Changeset 91535 in vbox for trunk/src/VBox/Main/src-server/UefiVariableStoreImpl.cpp

Timestamp:

Oct 4, 2021 9:15:19 AM (3 years ago)

Author:

vboxsync

Message:

Main/{NvramStore,UefiVariableStore}: Always retain/releas the variable store reference in every externally accessible API to make sure the variable store is flushed to the NVRAM when saving avoiding data loss, bugref:9580

File:

• trunk/src/VBox/Main/src-server/UefiVariableStoreImpl.cpp (modified) (23 diffs)

trunk/src/VBox/Main/src-server/UefiVariableStoreImpl.cpp

@@ -89 +89 @@
  * @param   aParent                     The NVRAM store owning the UEFI NVRAM content.
  * @param   pMachine
- * @param   hVfsUefiVarStore            The UEFI variable store VFS handle.
- */
-HRESULT UefiVariableStore::init(NvramStore *aParent, Machine *pMachine, RTVFS hVfsUefiVarStore)
+ */
+HRESULT UefiVariableStore::init(NvramStore *aParent, Machine *pMachine)
 {
     LogFlowThisFuncEnter();
@@ -105 +104 @@
 
     /* share the parent weakly */
-    unconst(m->pParent) = aParent;
+    unconst(m->pParent)  = aParent;
     unconst(m->pMachine) = pMachine;
-    m->hVfsUefiVarStore = hVfsUefiVarStore;
+    m->hVfsUefiVarStore  = NIL_RTVFS;
 
     autoInitSpan.setSucceeded();
@@ -129 +128 @@
         return;
 
-    RTVfsRelease(m->hVfsUefiVarStore);
+    Assert(m->hVfsUefiVarStore == NIL_RTVFS);
 
     unconst(m->pParent) = NULL;
@@ -147 +146 @@
     if (FAILED(adep.rc())) return adep.rc();
 
+    HRESULT hrc = i_retainUefiVariableStore(true /*fReadonly*/);
+    if (FAILED(hrc)) return hrc;
+
     AutoReadLock rlock(this COMMA_LOCKVAL_SRC_POS);
 
-    HRESULT hrc = S_OK;
     uint64_t cbVar = 0;
     int vrc = i_uefiVarStoreQueryVarSz("PK", &cbVar);
@@ -178 +179 @@
         hrc = setError(E_FAIL, tr("Failed to query the platform key variable size: %Rrc"), vrc);
 
+    i_releaseUefiVariableStore();
     return hrc;
 }
@@ -187 +189 @@
     AutoMutableStateDependency adep(m->pMachine);
     if (FAILED(adep.rc())) return adep.rc();
+
+    HRESULT hrc = i_retainUefiVariableStore(false /*fReadonly*/);
+    if (FAILED(hrc)) return hrc;
 
     AutoWriteLock wlock(this COMMA_LOCKVAL_SRC_POS);
@@ -196 +201 @@
     {
         uint8_t bVar = fEnabled ? 0x1 : 0x0;
-        return i_uefiVarStoreSetVar(&GuidSecureBootEnable, "SecureBootEnable",
-                                      EFI_VAR_HEADER_ATTR_NON_VOLATILE
-                                    | EFI_VAR_HEADER_ATTR_BOOTSERVICE_ACCESS
-                                    | EFI_VAR_HEADER_ATTR_RUNTIME_ACCESS,
-                                    &bVar, sizeof(bVar));
+        hrc = i_uefiVarStoreSetVar(&GuidSecureBootEnable, "SecureBootEnable",
+                                     EFI_VAR_HEADER_ATTR_NON_VOLATILE
+                                   | EFI_VAR_HEADER_ATTR_BOOTSERVICE_ACCESS
+                                   | EFI_VAR_HEADER_ATTR_RUNTIME_ACCESS,
+                                   &bVar, sizeof(bVar));
     }
     else if (vrc == VERR_FILE_NOT_FOUND) /* No platform key means no secure boot support. */
-        return setError(VBOX_E_OBJECT_NOT_FOUND, tr("Secure boot is not available because the platform key (PK) is not enrolled"));
-
-    return setError(E_FAIL, tr("Failed to query the platform key variable size: %Rrc"), vrc);
+        hrc = setError(VBOX_E_OBJECT_NOT_FOUND, tr("Secure boot is not available because the platform key (PK) is not enrolled"));
+    else
+        hrc = setError(E_FAIL, tr("Failed to query the platform key variable size: %Rrc"), vrc);
+
+    i_releaseUefiVariableStore();
+    return hrc;
 }
 
