1--
2-- SPDX-License-Identifier: BSD-2-Clause-FreeBSD
3--
4-- Copyright (c) 2015 Pedro Souza <pedrosouza@freebsd.org>
5-- Copyright (C) 2018 Kyle Evans <kevans@FreeBSD.org>
6-- All rights reserved.
7--
8-- Redistribution and use in source and binary forms, with or without
9-- modification, are permitted provided that the following conditions
10-- are met:
11-- 1. Redistributions of source code must retain the above copyright
12--    notice, this list of conditions and the following disclaimer.
13-- 2. Redistributions in binary form must reproduce the above copyright
14--    notice, this list of conditions and the following disclaimer in the
15--    documentation and/or other materials provided with the distribution.
16--
17-- THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
18-- ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
19-- IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
20-- ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
21-- FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
22-- DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
23-- OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
24-- HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
25-- LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
26-- OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
27-- SUCH DAMAGE.
28--
29-- $FreeBSD: stable/12/stand/lua/config.lua 369209 2021-02-03 06:59:30Z git2svn $
30--
31
32local hook = require("hook")
33
34local config = {}
35local modules = {}
36local carousel_choices = {}
37-- Which variables we changed
38local env_changed = {}
39-- Values to restore env to (nil to unset)
40local env_restore = {}
41
42local MSG_FAILDIR = "Failed to load conf dir '%s': not a directory"
43local MSG_FAILEXEC = "Failed to exec '%s'"
44local MSG_FAILSETENV = "Failed to '%s' with value: %s"
45local MSG_FAILOPENCFG = "Failed to open config: '%s'"
46local MSG_FAILREADCFG = "Failed to read config: '%s'"
47local MSG_FAILPARSECFG = "Failed to parse config: '%s'"
48local MSG_FAILPARSEVAR = "Failed to parse variable '%s': %s"
49local MSG_FAILEXBEF = "Failed to execute '%s' before loading '%s'"
50local MSG_FAILEXAF = "Failed to execute '%s' after loading '%s'"
51local MSG_MALFORMED = "Malformed line (%d):\n\t'%s'"
52local MSG_DEFAULTKERNFAIL = "No kernel set, failed to load from module_path"
53local MSG_KERNFAIL = "Failed to load kernel '%s'"
54local MSG_XENKERNFAIL = "Failed to load Xen kernel '%s'"
55local MSG_XENKERNLOADING = "Loading Xen kernel..."
56local MSG_KERNLOADING = "Loading kernel..."
57local MSG_MODLOADING = "Loading configured modules..."
58local MSG_MODBLACKLIST = "Not loading blacklisted module '%s'"
59
60local MSG_FAILSYN_QUOTE = "Stray quote at position '%d'"
61local MSG_FAILSYN_EOLESC = "Stray escape at end of line"
62local MSG_FAILSYN_EOLVAR = "Unescaped $ at end of line"
63local MSG_FAILSYN_BADVAR = "Malformed variable expression at position '%d'"
64
65local MODULEEXPR = '([-%w_]+)'
66local QVALEXPR = '"(.*)"'
67local QVALREPL = QVALEXPR:gsub('%%', '%%%%')
68local WORDEXPR = "([-%w%d][-%w%d_.]*)"
69local WORDREPL = WORDEXPR:gsub('%%', '%%%%')
70
71-- Entries that should never make it into the environment; each one should have
72-- a documented reason for its existence, and these should all be implementation
73-- details of the config module.
74local loader_env_restricted_table = {
75	-- loader_conf_files should be considered write-only, and consumers
76	-- should not rely on any particular value; it's a loader implementation
77	-- detail.  Moreover, it's not a particularly useful variable to have in
78	-- the kenv.  Save the overhead, let it get fetched other ways.
79	loader_conf_files = true,
80}
81
82local function restoreEnv()
83	-- Examine changed environment variables
84	for k, v in pairs(env_changed) do
85		local restore_value = env_restore[k]
86		if restore_value == nil then
87			-- This one doesn't need restored for some reason
88			goto continue
89		end
90		local current_value = loader.getenv(k)
91		if current_value ~= v then
92			-- This was overwritten by some action taken on the menu
93			-- most likely; we'll leave it be.
