|
Packit |
e3b5e1 |
#! /bin/bash -eu
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
# Script for checking various microcode caveats
|
|
Packit |
e3b5e1 |
#
|
|
Packit |
e3b5e1 |
#
|
|
Packit |
e3b5e1 |
# SPDX-License-Identifier: CC0-1.0
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
: ${MC_CAVEATS_DATA_DIR=/usr/share/microcode_ctl/ucode_with_caveats}
|
|
Packit |
e3b5e1 |
: ${FW_DIR=/lib/firmware}
|
|
Packit |
e3b5e1 |
: ${CFG_DIR=/etc/microcode_ctl/ucode_with_caveats}
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
usage() {
|
|
Packit |
e3b5e1 |
echo 'Usage: check_caveats [-d] [-e] [-k TARGET_KVER] [-c CONFIG]'
|
|
Packit |
e3b5e1 |
echo ' [-m] [-v]'
|
|
Packit |
e3b5e1 |
echo
|
|
Packit |
e3b5e1 |
echo ' -d - enables disclaimer printing mode'
|
|
Packit |
e3b5e1 |
echo ' -e - check for early microcode load possibility (instead of'
|
|
Packit |
e3b5e1 |
echo ' late microcode load)'
|
|
Packit |
e3b5e1 |
echo ' -k - target version to check against, $(uname -r) is used'
|
|
Packit |
e3b5e1 |
echo ' otherwise'
|
|
Packit |
e3b5e1 |
echo ' -c - caveat config(s) to check, all configs are checked'
|
|
Packit |
e3b5e1 |
echo ' otherwise'
|
|
Packit |
e3b5e1 |
echo ' -m - check that caveats actually apply to the current model'
|
|
Packit |
e3b5e1 |
echo ' -v - verbose output'
|
|
Packit |
e3b5e1 |
echo
|
|
Packit |
e3b5e1 |
echo 'Environment:'
|
|
Packit |
e3b5e1 |
echo ' MC_CAVEATS_DATA_DIR - directory that contains caveats'
|
|
Packit |
e3b5e1 |
echo ' configuration data'
|
|
Packit |
e3b5e1 |
}
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
debug() { [ 0 = "$verbose" ] || echo "$*" >&2; }
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
# A simplified RPM version comparison that takes into account knowledge about
|
|
Packit |
e3b5e1 |
# Y- and Z-streams (so it compares versions inside Y-stram or Z-stream if
|
|
Packit |
e3b5e1 |
# the version against which comparison is performed has appropriate versioning
|
|
Packit |
e3b5e1 |
# scheme).
|
|
Packit |
e3b5e1 |
#
|
|
Packit |
e3b5e1 |
# $1 - kernel version to check
|
|
Packit |
e3b5e1 |
# $* - list of kernel versions to check against
|
|
Packit |
e3b5e1 |
check_kver()
|
|
Packit |
e3b5e1 |
{
|
|
Packit |
e3b5e1 |
local t_major= t_minor= t_patch= t_y= t_z1= t_z2= t_rest=
|
|
Packit |
e3b5e1 |
local m_major= m_minor= m_patch= m_y= m_z1= m_z2= m_rest=
|
|
Packit |
e3b5e1 |
local cmp_type=
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
# IFS=.- read -r t_major t_minor t_patch t_y t_z1 t_z2 t_rest <<<"$1"
|
|
Packit |
e3b5e1 |
# "cannot create temp file for here-document: Read-only file system"
|
|
Packit |
e3b5e1 |
# that's why we can't have nice things.
|
|
Packit |
e3b5e1 |
t_major=${1%%.*}
|
|
Packit |
e3b5e1 |
t_rest=${1#${t_major}}
|
|
Packit |
e3b5e1 |
t_rest=${t_rest#.}
|
|
Packit |
e3b5e1 |
t_minor=${t_rest%%.*}
|
|
Packit |
e3b5e1 |
t_rest=${t_rest#${t_minor}}
|
|
Packit |
e3b5e1 |
t_rest=${t_rest#.}
|
|
Packit |
e3b5e1 |
t_patch=${t_rest%%-*}
|
|
Packit |
e3b5e1 |
t_rest=${t_rest#${t_patch}}
|
|
Packit |
e3b5e1 |
t_rest=${t_rest#-}
|
|
Packit |
e3b5e1 |
t_y=${t_rest%%.*}
|
|
Packit |
e3b5e1 |
t_rest=${t_rest#${t_y}}
|
|
Packit |
e3b5e1 |
t_rest=${t_rest#.}
|
|
Packit |
e3b5e1 |
t_z1=${t_rest%%.*}
|
|
Packit |
e3b5e1 |
t_rest=${t_rest#${t_z1}}
|
|
Packit |
e3b5e1 |
t_rest=${t_rest#.}
|
|
Packit |
e3b5e1 |
t_z2=${t_rest%%.*}
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
# minor/major/patch/y should be numeric
|
|
Packit |
e3b5e1 |
[ -n "${t_major##*[!0-9]*}" ] || return 1
|
|
Packit |
e3b5e1 |