@@ -217 +225 @@
     if (FAILED(adep.rc())) return adep.rc();
 
+    HRESULT hrc = i_retainUefiVariableStore(false /*fReadonly*/);
+    if (FAILED(hrc)) return hrc;
+
     AutoWriteLock wlock(this COMMA_LOCKVAL_SRC_POS);
 
@@ -222 +233 @@
     EFI_GUID OwnerGuid;
     RTEfiGuidFromUuid(&OwnerGuid, aOwnerUuid.raw());
-    return i_uefiVarStoreSetVar(&OwnerGuid, aName.c_str(), fAttr, &aData.front(), aData.size());
+    hrc = i_uefiVarStoreSetVar(&OwnerGuid, aName.c_str(), fAttr, &aData.front(), aData.size());
+
+    i_releaseUefiVariableStore();
+    return hrc;
 }
 
@@ -244 +258 @@
                                                std::vector<BYTE> &aData)
 {
-    RT_NOREF(aName, aOwnerUuid, aAttributes, aData);
-
-    HRESULT hrc = S_OK;
+    /* the machine needs to be mutable */
+    AutoMutableStateDependency adep(m->pMachine);
+    if (FAILED(adep.rc())) return adep.rc();
+
+    HRESULT hrc = i_retainUefiVariableStore(true /*fReadonly*/);
+    if (FAILED(hrc)) return hrc;
+
+    AutoReadLock rlock(this COMMA_LOCKVAL_SRC_POS);
+
     uint32_t fAttr;
     int vrc = i_uefiVarStoreQueryVarAttr(aName.c_str(), &fAttr);
@@ -276 +296 @@
         hrc = setError(VBOX_E_IPRT_ERROR, tr("Failed to query the attributes of variable '%s': %Rrc"), aName.c_str(), vrc);
 
+    i_releaseUefiVariableStore();
     return hrc;
 }
@@ -286 +307 @@
     AutoMutableStateDependency adep(m->pMachine);
     if (FAILED(adep.rc())) return adep.rc();
+
+    HRESULT hrc = i_retainUefiVariableStore(true /*fReadonly*/);
+    if (FAILED(hrc)) return hrc;
 
     AutoReadLock rlock(this COMMA_LOCKVAL_SRC_POS);
@@ -317 +341 @@
     }
 
+    i_releaseUefiVariableStore();
+
     if (RT_FAILURE(vrc))
         return setError(VBOX_E_IPRT_ERROR, tr("Failed to query the variables: %Rrc"), vrc);
@@ -329 +355 @@
     AutoMutableStateDependency adep(m->pMachine);
     if (FAILED(adep.rc())) return adep.rc();
+
+    HRESULT hrc = i_retainUefiVariableStore(false /*fReadonly*/);
+    if (FAILED(hrc)) return hrc;
 
     AutoWriteLock wlock(this COMMA_LOCKVAL_SRC_POS);
@@ -341 +370 @@
     const com::Guid GuidVBox(UuidVBox);
 
-    return i_uefiVarStoreAddSignatureToDb(&GuidGlobalVar, "PK", g_abUefiOracleDefPk, g_cbUefiOracleDefPk,
-                                          GuidVBox, SignatureType_X509);
+    hrc = i_uefiVarStoreAddSignatureToDb(&GuidGlobalVar, "PK", g_abUefiOracleDefPk, g_cbUefiOracleDefPk,
+                                         GuidVBox, SignatureType_X509);
+
+    i_releaseUefiVariableStore();
+    return hrc;
 }
 
@@ -352 +384 @@
     if (FAILED(adep.rc())) return adep.rc();
 
+    HRESULT hrc = i_retainUefiVariableStore(false /*fReadonly*/);
+    if (FAILED(hrc)) return hrc;
+
     AutoWriteLock wlock(this COMMA_LOCKVAL_SRC_POS);
 
     EFI_GUID GuidGlobalVar = EFI_GLOBAL_VARIABLE_GUID;
-    return i_uefiVarStoreAddSignatureToDbVec(&GuidGlobalVar, "PK", aData, aOwnerUuid, SignatureType_X509);
+    hrc = i_uefiVarStoreAddSignatureToDbVec(&GuidGlobalVar, "PK", aData, aOwnerUuid, SignatureType_X509);
+
+    i_releaseUefiVariableStore();
+    return hrc;
 }
 
@@ -365 +403 @@
     if (FAILED(adep.rc())) return adep.rc();
 