94			goto continue
95		end
96		restore_value = restore_value.value
97		if restore_value ~= nil then
98			loader.setenv(k, restore_value)
99		else
100			loader.unsetenv(k)
101		end
102		::continue::
103	end
104
105	env_changed = {}
106	env_restore = {}
107end
108
109-- XXX This getEnv/setEnv should likely be exported at some point.  We can save
110-- the call back into loader.getenv for any variable that's been set or
111-- overridden by any loader.conf using this implementation with little overhead
112-- since we're already tracking the values.
113local function getEnv(key)
114	if loader_env_restricted_table[key] ~= nil or
115	    env_changed[key] ~= nil then
116		return env_changed[key]
117	end
118
119	return loader.getenv(key)
120end
121
122local function setEnv(key, value)
123	env_changed[key] = value
124
125	if loader_env_restricted_table[key] ~= nil then
126		return 0
127	end
128
129	-- Track the original value for this if we haven't already
130	if env_restore[key] == nil then
131		env_restore[key] = {value = loader.getenv(key)}
132	end
133
134	return loader.setenv(key, value)
135end
136
137-- name here is one of 'name', 'type', flags', 'before', 'after', or 'error.'
138-- These are set from lines in loader.conf(5): ${key}_${name}="${value}" where
139-- ${key} is a module name.
140local function setKey(key, name, value)
141	if modules[key] == nil then
142		modules[key] = {}
143	end
144	modules[key][name] = value
145end
146
147-- Escapes the named value for use as a literal in a replacement pattern.
148-- e.g. dhcp.host-name gets turned into dhcp%.host%-name to remove the special
149-- meaning.
150local function escapeName(name)
151	return name:gsub("([%p])", "%%%1")
152end
153
154local function processEnvVar(value)
155	local pval, vlen = '', #value
156	local nextpos, vdelim, vinit = 1
157	local vpat
158	for i = 1, vlen do
159		if i < nextpos then
160			goto nextc
161		end
162
163		local c = value:sub(i, i)
164		if c == '\\' then
165			if i == vlen then
166				return nil, MSG_FAILSYN_EOLESC
167			end
168			nextpos = i + 2
169			pval = pval .. value:sub(i + 1, i + 1)
170		elseif c == '"' then
171			return nil, MSG_FAILSYN_QUOTE:format(i)
172		elseif c == "$" then
173			if i == vlen then
174				return nil, MSG_FAILSYN_EOLVAR
175			else
176				if value:sub(i + 1, i + 1) == "{" then
177					-- Skip ${
178					vinit = i + 2
179					vdelim = '}'
180					vpat = "^([^}]+)}"
181				else
182					-- Skip the $
183					vinit = i + 1
184					vdelim = nil
185					vpat = "^([%w][-%w%d_.]*)"
186				end
187
188				local name = value:match(vpat, vinit)
189				if not name then
190					return nil, MSG_FAILSYN_BADVAR:format(i)
191				else
192					nextpos = vinit + #name
193					if vdelim then
194						nextpos = nextpos + 1
195					end
196
197					local repl = loader.getenv(name) or ""
198					pval = pval .. repl
199				end
200			end
201		else
202			pval = pval .. c
203		end
204		::nextc::
205	end
206
207	return pval
208end
209
210local function checkPattern(line, pattern)
211	local function _realCheck(_line, _pattern)
212		return _line:match(_pattern)
213	end
214
215	if pattern:find('$VALUE') then
216		local k, v, c
217		k, v, c = _realCheck(line, pattern:gsub('$VALUE', QVALREPL))
218		if k ~= nil then
219			return k,v, c
220		end
221		return _realCheck(line, pattern:gsub('$VALUE', WORDREPL))
222	else
223		return _realCheck(line, pattern)
224	end
225end
226
227-- str in this table is a regex pattern.  It will automatically be anchored to
228-- the beginning of a line and any preceding whitespace will be skipped.  The
229-- pattern should have no more than two captures patterns, which correspond to
230-- the two parameters (usually 'key' and 'value') that are passed to the
231-- process function.  All trailing characters will be validated.  Any $VALUE
232-- token included in a pattern will be tried first with a quoted value capture
233-- group, then a single-word value capture group.  This is our kludge for Lua
234-- regex not supporting branching.