[ -n "${t_minor##*[!0-9]*}" ] || return 1
|
|
Packit |
e3b5e1 |
[ -n "${t_patch##*[!0-9]*}" ] || return 1
|
|
Packit |
e3b5e1 |
[ -n "${t_y##*[!0-9]*}" ] || return 1
|
|
Packit |
e3b5e1 |
# reset z1/z2 to zero if non-numeric
|
|
Packit |
e3b5e1 |
[ -n "${t_z1##*[!0-9]*}" ] || t_z1=0
|
|
Packit |
e3b5e1 |
[ -n "${t_z2##*[!0-9]*}" ] || t_z2=0
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
while [ 1 -lt "$#" ]; do
|
|
Packit |
e3b5e1 |
cmp_type=upstream
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
shift
|
|
Packit |
e3b5e1 |
m_major=${1%%.*}
|
|
Packit |
e3b5e1 |
m_rest=${1#${m_major}}
|
|
Packit |
e3b5e1 |
m_rest=${m_rest#.}
|
|
Packit |
e3b5e1 |
m_minor=${m_rest%%.*}
|
|
Packit |
e3b5e1 |
m_rest=${m_rest#${m_minor}}
|
|
Packit |
e3b5e1 |
m_rest=${m_rest#.}
|
|
Packit |
e3b5e1 |
m_patch=${m_rest%%-*}
|
|
Packit |
e3b5e1 |
m_rest=${m_rest#${m_patch}}
|
|
Packit |
e3b5e1 |
m_rest=${m_rest#-}
|
|
Packit |
e3b5e1 |
m_y=${m_rest%%.*}
|
|
Packit |
e3b5e1 |
m_rest=${m_rest#${m_y}}
|
|
Packit |
e3b5e1 |
m_rest=${m_rest#.}
|
|
Packit |
e3b5e1 |
m_z1=${m_rest%%.*}
|
|
Packit |
e3b5e1 |
m_rest=${m_rest#${m_z1}}
|
|
Packit |
e3b5e1 |
m_rest=${m_rest#.}
|
|
Packit |
e3b5e1 |
m_z2=${m_rest%%.*}
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
# minor/major/patch should be numeric
|
|
Packit |
e3b5e1 |
[ -n "${m_major##*[!0-9]*}" ] || continue
|
|
Packit |
e3b5e1 |
[ -n "${m_minor##*[!0-9]*}" ] || continue
|
|
Packit |
e3b5e1 |
[ -n "${m_patch##*[!0-9]*}" ] || continue
|
|
Packit |
e3b5e1 |
# reset z1/z2 to zero if non-numeric
|
|
Packit |
e3b5e1 |
[ -n "${m_y##*[!0-9]*}" ] && cmp_type=y || m_y=0
|
|
Packit |
e3b5e1 |
[ -n "${m_z1##*[!0-9]*}" ] && cmp_type=z || m_z1=0
|
|
Packit |
e3b5e1 |
[ -n "${m_z2##*[!0-9]*}" ] && cmp_type=z || m_z2=0
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
# Comparing versions
|
|
Packit |
e3b5e1 |
case "$cmp_type" in
|
|
Packit |
e3b5e1 |
upstream)
|
|
Packit |
e3b5e1 |
[ "$t_major" -ge "$m_major" ] || continue
|
|
Packit |
e3b5e1 |
[ "$t_minor" -ge "$m_minor" ] || continue
|
|
Packit |
e3b5e1 |
[ "$t_patch" -ge "$m_patch" ] || continue
|
|
Packit |
e3b5e1 |
return 0
|
|
Packit |
e3b5e1 |
;;
|
|
Packit |
e3b5e1 |
y)
|
|
Packit |
e3b5e1 |
[ "$t_major" -eq "$m_major" ] || continue
|
|
Packit |
e3b5e1 |
[ "$t_minor" -eq "$m_minor" ] || continue
|
|
Packit |
e3b5e1 |
[ "$t_patch" -eq "$m_patch" ] || continue
|
|
Packit |
e3b5e1 |
[ "$t_y" -ge "$m_y" ] || continue
|
|
Packit |
e3b5e1 |
return 0
|
|
Packit |
e3b5e1 |
;;
|
|
Packit |
e3b5e1 |
z)
|
|
Packit |
e3b5e1 |
[ "$t_major" -eq "$m_major" ] || continue
|
|
Packit |
e3b5e1 |
[ "$t_minor" -eq "$m_minor" ] || continue
|
|
Packit |
e3b5e1 |
[ "$t_patch" -eq "$m_patch" ] || continue
|
|
Packit |
e3b5e1 |
[ "$t_y" -eq "$m_y" ] || continue
|
|
Packit |
e3b5e1 |
[ "$t_z1" -ge "$m_z1" ] || continue
|
|
Packit |
e3b5e1 |
[ "$t_z2" -ge "$m_z2" ] || continue
|
|
Packit |
e3b5e1 |
return 0
|
|
Packit |
e3b5e1 |
;;
|
|
Packit |
e3b5e1 |
esac
|
|
Packit |
e3b5e1 |
done
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
return 1
|
|
Packit |
e3b5e1 |
}
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
# It is needed for SKX[1] for which different product segments
|
|
Packit |
e3b5e1 |
# are differentiated by a value in the CAPID0 field of PCU registers
|
|
Packit |
e3b5e1 |
# device[2].
|
|
Packit |
e3b5e1 |
# [1] https://github.com/intel/Intel-Linux-Processor-Microcode-Data-Files/issues/21
|
|
Packit |
e3b5e1 |
# [2] https://www.intel.com/content/dam/www/public/us/en/documents/specification-updates/xeon-scalable-spec-update.pdf#page=13
