, hwtype, p)
module_param_hw_named(n, v, t, hwtype, p)
module_param_hw_array(n, t, hwtype, m, p)
where the module parameter refers to a hardware setting
hwtype specifies the type of the resource being configured. This can
be one of:
ioport Module parameter configures an I/O port
iomem Module parameter configures an I/O mem address
ioport_or_iomem Module parameter could be either (runtime set)
irq Module parameter configures an I/O port
dma Module parameter configures a DMA channel
dma_addr Module parameter configures a DMA buffer address
other Module parameter configures some other value
Note that the hwtype is compile checked, but not currently stored (the
lockdown code probably won't require it). It is, however, there for
future use.
A bonus is that the hwtype can also be used for grepping.
The intention is for the kernel to ignore or reject attempts to set
annotated module parameters if lockdown is enabled. This applies to
options passed on the boot command line, passed to insmod/modprobe or
direct twiddling in /sys/module/ parameter files.
The module initialisation then needs to handle the parameter not being
set, by (1) giving an error, (2) probing for a value or (3) using a
reasonable default.
What I can't do is just reject a module out of hand because it may
take a hardware setting in the module parameters. Some important
modules, some ipmi stuff for instance, both probe for hardware and
allow hardware to be manually specified; if the driver is aborts with
any error, you don't get any ipmi hardware.
Further, trying to do this entirely in the module initialisation code
doesn't protect against sysfs twiddling.
[!] Note that in and of itself, this series of patches should have no
effect on the the size of the kernel or code execution - that is
left to a patch in the next series to effect. It does mark
annotated kernel parameters with a KERNEL_PARAM_FL_HWPARAM flag in
an already existing field"
* tag 'hwparam-20170420' of git://git.kernel.org/pub/scm/linux/kernel/git/dhowells/linux-fs: (38 commits)
Annotate hardware config module parameters in sound/pci/
Annotate hardware config module parameters in sound/oss/
Annotate hardware config module parameters in sound/isa/
Annotate hardware config module parameters in sound/drivers/
Annotate hardware config module parameters in fs/pstore/
Annotate hardware config module parameters in drivers/watchdog/
Annotate hardware config module parameters in drivers/video/
Annotate hardware config module parameters in drivers/tty/
Annotate hardware config module parameters in drivers/staging/vme/
Annotate hardware config module parameters in drivers/staging/speakup/
Annotate hardware config module parameters in drivers/staging/media/
Annotate hardware config module parameters in drivers/scsi/
Annotate hardware config module parameters in drivers/pcmcia/
Annotate hardware config module parameters in drivers/pci/hotplug/
Annotate hardware config module parameters in drivers/parport/
Annotate hardware config module parameters in drivers/net/wireless/
Annotate hardware config module parameters in drivers/net/wan/
Annotate hardware config module parameters in drivers/net/irda/
Annotate hardware config module parameters in drivers/net/hamradio/
Annotate hardware config module parameters in drivers/net/ethernet/
...
146 lines
4.0 KiB
C
146 lines
4.0 KiB
C
/*
|
|
* IIO driver for the Measurement Computing CIO-DAC
|
|
* Copyright (C) 2016 William Breathitt Gray
|
|
*
|
|
* This program is free software; you can redistribute it and/or modify
|
|
* it under the terms of the GNU General Public License, version 2, as
|
|
* published by the Free Software Foundation.
|
|
*
|
|
* This program is distributed in the hope that it will be useful, but
|
|
* WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|
* General Public License for more details.
|
|
*
|
|
* This driver supports the following Measurement Computing devices: CIO-DAC16,
|
|
* CIO-DAC06, and PC104-DAC06.