+    HRESULT hrc = i_retainUefiVariableStore(false /*fReadonly*/);
+    if (FAILED(hrc)) return hrc;
+
     AutoWriteLock wlock(this COMMA_LOCKVAL_SRC_POS);
 
     EFI_GUID GuidGlobalVar = EFI_GLOBAL_VARIABLE_GUID;
-    return i_uefiVarStoreAddSignatureToDbVec(&GuidGlobalVar, "KEK", aData, aOwnerUuid, enmSignatureType);
+    hrc = i_uefiVarStoreAddSignatureToDbVec(&GuidGlobalVar, "KEK", aData, aOwnerUuid, enmSignatureType);
+
+    i_releaseUefiVariableStore();
+    return hrc;
 }
 
@@ -378 +422 @@
     if (FAILED(adep.rc())) return adep.rc();
 
+    HRESULT hrc = i_retainUefiVariableStore(false /*fReadonly*/);
+    if (FAILED(hrc)) return hrc;
+
     AutoWriteLock wlock(this COMMA_LOCKVAL_SRC_POS);
 
     EFI_GUID GuidSecurityDb = EFI_GLOBAL_VARIABLE_GUID;
-    return i_uefiVarStoreAddSignatureToDbVec(&GuidSecurityDb, "db", aData, aOwnerUuid, enmSignatureType);
+    hrc = i_uefiVarStoreAddSignatureToDbVec(&GuidSecurityDb, "db", aData, aOwnerUuid, enmSignatureType);
+
+    i_releaseUefiVariableStore();
+    return hrc;
 }
 
@@ -391 +441 @@
     if (FAILED(adep.rc())) return adep.rc();
 
+    HRESULT hrc = i_retainUefiVariableStore(false /*fReadonly*/);
+    if (FAILED(hrc)) return hrc;
+
     AutoWriteLock wlock(this COMMA_LOCKVAL_SRC_POS);
 
     EFI_GUID GuidSecurityDb = EFI_IMAGE_SECURITY_DATABASE_GUID;
-    return i_uefiVarStoreAddSignatureToDbVec(&GuidSecurityDb, "dbx", aData, aOwnerUuid, enmSignatureType);
+    hrc = i_uefiVarStoreAddSignatureToDbVec(&GuidSecurityDb, "dbx", aData, aOwnerUuid, enmSignatureType);
+
+    i_releaseUefiVariableStore();
+    return hrc;
 }
 
@@ -402 +458 @@
     AutoMutableStateDependency adep(m->pMachine);
     if (FAILED(adep.rc())) return adep.rc();
+
+    HRESULT hrc = i_retainUefiVariableStore(false /*fReadonly*/);
+    if (FAILED(hrc)) return hrc;
 
     AutoWriteLock wlock(this COMMA_LOCKVAL_SRC_POS);
@@ -415 +474 @@
     const com::Guid GuidMs(UuidMs);
 
-    HRESULT hrc = i_uefiVarStoreAddSignatureToDb(&EfiGuidGlobalVar, "KEK", g_abUefiMicrosoftKek, g_cbUefiMicrosoftKek,
-                                                 GuidMs, SignatureType_X509);
+    hrc = i_uefiVarStoreAddSignatureToDb(&EfiGuidGlobalVar, "KEK", g_abUefiMicrosoftKek, g_cbUefiMicrosoftKek,
+                                         GuidMs, SignatureType_X509);
     if (SUCCEEDED(hrc))
     {
@@ -426 +485 @@
     }
 
+    i_releaseUefiVariableStore();
     return hrc;
 }
@@ -591 +651 @@
 
 /**
+ * Retains the reference of the variable store from the parent.
+ *
+ * @returns COM status code.
+ * @param   fReadonly           Flag whether the access is readonly.
+ */
+HRESULT UefiVariableStore::i_retainUefiVariableStore(bool fReadonly)
+{
+    Assert(m->hVfsUefiVarStore = NIL_RTVFS);
+    return m->pParent->i_retainUefiVarStore(&m->hVfsUefiVarStore, fReadonly);
+}
+
+
+/**
+ * Releases the reference of the variable store from the parent.
+ *
+ * @returns COM status code.
+ */
+HRESULT UefiVariableStore::i_releaseUefiVariableStore(void)
+{
+    RTVFS hVfs = m->hVfsUefiVarStore;
+
+    m->hVfsUefiVarStore = NIL_RTVFS;
+    return m->pParent->i_releaseUefiVarStore(hVfs);
+}
+
+
+/**
  * Adds the given variable to the variable store.
  *