|
|
Packit |
e3b5e1 |
#
|
|
Packit |
e3b5e1 |
# $1 - params in config file, space-separated, in key=value form:
|
|
Packit |
e3b5e1 |
# domain=* - PCI domain, '*' or number
|
|
Packit |
e3b5e1 |
# bus=* - PCI bus, '*' or number
|
|
Packit |
e3b5e1 |
# device=* - PCI device, '*' or number
|
|
Packit |
e3b5e1 |
# function=* - PCI function, '*' or number
|
|
Packit |
e3b5e1 |
# vid= - PCI vendor ID, empty or number
|
|
Packit |
e3b5e1 |
# did= - PCI device ID, empty or number
|
|
Packit |
e3b5e1 |
# offset=0 - offset in configuration space
|
|
Packit |
e3b5e1 |
# size=4 - field size
|
|
Packit |
e3b5e1 |
# mask=0 - mask applied to the data read
|
|
Packit |
e3b5e1 |
# val=0 - comma-separated list of possible values
|
|
Packit |
e3b5e1 |
# mode=success-any [ success-ail, fail-any, fail-all ] - matching mode:
|
|
Packit |
e3b5e1 |
# success-any: Returns 0 if there was at least one match, otherwise 1.
|
|
Packit |
e3b5e1 |
# success-all: Returns 0 if there was at least one device checked and all
|
|
Packit |
e3b5e1 |
# the checked devices have matches, otherwise 1.
|
|
Packit |
e3b5e1 |
# fail-any: Returns 1 if there was at least one match, otherwise 0.
|
|
Packit |
e3b5e1 |
# fail-all: Returns 1 if there was at least one device checked and all
|
|
Packit |
e3b5e1 |
# the checked devices have matches, otherwise 0.
|
|
Packit |
e3b5e1 |
# $2 - whether model filter is engaged (if it is not '1', just return the result
|
|
Packit |
e3b5e1 |
# based on "mode" value that assumes that there were 0 checks/0 matches).
|
|
Packit |
e3b5e1 |
check_pci_config_val()
|
|
Packit |
e3b5e1 |
{
|
|
Packit |
e3b5e1 |
local domain='*' bus='*' device='*' func='*' vid= did=
|
|
Packit |
e3b5e1 |
local offset=0 size=4 mask=0 val=0 mode=success-any
|
|
Packit |
e3b5e1 |
local checked=0 matched=0 path=''
|
|
Packit |
e3b5e1 |
local dev_path dev_vid dev_did dev_val
|
|
Packit |
e3b5e1 |
local opts="${1:-}"
|
|
Packit |
e3b5e1 |
local match_model="${2:0}"
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
set -- $1
|
|
Packit |
e3b5e1 |
while [ "$#" -gt 0 ]; do
|
|
Packit |
e3b5e1 |
[ "x${1#domain=}" = "x${1}" ] || domain="${1#domain=}"
|
|
Packit |
e3b5e1 |
[ "x${1#bus=}" = "x${1}" ] || bus="${1#bus=}"
|
|
Packit |
e3b5e1 |
[ "x${1#device=}" = "x${1}" ] || device="${1#device=}"
|
|
Packit |
e3b5e1 |
[ "x${1#function=}" = "x${1}" ] || func="${1#function=}"
|
|
Packit |
e3b5e1 |
[ "x${1#vid=}" = "x${1}" ] || vid="${1#vid=}"
|
|
Packit |
e3b5e1 |
[ "x${1#did=}" = "x${1}" ] || did="${1#did=}"
|
|
Packit |
e3b5e1 |
[ "x${1#offset=}" = "x${1}" ] || offset="${1#offset=}"
|
|
Packit |
e3b5e1 |
[ "x${1#size=}" = "x${1}" ] || size="${1#size=}"
|
|
Packit |
e3b5e1 |
[ "x${1#mask=}" = "x${1}" ] || mask="${1#mask=}"
|
|
Packit |
e3b5e1 |
[ "x${1#val=}" = "x${1}" ] || val="${1#val=}"
|
|
Packit |
e3b5e1 |
[ "x${1#mode=}" = "x${1}" ] || mode="${1#mode=}"
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
shift
|
|
Packit |
e3b5e1 |
done
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
path="$domain"
|
|
Packit |
e3b5e1 |
if [ "x$bus" = 'x*' ]; then
|
|
Packit |
e3b5e1 |
path="$path:$bus";
|
|
Packit |
e3b5e1 |
else
|
|
Packit |
e3b5e1 |
path=$(printf '%s:%02x' "$path" "$bus")
|
|
Packit |
e3b5e1 |
fi
|
|
Packit |
e3b5e1 |
if [ "x$device" = 'x*' ]; then
|
|
Packit |
e3b5e1 |
path="$path:$device";
|
|
Packit |
e3b5e1 |
else
|
|
Packit |
e3b5e1 |
path=$(printf '%s:%02x' "$path" "$device")
|
|
Packit |
e3b5e1 |
fi
|
|
Packit |
e3b5e1 |
if [ "x$func" = 'x*' ]; then
|
|
Packit |
e3b5e1 |
path="$path.$func";
|
|
Packit |
e3b5e1 |
else
|
|
Packit |
e3b5e1 |
path=$(printf '%s.%01x' "$path" "$func")
|
|
Packit |
e3b5e1 |
fi
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
# Normalise VID, DID
|
|
Packit |
e3b5e1 |
[ -n "$vid" ] || vid="$(printf '0x%04x' "$vid")"
|
|
Packit |
e3b5e1 |
[ -n "$did" ] || did="$(printf '0x%04x' "$did")"
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
( [ 1 != "$match_model" ] \
|
|
Packit |
e3b5e1 |
|| /usr/bin/find /sys/bus/pci/devices/ -maxdepth 1 -name "$path" \
|
|
Packit |
e3b5e1 |
|| : ) | (
|
|
Packit |
e3b5e1 |
while read -r dev_path; do
|
|
Packit |
e3b5e1 |
# Filter VID, DID
|
|
Packit |
e3b5e1 |
if [ -n "$vid" ]; then
|
|
Packit |
e3b5e1 |
dev_vid=$(/bin/cat "$dev_path/vendor")
|
|
Packit |
e3b5e1 |
[ "x$vid" = "x$dev_vid" ] || continue
|
|
Packit |
e3b5e1 |
fi
|
|
Packit |
e3b5e1 |
if [ -n "$did" ]; then
|
|
Packit |
e3b5e1 |
dev_did=$(/bin/cat "$dev_path/device")
|
|
Packit |
e3b5e1 |
[ "x$did" = "x$dev_did" ] || continue
|
|
Packit |
e3b5e1 |
fi
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
checked="$((checked + 1))"
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
dev_val="$(/usr/bin/od -j "$offset" -N "$size" -A n \
|
|
Packit |
e3b5e1 |
-t "u$size" "$dev_path/config")"
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
val_rest="${val}"
|
|
Packit |
e3b5e1 |
while :; do
|
|
Packit |
e3b5e1 |
cur_val="${val_rest%%,*}"
|
|
Packit |
e3b5e1 |
if [ "$((dev_val & mask))" = "$((cur_val & mask))" ]
|
|
Packit |
e3b5e1 |
then
|
|
Packit |
e3b5e1 |
matched="$((matched + 1))"
|
|
Packit |
e3b5e1 |
break
|
|
Packit |
e3b5e1 |
fi
|
|
Packit |
e3b5e1 |
[ "x${val_rest}" != "x${val_rest#*,}" ] || break
|
|
Packit |
e3b5e1 |
val_rest="${val_rest#*,}"
|
|
Packit |
e3b5e1 |
done
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
case "$mode" in
|
|
Packit |
e3b5e1 |
success-any) [ "$matched" -eq 0 ] || { echo 0; exit; } ;;
|
|
Packit |
e3b5e1 |
success-all) [ "$matched" -eq "$checked" ] || { echo 1; exit; } ;;
|
|
Packit |
e3b5e1 |
fail-any) [ "$matched" -eq 0 ] || { echo 1; exit; } ;;
|
|
Packit |
e3b5e1 |
fail-all) [ "$matched" -eq "$checked" ] || { echo 0; exit; } ;;
|
|
Packit |
e3b5e1 |
*) echo 2; exit;;
|
|
Packit |
e3b5e1 |
esac
|
|
Packit |
e3b5e1 |
done
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
debug "PCI config value check ($opts): checked $checked," \
|
|
Packit |
e3b5e1 |
"matched $matched (model check is set to $match_model)"
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
case "$mode" in
|
|
Packit |
e3b5e1 |
success-any) if [ "$matched" -eq 0 ]; then echo 1; else echo 0; fi ;;
|
|
Packit |
e3b5e1 |
success-all) if [ "$matched" -gt 0 -a "$matched" -eq "$checked" ]; then echo 0; else echo 1; fi ;;
|
|
Packit |
e3b5e1 |
fail-any) if [ "$matched" -eq 0 ]; then echo 0; else echo 1; fi ;;
|
|
Packit |
e3b5e1 |
fail-all) if [ "$matched" -gt 0 -a "$matched" -eq "$checked" ]; then echo 1; else echo 0; fi ;;
|
|
Packit |
e3b5e1 |
*) echo 2; exit;;
|
|
Packit |
e3b5e1 |
esac
|
|
Packit |
e3b5e1 |
)