|
|
*/
|
|
#include <linux/bitops.h>
|
|
#include <linux/device.h>
|
|
#include <linux/errno.h>
|
|
#include <linux/iio/iio.h>
|
|
#include <linux/iio/types.h>
|
|
#include <linux/io.h>
|
|
#include <linux/ioport.h>
|
|
#include <linux/isa.h>
|
|
#include <linux/module.h>
|
|
#include <linux/moduleparam.h>
|
|
|
|
#define CIO_DAC_NUM_CHAN 16
|
|
|
|
#define CIO_DAC_CHAN(chan) { \
|
|
.type = IIO_VOLTAGE, \
|
|
.channel = chan, \
|
|
.info_mask_separate = BIT(IIO_CHAN_INFO_RAW), \
|
|
.indexed = 1, \
|
|
.output = 1 \
|
|
}
|
|
|
|
#define CIO_DAC_EXTENT 32
|
|
|
|
static unsigned int base[max_num_isa_dev(CIO_DAC_EXTENT)];
|
|
static unsigned int num_cio_dac;
|
|
module_param_hw_array(base, uint, ioport, &num_cio_dac, 0);
|
|
MODULE_PARM_DESC(base, "Measurement Computing CIO-DAC base addresses");
|
|
|
|
/**
|
|
* struct cio_dac_iio - IIO device private data structure
|
|
* @chan_out_states: channels' output states
|
|
* @base: base port address of the IIO device
|
|
*/
|
|
struct cio_dac_iio {
|
|
int chan_out_states[CIO_DAC_NUM_CHAN];
|
|
unsigned int base;
|
|
};
|
|
|
|
static int cio_dac_read_raw(struct iio_dev *indio_dev,
|
|
struct iio_chan_spec const *chan, int *val, int *val2, long mask)
|
|
{
|
|
struct cio_dac_iio *const priv = iio_priv(indio_dev);
|
|
|
|
if (mask != IIO_CHAN_INFO_RAW)
|
|
return -EINVAL;
|
|
|
|
*val = priv->chan_out_states[chan->channel];
|
|
|
|
return IIO_VAL_INT;
|
|
}
|
|
|
|
static int cio_dac_write_raw(struct iio_dev *indio_dev,
|
|
struct iio_chan_spec const *chan, int val, int val2, long mask)
|
|
{
|
|
struct cio_dac_iio *const priv = iio_priv(indio_dev);
|
|
const unsigned int chan_addr_offset = 2 * chan->channel;
|
|
|
|
if (mask != IIO_CHAN_INFO_RAW)
|
|
return -EINVAL;
|
|
|
|
/* DAC can only accept up to a 16-bit value */
|
|
if ((unsigned int)val > 65535)
|
|
return -EINVAL;
|
|
|
|
priv->chan_out_states[chan->channel] = val;
|
|
outw(val, priv->base + chan_addr_offset);
|
|
|
|
return 0;
|
|
}
|
|
|
|
static const struct iio_info cio_dac_info = {
|
|
.driver_module = THIS_MODULE,
|
|
.read_raw = cio_dac_read_raw,
|
|
.write_raw = cio_dac_write_raw
|
|
};
|
|
|
|
static const struct iio_chan_spec cio_dac_channels[CIO_DAC_NUM_CHAN] = {
|
|
CIO_DAC_CHAN(0), CIO_DAC_CHAN(1), CIO_DAC_CHAN(2), CIO_DAC_CHAN(3),
|
|
CIO_DAC_CHAN(4), CIO_DAC_CHAN(5), CIO_DAC_CHAN(6), CIO_DAC_CHAN(7),
|
|
CIO_DAC_CHAN(8), CIO_DAC_CHAN(9), CIO_DAC_CHAN(10), CIO_DAC_CHAN(11),
|
|
CIO_DAC_CHAN(12), CIO_DAC_CHAN(13), CIO_DAC_CHAN(14), CIO_DAC_CHAN(15)
|
|
};
|
|
|
|
static int cio_dac_probe(struct device *dev, unsigned int id)
|
|
{
|
|
struct iio_dev *indio_dev;
|
|
struct cio_dac_iio *priv;
|
|
unsigned int i;
|
|
|
|
indio_dev = devm_iio_device_alloc(dev, sizeof(*priv));
|
|
if (!indio_dev)
|
|
return -ENOMEM;
|
|
|
|
if (!devm_request_region(dev, base[id], CIO_DAC_EXTENT,
|
|
dev_name(dev))) {
|
|
dev_err(dev, "Unable to request port addresses (0x%X-0x%X)\n",
|
|
base[id], base[id] + CIO_DAC_EXTENT);
|
|
return -EBUSY;
|
|
}
|
|
|
|
indio_dev->info = &cio_dac_info;
|
|
indio_dev->modes = INDIO_DIRECT_MODE;
|
|
indio_dev->channels = cio_dac_channels;
|
|
indio_dev->num_channels = CIO_DAC_NUM_CHAN;
|
|
indio_dev->name = dev_name(dev);
|
|
indio_dev->dev.parent = dev;
|
|
|
|
priv = iio_priv(indio_dev);
|
|
priv->base = base[id];
|
|
|
|
/* initialize DAC outputs to 0V */
|
|
for (i = 0; i < 32; i += 2)
|
|
outw(0, base[id] + i);
|
|
|
|
return devm_iio_device_register(dev, indio_dev);
|
|
}
|
|
|
|
static struct isa_driver cio_dac_driver = {
|
|
.probe = cio_dac_probe,
|
|
.driver = {
|
|
.name = "cio-dac"
|
|
}
|
|
};
|
|
|
|
module_isa_driver(cio_dac_driver, num_cio_dac);
|
|
|
|
MODULE_AUTHOR("William Breathitt Gray <vilhelm.gray@gmail.com>");
|
|
MODULE_DESCRIPTION("Measurement Computing CIO-DAC IIO driver");
|
|
MODULE_LICENSE("GPL v2");
|