|
|
Packit |
e3b5e1 |
}
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
# It is needed for filtering by BIOS vendor name that is available in DMI data
|
|
Packit |
e3b5e1 |
#
|
|
Packit |
e3b5e1 |
# $1 - params in config file, space-separated, in key=value form:
|
|
Packit |
e3b5e1 |
# key= - DMI value to check. Can be one of the following: bios_date,
|
|
Packit |
e3b5e1 |
# bios_vendor, bios_version, board_asset_tag, board_name, board_serial,
|
|
Packit |
e3b5e1 |
# board_vendor, board_version, chassis_asset_tag, chassis_serial,
|
|
Packit |
e3b5e1 |
# chassis_type, chassis_vendor, chassis_version, product_family,
|
|
Packit |
e3b5e1 |
# product_name, product_serial, product_uuid, product_version,
|
|
Packit |
e3b5e1 |
# sys_vendor.
|
|
Packit |
e3b5e1 |
# val= - a string to match DMI data against. Can be enclosed in single
|
|
Packit |
e3b5e1 |
# or double quotes.
|
|
Packit |
e3b5e1 |
# mode=success-equal [ success-equal, fail-equal ] - matching mode:
|
|
Packit |
e3b5e1 |
# success-equal: Returns 0 if the value present in the corresponding file
|
|
Packit |
e3b5e1 |
# under /sys/devices/virtual/dmi/id/<key> is equal
|
|
Packit |
e3b5e1 |
# to the value supplied as a value of "val" parameter,
|
|
Packit |
e3b5e1 |
# otherwise 1.
|
|
Packit |
e3b5e1 |
# fail-equal: Returns 1 if the value present in the corresponding file
|
|
Packit |
e3b5e1 |
# under /sys/devices/virtual/dmi/id/<key> is equal
|
|
Packit |
e3b5e1 |
# to the value supplied as a value of "val" parameter,
|
|
Packit |
e3b5e1 |
# otherwise 0.
|
|
Packit |
e3b5e1 |
# no-model-mode=success [ success, fail ] - return value if model filter
|
|
Packit |
e3b5e1 |
# is not enabled:
|
|
Packit |
e3b5e1 |
# success: Return 0.
|
|
Packit |
e3b5e1 |
# fail: Return 1.
|
|
Packit |
e3b5e1 |
# $2 - whether model filter is engaged (if it is not '1', just return the result
|
|
Packit |
e3b5e1 |
# based on "mode" value that assumes that the check has failed).
|
|
Packit |
e3b5e1 |
check_dmi_val()
|
|
Packit |
e3b5e1 |
{
|
|
Packit |
e3b5e1 |
local key= val= mode='success-equal' nm_mode='success'
|
|
Packit |
e3b5e1 |
local opts="${1:-}" opt= opt_=
|
|
Packit |
e3b5e1 |
local match_model="${2:0}"
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
local valid_keys=" bios_date bios_vendor bios_version board_asset_tag board_name board_serial board_vendor board_version chassis_asset_tag chassis_serial chassis_type chassis_vendor chassis_version product_family product_name product_serial product_uuid product_version sys_vendor "
|
|
Packit |
e3b5e1 |
local success=1
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
while [ -n "$opts" ]; do
|
|
Packit |
e3b5e1 |
opt="${opts%%[ ]*}"
|
|
Packit |
e3b5e1 |
[ -n "${opt}" ] || { opts="${opts#[ ]}"; continue; }
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
[ "x${opt#key=}" = "x${opt}" ] || key="${opt#key=}"
|
|
Packit |
e3b5e1 |
[ "x${opt#mode=}" = "x${opt}" ] || mode="${opt#mode=}"
|
|
Packit |
e3b5e1 |
[ "x${opt#no-model-mode=}" = "x${opt}" ] || \
|
|
Packit |
e3b5e1 |
nm_mode="${opt#no-model-mode=}"
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
# Handle possible quoting
|
|
Packit |
e3b5e1 |
[ "x${opt#val=}" = "x${opt}" ] || {
|
|
Packit |
e3b5e1 |
case "${opt#val=}" in
|
|
Packit |
e3b5e1 |
[']*) opt_="${opts#val=\'}"; val="${opt_%%\'*}"; opt="val=\'${val}\'" ;;
|
|
Packit |
e3b5e1 |
["]*) opt_="${opts#val=\"}"; val="${opt_%%\"*}"; opt="val=\"${val}\"" ;;
|
|
Packit |
e3b5e1 |
*) val="${opt#val=}" ;;
|
|
Packit |
e3b5e1 |
esac
|
|
Packit |
e3b5e1 |
}
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
opts="${opts#"${opt}"}"
|
|
Packit |
e3b5e1 |
continue
|
|
Packit |
e3b5e1 |
done
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
# Check key for validity
|
|
Packit |
e3b5e1 |
[ "x${valid_keys#* ${key} *}" != "x${valid_keys}" ] || {
|
|
Packit |
e3b5e1 |
debug "Invalid \"key\" parameter value: \"${key}\""
|
|
Packit |
e3b5e1 |
echo 2
|
|
Packit |
e3b5e1 |
exit
|
|
Packit |
e3b5e1 |
}
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
[ 1 = "$match_model" ] || {
|
|
Packit |
e3b5e1 |
case "$nm_mode" in
|
|
Packit |
e3b5e1 |
success) echo 0 ;;
|
|
Packit |
e3b5e1 |
fail) echo 1 ;;
|
|
Packit |
e3b5e1 |
*)
|
|
Packit |
e3b5e1 |
debug "Invalid no-model-mode value: \"${nm_mode}\""
|
|
Packit |
e3b5e1 |
echo 2
|
|
Packit |
e3b5e1 |
;;
|
|
Packit |
e3b5e1 |
esac
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
exit
|
|
Packit |
e3b5e1 |
}
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
[ -r "/sys/devices/virtual/dmi/id/${key}" ] || {
|
|
Packit |
e3b5e1 |
debug "Can't access /sys/devices/virtual/dmi/id/${key}"
|
|
Packit |
e3b5e1 |
echo 3
|
|
Packit |
e3b5e1 |
exit
|
|
Packit |
e3b5e1 |
}
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
file_val="$(cat "/sys/devices/virtual/dmi/id/${key}")"
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
[ "x${val}" = "x${file_val}" ] || success=0
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
case "$mode" in
|
|
Packit |
e3b5e1 |
success-equal) echo "$((1 - $success))" ;;
|
|
Packit |
e3b5e1 |
fail-equal) echo "${success}" ;;
|
|
Packit |
e3b5e1 |
*) debug "Invalid mode value: \"${nm_mode}\""; echo 2 ;;
|
|
Packit |
e3b5e1 |
esac
|
|
Packit |
e3b5e1 |
}
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
# Provides model in format "VENDOR_ID FAMILY-MODEL-STEPPING"
|
|
Packit |
e3b5e1 |
#
|
|
Packit |
e3b5e1 |
# We check only the first processor as we don't expect non-symmetrical setups
|
|
Packit |
e3b5e1 |
# with CPUs with caveats
|
|
Packit |
e3b5e1 |
get_model_string()
|
|
Packit |
e3b5e1 |
{
|
|
Packit |
e3b5e1 |
/usr/bin/printf "%s %02x-%02x-%02x" \
|
|
Packit |
e3b5e1 |
$(/bin/sed -rn '1,/^$/{
|
|
Packit |
e3b5e1 |
s/^vendor_id[[:space:]]*: (.*)$/\1/p;
|
|
Packit |
e3b5e1 |
s/^cpu family[[:space:]]*: (.*)$/\1/p;
|
|
Packit |
e3b5e1 |
s/^model[[:space:]]*: (.*)$/\1/p;
|
|
Packit |
e3b5e1 |
s/^stepping[[:space:]]*: (.*)$/\1/p;
|
|
Packit |
e3b5e1 |
}' /proc/cpuinfo)
|
|
Packit |
e3b5e1 |
}
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
get_model_name()
|
|
Packit |
e3b5e1 |
{
|
|
Packit |
e3b5e1 |
/bin/sed -rn '1,/^$/s/^model name[[:space:]]*: (.*)$/\1/p' /proc/cpuinfo
|
|
Packit |
e3b5e1 |
}
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
get_vendor_id()
|
|
Packit |
e3b5e1 |
{
|
|
Packit |
e3b5e1 |
/bin/sed -rn '1,/^$/s/^vendor_id[[:space:]]*: (.*)$/\1/p' /proc/cpuinfo
|
|
Packit |
e3b5e1 |
}
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
get_mc_path()
|
|
Packit |
e3b5e1 |
{
|
|
Packit |
e3b5e1 |
case "$1" in
|
|
Packit |
e3b5e1 |
GenuineIntel)
|
|
Packit |
e3b5e1 |
echo "intel-ucode/$2"
|
|
Packit |
e3b5e1 |
;;
|
|
Packit |
e3b5e1 |
AuthenticAMD)
|
|
Packit |
e3b5e1 |
echo "amd-ucode/$2"
|
|
Packit |
e3b5e1 |
;;
|
|
Packit |
e3b5e1 |
esac
|
|
Packit |
e3b5e1 |
}
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
get_mc_ver()
|
|
Packit |
e3b5e1 |
{
|
|
Packit |
e3b5e1 |
/bin/sed -rn '1,/^$/s/^microcode[[:space:]]*: (.*)$/\1/p' /proc/cpuinfo
|
|
Packit |
e3b5e1 |
}
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
fail()
|
|
Packit |
e3b5e1 |
{
|
|
Packit |
e3b5e1 |
ret=1
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
fail_cfgs="$fail_cfgs $cfg"
|
|
Packit |
e3b5e1 |
fail_paths="$fail_paths $cfg_path"
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
[ 0 -eq "$print_disclaimers" ] || [ ! -e "${dir}/disclaimer" ] \
|
|
Packit |
e3b5e1 |
|| /bin/cat "${dir}/disclaimer"
|
|
Packit |
e3b5e1 |
}
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
#check_kver "$@"
|
|
Packit |
e3b5e1 |
#get_model_name
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
match_model=0
|
|
Packit |
e3b5e1 |
configs=
|
|
Packit |
e3b5e1 |
kver=$(/bin/uname -r)
|
|
Packit |
e3b5e1 |
verbose=0
|
|
Packit |
e3b5e1 |
early_check=0
|
|
Packit |
e3b5e1 |
print_disclaimers=0
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
ret=0
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
while getopts "dek:c:mv" opt; do
|
|
Packit |
e3b5e1 |
case "${opt}" in
|
|
Packit |
e3b5e1 |
d)
|
|
Packit |
e3b5e1 |
print_disclaimers=1
|
|
Packit |
e3b5e1 |
early_check=2
|
|
Packit |
e3b5e1 |
;;
|
|
Packit |
e3b5e1 |
e)
|
|
Packit |
e3b5e1 |
early_check=1
|
|
Packit |
e3b5e1 |
;;
|
|
Packit |
e3b5e1 |
k)
|
|
Packit |
e3b5e1 |
kver="$OPTARG"
|
|
Packit |
e3b5e1 |
;;
|
|
Packit |
e3b5e1 |
c)
|
|
Packit |
e3b5e1 |
configs="$configs $OPTARG"
|
|
Packit |
e3b5e1 |
;;
|
|
Packit |
e3b5e1 |
m)
|
|
Packit |
e3b5e1 |
match_model=1
|
|
Packit |
e3b5e1 |
;;
|
|
Packit |
e3b5e1 |
v)
|
|
Packit |
e3b5e1 |
verbose=1
|
|
Packit |
e3b5e1 |
;;
|
|
Packit |
e3b5e1 |
*)
|
|
Packit |
e3b5e1 |
usage
|
|
Packit |
e3b5e1 |
exit 1;
|
|
Packit |
e3b5e1 |
;;
|
|
Packit |
e3b5e1 |
esac
|
|
Packit |
e3b5e1 |
done
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
: "${configs:=$(find "${MC_CAVEATS_DATA_DIR}" -maxdepth 1 -mindepth 1 -type d -printf "%f\n")}"
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
cpu_model=$(get_model_string)
|
|
Packit |
e3b5e1 |
cpu_model_name=$(get_model_name)
|
|
Packit |
e3b5e1 |
cpu_vendor=$(get_vendor_id)
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
ret_paths=""
|
|
Packit |
e3b5e1 |
ok_paths=""
|
|
Packit |
e3b5e1 |
fail_paths=""
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
ret_cfgs=""
|
|
Packit |
e3b5e1 |
ok_cfgs=""
|
|
Packit |
e3b5e1 |
fail_cfgs=""
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
skip_cfgs=""
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
if [ 1 -eq "$early_check" ]; then
|
|
Packit |
e3b5e1 |
stage="early"
|
|
Packit |
e3b5e1 |
else
|
|
Packit |
e3b5e1 |
stage="late"
|
|
Packit |
e3b5e1 |
fi
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
for cfg in $(echo "${configs}"); do
|
|
Packit |
e3b5e1 |
dir="$MC_CAVEATS_DATA_DIR/$cfg"
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
# We add cfg to the skip list first and then, if we do not skip it,
|
|
Packit |
e3b5e1 |
# we remove the configuration from the list.
|
|
Packit |
e3b5e1 |
skip_cfgs="$skip_cfgs $cfg"
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
[ -r "${dir}/readme" ] || {
|
|
Packit |
e3b5e1 |
debug "File 'readme' in ${dir} is not found, skipping"
|
|
Packit |
e3b5e1 |
continue
|
|
Packit |
e3b5e1 |
}
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
[ -r "${dir}/config" ] || {
|
|
Packit |
e3b5e1 |
debug "File 'config' in ${dir} is not found, skipping"
|
|
Packit |
e3b5e1 |
continue
|
|
Packit |
e3b5e1 |
}
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
cfg_model=
|
|
Packit |
e3b5e1 |
cfg_vendor=
|
|
Packit |
e3b5e1 |
cfg_path=
|
|
Packit |
e3b5e1 |
cfg_kvers=
|
|
Packit |
e3b5e1 |
cfg_kvers_early=
|
|
Packit |
e3b5e1 |
cfg_blacklist=
|
|
Packit |
e3b5e1 |
cfg_mc_min_ver_late=
|
|
Packit |
e3b5e1 |
cfg_disable=
|
|
Packit |
e3b5e1 |
cfg_pci=
|
|
Packit |
e3b5e1 |
cfg_dmi=
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
while read -r key value; do
|
|
Packit |
e3b5e1 |
case "$key" in
|
|
Packit |
e3b5e1 |
model)
|
|
Packit |
e3b5e1 |
cfg_model="$value"
|
|
Packit |
e3b5e1 |
;;
|
|
Packit |
e3b5e1 |
vendor)
|
|
Packit |
e3b5e1 |
cfg_vendor="$value"
|
|
Packit |
e3b5e1 |
;;
|
|
Packit |
e3b5e1 |
path)
|
|
Packit |
e3b5e1 |
cfg_path="$cfg_path $value"
|
|
Packit |
e3b5e1 |
;;
|
|
Packit |
e3b5e1 |
kernel)
|
|
Packit |
e3b5e1 |
cfg_kvers="$cfg_kvers $value"
|
|
Packit |
e3b5e1 |
;;
|
|
Packit |
e3b5e1 |
kernel_early)
|
|
Packit |
e3b5e1 |
cfg_kvers_early="$cfg_kvers_early $value"
|
|
Packit |
e3b5e1 |
;;
|
|
Packit |
e3b5e1 |
mc_min_ver_late)
|
|
Packit |
e3b5e1 |
cfg_mc_min_ver_late="$value"
|
|
Packit |
e3b5e1 |
;;
|
|
Packit |
e3b5e1 |
disable)
|
|
Packit |
e3b5e1 |
cfg_disable="$cfg_disable $value "
|
|
Packit |
e3b5e1 |
;;
|
|
Packit |
e3b5e1 |
blacklist)
|
|
Packit |
e3b5e1 |
cfg_blacklist=1
|
|
Packit |
e3b5e1 |
# "blacklist" is special: it stops entity parsing,
|
|
Packit |
e3b5e1 |
# and the rest of file is a list of blacklisted model
|
|
Packit |
e3b5e1 |
# names.
|
|
Packit |
e3b5e1 |
break
|
|
Packit |
e3b5e1 |
;;
|
|
Packit |
e3b5e1 |
pci_config_val)
|
|
Packit |
e3b5e1 |
cfg_pci="$cfg_pci
|
|
Packit |
e3b5e1 |
$value"
|
|
Packit |
e3b5e1 |
;;
|
|
Packit |
e3b5e1 |
dmi)
|
|
Packit |
e3b5e1 |
cfg_dmi="$cfg_dmi
|
|
Packit |
e3b5e1 |
$value"
|
|
Packit |
e3b5e1 |
;;
|
|
Packit |
e3b5e1 |
'#'*|'')
|
|
Packit |
e3b5e1 |
continue
|
|
Packit |
e3b5e1 |
;;
|
|
Packit |
e3b5e1 |
*)
|
|
Packit |
e3b5e1 |
debug "Unknown key '$key' (value '$value') in config" \
|
|
Packit |
e3b5e1 |
"'$cfg'"
|
|
Packit |
e3b5e1 |
;;
|
|
Packit |
e3b5e1 |
esac
|
|
Packit |
e3b5e1 |
done < "${dir}/config"
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
[ -z "${cfg_blacklist}" ] || \
|
|
Packit |
e3b5e1 |
cfg_blacklist=$(/bin/sed -n '/^blacklist$/,$p' "${dir}/config" |
|
|
Packit |
e3b5e1 |
/usr/bin/tail -n +2)
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
debug "${cfg}: model '$cfg_model', path '$cfg_path', kvers '$cfg_kvers'"
|
|
Packit |
e3b5e1 |
debug "${cfg}: blacklist '$cfg_blacklist'"
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
# Check for override files in the following order:
|
|
Packit |
e3b5e1 |
# - disallow early/late specific caveat for specific kernel
|
|
Packit |
e3b5e1 |
# - force early/late specific caveat for specific kernel
|
|
Packit |
e3b5e1 |
# - disallow specific caveat for specific kernel
|
|
Packit |
e3b5e1 |
# - force specific caveat for specific kernel
|
|
Packit |
e3b5e1 |
#
|
|
Packit |
e3b5e1 |
# - disallow early/late specific caveat for any kernel
|
|
Packit |
e3b5e1 |
# - disallow early/late any caveat for specific kernel
|
|
Packit |
e3b5e1 |
# - force early/late specific caveat for any kernel
|
|
Packit |
e3b5e1 |
# - force early/late any caveat for specific kernel
|
|
Packit |
e3b5e1 |
# - disallow specific caveat for any kernel
|
|
Packit |
e3b5e1 |
# - disallow any caveat for specific kernel
|
|
Packit |
e3b5e1 |
# - force specific caveat for any kernel
|
|
Packit |
e3b5e1 |
# - force any caveat for specific kernel
|
|
Packit |
e3b5e1 |
#
|
|
Packit |
e3b5e1 |
# - disallow early/late everything
|
|
Packit |
e3b5e1 |
# - force early/late everyhting
|
|
Packit |
e3b5e1 |
# - disallow everything
|
|
Packit |
e3b5e1 |
# - force everyhting
|
|
Packit |
e3b5e1 |
ignore_cfg=0
|
|
Packit |
e3b5e1 |
force_cfg=0
|
|
Packit |
e3b5e1 |
override_file=""
|
|
Packit |
e3b5e1 |
overrides="
|
|
Packit |
e3b5e1 |
0:$FW_DIR/$kver/disallow-$stage-$cfg
|
|
Packit |
e3b5e1 |
1:$FW_DIR/$kver/force-$stage-$cfg
|
|
Packit |
e3b5e1 |
0:$FW_DIR/$kver/disallow-$cfg
|
|
Packit |
e3b5e1 |
1:$FW_DIR/$kver/force-$cfg
|
|
Packit |
e3b5e1 |
0:$FW_DIR/$kver/disallow-$stage
|
|
Packit |
e3b5e1 |
0:$CFG_DIR/disallow-$stage-$cfg
|
|
Packit |
e3b5e1 |
1:$FW_DIR/$kver/force-$stage
|
|
Packit |
e3b5e1 |
1:$CFG_DIR/force-$stage-$cfg
|
|
Packit |
e3b5e1 |
0:$FW_DIR/$kver/disallow
|
|
Packit |
e3b5e1 |
0:$CFG_DIR/disallow-$cfg
|
|
Packit |
e3b5e1 |
1:$FW_DIR/$kver/force
|
|
Packit |
e3b5e1 |
1:$CFG_DIR/force-$cfg
|
|
Packit |
e3b5e1 |
0:$CFG_DIR/disallow-$stage
|
|
Packit |
e3b5e1 |
1:$CFG_DIR/force-$stage
|
|
Packit |
e3b5e1 |
0:$CFG_DIR/disallow
|
|
Packit |
e3b5e1 |
1:$CFG_DIR/force"
|
|
Packit |
e3b5e1 |
for o in $(echo "$overrides"); do
|
|
Packit |
e3b5e1 |
o_force=${o%%:*}
|
|
Packit |
e3b5e1 |
override_file=${o#$o_force:}
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
[ -e "$override_file" ] || continue
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
if [ 0 -eq "$o_force" ]; then
|
|
Packit |
e3b5e1 |
ignore_cfg=1
|
|
Packit |
e3b5e1 |
else
|
|
Packit |
e3b5e1 |
force_cfg=1
|
|
Packit |
e3b5e1 |
fi
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
break
|
|
Packit |
e3b5e1 |
done
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
[ 0 -eq "$ignore_cfg" ] || {
|
|
Packit |
e3b5e1 |
debug "Configuration \"$cfg\" is ignored due to presence of" \
|
|
Packit |
e3b5e1 |
"\"$override_file\"."
|
|
Packit |
e3b5e1 |
continue
|
|
Packit |
e3b5e1 |
}
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
# Check model if model filter is enabled
|
|
Packit |
e3b5e1 |
if [ 1 -eq "$match_model" -a -n "$cfg_model" ]; then
|
|
Packit |
e3b5e1 |
[ "x$cpu_model" = "x$cfg_model" ] || {
|
|
Packit |
e3b5e1 |
debug "Current CPU model '$cpu_model' doesn't" \
|
|
Packit |
e3b5e1 |
"match configuration CPU model '$cfg_model'," \
|
|
Packit |
e3b5e1 |
"skipping"
|
|
Packit |
e3b5e1 |
continue
|
|
Packit |
e3b5e1 |
}
|
|
Packit |
e3b5e1 |
fi
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
# Check paths if model filter is enabled
|
|
Packit |
e3b5e1 |
if [ 1 -eq "$match_model" -a -n "$cfg_path" ]; then
|
|
Packit |
e3b5e1 |
cpu_mc_path="$MC_CAVEATS_DATA_DIR/$cfg/$(get_mc_path \
|
|
Packit |
e3b5e1 |
"$cpu_vendor" "${cpu_model#* }")"
|
|
Packit |
e3b5e1 |
cfg_mc_present=0
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
for p in $(printf "%s" "$cfg_path"); do
|
|
Packit Service |
91ce18 |
/usr/bin/find "$MC_CAVEATS_DATA_DIR/$cfg" \
|
|
Packit Service |
91ce18 |
-path "$MC_CAVEATS_DATA_DIR/$cfg/$p" -print0 \
|
|
Packit Service |
91ce18 |
| /bin/grep -zFxc "$cpu_mc_path" > /dev/null \
|
|
Packit |
e3b5e1 |
|| continue
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
cfg_mc_present=1
|
|
Packit |
e3b5e1 |
break
|
|
Packit |
e3b5e1 |
done
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
[ 1 = "$cfg_mc_present" ] || {
|
|
Packit |
e3b5e1 |
debug "No matching microcode files in '$cfg_path'" \
|
|
Packit |
e3b5e1 |
"for CPU model '$cpu_model', skipping"
|
|
Packit |
e3b5e1 |
continue
|
|
Packit |
e3b5e1 |
}
|
|
Packit |
e3b5e1 |
fi
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
# Check vendor if model filter is enabled
|
|
Packit |
e3b5e1 |
if [ 1 -eq "$match_model" -a -n "$cfg_vendor" ]; then
|
|
Packit |
e3b5e1 |
[ "x$cpu_vendor" = "x$cfg_vendor" ] || {
|
|
Packit |
e3b5e1 |
debug "Current CPU vendor '$cpu_vendor' doesn't" \
|
|
Packit |
e3b5e1 |
"match configuration CPU vendor '$cfg_vendor'," \
|
|
Packit |
e3b5e1 |
"skipping"
|
|
Packit |
e3b5e1 |
continue
|
|
Packit |
e3b5e1 |
}
|
|
Packit |
e3b5e1 |
fi
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
# Check configuration files
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
ret_cfgs="$ret_cfgs $cfg"
|
|
Packit |
e3b5e1 |
ret_paths="$ret_paths $cfg_path"
|
|
Packit |
e3b5e1 |
skip_cfgs="${skip_cfgs% $cfg}"
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
[ 0 -eq "$force_cfg" ] || {
|
|
Packit |
e3b5e1 |
debug "Checks for configuration \"$cfg\" are ignored due to" \
|
|
Packit |
e3b5e1 |
"presence of \"$override_file\"."
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
ok_cfgs="$ok_cfgs $cfg"
|
|
Packit |
e3b5e1 |
ok_paths="$ok_paths $cfg_path"
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
continue
|
|
Packit |
e3b5e1 |
}
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
[ "x${cfg_disable%%* $stage *}" = "x$cfg_disable" ] || {
|
|
Packit |
e3b5e1 |
debug "${cfg}: caveat is disabled in configuration"
|
|
Packit |
e3b5e1 |
fail
|
|
Packit |
e3b5e1 |
continue
|
|
Packit |
e3b5e1 |
}
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
# Check late load kernel version
|
|
Packit |
e3b5e1 |
if [ 1 -ne "$early_check" -a -n "$cfg_kvers" ]; then
|
|
Packit |
e3b5e1 |
check_kver "$kver" $cfg_kvers || {
|
|
Packit |
e3b5e1 |
debug "${cfg}: late load kernel version check for" \
|
|
Packit |
e3b5e1 |
" '$kver' against '$cfg_kvers' failed"
|
|
Packit |
e3b5e1 |
fail
|
|
Packit |
e3b5e1 |
continue
|
|
Packit |
e3b5e1 |
}
|
|
Packit |
e3b5e1 |
fi
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
# Check early load kernel version
|
|
Packit |
e3b5e1 |
if [ 0 -ne "$early_check" -a -n "$cfg_kvers_early" ]; then
|
|
Packit |
e3b5e1 |
check_kver "$kver" $cfg_kvers_early || {
|
|
Packit |
e3b5e1 |
debug "${cfg}: early load kernel version check for" \
|
|
Packit |
e3b5e1 |
"'$kver' against '$cfg_kvers_early' failed"
|
|
Packit |
e3b5e1 |
fail
|
|
Packit |
e3b5e1 |
continue
|
|
Packit |
e3b5e1 |
}
|
|
Packit |
e3b5e1 |
fi
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
# Check model blacklist
|
|
Packit |
e3b5e1 |
if [ -n "$cfg_blacklist" ]; then
|
|
Packit |
e3b5e1 |
echo "$cfg_blacklist" | /bin/grep -vqFx "${cpu_model_name}" || {
|
|
Packit |
e3b5e1 |
debug "${cfg}: model '${cpu_model_name}' is blacklisted"
|
|
Packit |
e3b5e1 |
fail
|
|
Packit |
e3b5e1 |
continue
|
|
Packit |
e3b5e1 |
}
|
|
Packit |
e3b5e1 |
fi
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
# Check current microcode version for the late update
|
|
Packit |
e3b5e1 |
if [ -n "$cfg_mc_min_ver_late" -a 1 -ne "$early_check" -a \
|
|
Packit |
e3b5e1 |
"x$cpu_model" = "x$cfg_model" ]; then
|
|
Packit |
e3b5e1 |
cpu_mc_ver="$(get_mc_ver)"
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
[ 1 -eq $((cpu_mc_ver >= cfg_mc_min_ver_late)) ] || {
|
|
Packit |
e3b5e1 |
debug "${cfg}: CPU microcode version $cpu_mc_ver" \
|
|
Packit |
e3b5e1 |
"failed check (should be at least" \
|
|
Packit |
e3b5e1 |
"${cfg_mc_min_ver_late})"
|
|
Packit |
e3b5e1 |
fail
|
|
Packit |
e3b5e1 |
continue
|
|
Packit |
e3b5e1 |
}
|
|
Packit |
e3b5e1 |
fi
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
# Check PCI devices if model filter is enabled
|
|
Packit |
e3b5e1 |
# Note that the model filter check is done inside check_pci_config_val
|
|
Packit |
e3b5e1 |
# based on the 'mode=' parameter.
|
|
Packit |
e3b5e1 |
if [ -n "$cfg_pci" ]; then
|
|
Packit |
e3b5e1 |
pci_line="$(printf "%s\n" "$cfg_pci" | while read -r pci_line; do
|
|
Packit |
e3b5e1 |
[ -n "$pci_line" ] || continue
|
|
Packit |
e3b5e1 |
pci_res=$(check_pci_config_val "$pci_line" \
|
|
Packit |
e3b5e1 |
"$match_model")
|
|
Packit |
e3b5e1 |
[ 0 != "$pci_res" ] || continue
|
|
Packit |
e3b5e1 |
echo "$pci_res $pci_line"
|
|
Packit |
e3b5e1 |
break
|
|
Packit |
e3b5e1 |
done
|
|
Packit |
e3b5e1 |
echo "0 ")"
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
[ -z "${pci_line#* }" ] || {
|
|
Packit |
e3b5e1 |
debug "PCI configuration word check '${pci_line#* }'" \
|
|
Packit |
e3b5e1 |
"failed (with return code ${pci_line%% *})"
|
|
Packit |
e3b5e1 |
fail
|
|
Packit |
e3b5e1 |
continue
|
|
Packit |
e3b5e1 |
}
|
|
Packit |
e3b5e1 |
fi
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
# Check DMI data if model filter is enabled
|
|
Packit |
e3b5e1 |
# Note that the model filter check is done inside check_pci_config_val
|
|
Packit |
e3b5e1 |
# based on the 'mode=' parameter.
|
|
Packit |
e3b5e1 |
if [ -n "$cfg_dmi" ]; then
|
|
Packit |
e3b5e1 |
dmi_line="$(printf "%s\n" "$cfg_dmi" | while read -r dmi_line
|
|
Packit |
e3b5e1 |
do
|
|
Packit |
e3b5e1 |
[ -n "$dmi_line" ] || continue
|
|
Packit |
e3b5e1 |
dmi_res=$(check_dmi_val "$dmi_line" \
|
|
Packit |
e3b5e1 |
"$match_model")
|
|
Packit |
e3b5e1 |
[ 0 != "$dmi_res" ] || continue
|
|
Packit |
e3b5e1 |
echo "$dmi_res $dmi_line"
|
|
Packit |
e3b5e1 |
break
|
|
Packit |
e3b5e1 |
done
|
|
Packit |
e3b5e1 |
echo "0 ")"
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
[ -z "${dmi_line#* }" ] || {
|
|
Packit |
e3b5e1 |
debug "DMI data check '${dmi_line#* }'" \
|
|
Packit |
e3b5e1 |
"failed (with return code ${dmi_line%% *})"
|
|
Packit |
e3b5e1 |
fail
|
|
Packit |
e3b5e1 |
continue
|
|
Packit |
e3b5e1 |
}
|
|
Packit |
e3b5e1 |
fi
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
ok_cfgs="$ok_cfgs $cfg"
|
|
Packit |
e3b5e1 |
ok_paths="$ok_paths $cfg_path"
|
|
Packit |
e3b5e1 |
done
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
[ 0 -eq "$print_disclaimers" ] || exit 0
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
echo "cfgs$ret_cfgs"
|
|
Packit |
e3b5e1 |
echo "skip_cfgs$skip_cfgs"
|
|
Packit |
e3b5e1 |
echo "paths$ret_paths"
|
|
Packit |
e3b5e1 |
echo "ok_cfgs$ok_cfgs"
|
|
Packit |
e3b5e1 |
echo "ok_paths$ok_paths"
|
|
Packit |
e3b5e1 |
echo "fail_cfgs$fail_cfgs"
|
|
Packit |
e3b5e1 |
echo "fail_paths$fail_paths"
|
|
Packit |
e3b5e1 |
|
|
Packit |
e3b5e1 |
exit $ret
|