235--
236-- We have two special entries in this table: the first is the first entry,
237-- a full-line comment.  The second is for 'exec' handling.  Both have a single
238-- capture group, but the difference is that the full-line comment pattern will
239-- match the entire line.  This does not run afoul of the later end of line
240-- validation that we'll do after a match.  However, the 'exec' pattern will.
241-- We document the exceptions with a special 'groups' index that indicates
242-- the number of capture groups, if not two.  We'll use this later to do
243-- validation on the proper entry.
244--
245local pattern_table = {
246	{
247		str = "(#.*)",
248		process = function(_, _)  end,
249		groups = 1,
250	},
251	--  module_load="value"
252	{
253		str = MODULEEXPR .. "_load%s*=%s*$VALUE",
254		process = function(k, v)
255			if modules[k] == nil then
256				modules[k] = {}
257			end
258			modules[k].load = v:upper()
259		end,
260	},
261	--  module_name="value"
262	{
263		str = MODULEEXPR .. "_name%s*=%s*$VALUE",
264		process = function(k, v)
265			setKey(k, "name", v)
266		end,
267	},
268	--  module_type="value"
269	{
270		str = MODULEEXPR .. "_type%s*=%s*$VALUE",
271		process = function(k, v)
272			setKey(k, "type", v)
273		end,
274	},
275	--  module_flags="value"
276	{
277		str = MODULEEXPR .. "_flags%s*=%s*$VALUE",
278		process = function(k, v)
279			setKey(k, "flags", v)
280		end,
281	},
282	--  module_before="value"
283	{
284		str = MODULEEXPR .. "_before%s*=%s*$VALUE",
285		process = function(k, v)
286			setKey(k, "before", v)
287		end,
288	},
289	--  module_after="value"
290	{
291		str = MODULEEXPR .. "_after%s*=%s*$VALUE",
292		process = function(k, v)
293			setKey(k, "after", v)
294		end,
295	},
296	--  module_error="value"
297	{
298		str = MODULEEXPR .. "_error%s*=%s*$VALUE",
299		process = function(k, v)
300			setKey(k, "error", v)
301		end,
302	},
303	--  exec="command"
304	{
305		str = "exec%s*=%s*" .. QVALEXPR,
306		process = function(k, _)
307			if cli_execute_unparsed(k) ~= 0 then
308				print(MSG_FAILEXEC:format(k))
309			end
310		end,
311		groups = 1,
312	},
313	--  env_var="value" or env_var=[word|num]
314	{
315		str = "([%w][%w%d-_.]*)%s*=%s*$VALUE",
316		process = function(k, v)
317			local pv, msg = processEnvVar(v)
318			if not pv then
319				print(MSG_FAILPARSEVAR:format(k, msg))
320				return
321			end
322			if setEnv(k, pv) ~= 0 then
323				print(MSG_FAILSETENV:format(k, v))
324			end
325		end,
326	},
327}
328
329local function isValidComment(line)
330	if line ~= nil then
331		local s = line:match("^%s*#.*")
332		if s == nil then
333			s = line:match("^%s*$")
334		end
335		if s == nil then
336			return false
337		end
338	end
339	return true
340end
341
342local function getBlacklist()
343	local blacklist = {}
344	local blacklist_str = loader.getenv('module_blacklist')
345	if blacklist_str == nil then
346		return blacklist
347	end
348
349	for mod in blacklist_str:gmatch("[;, ]?([-%w_]+)[;, ]?") do
350		blacklist[mod] = true
351	end
352	return blacklist
353end
354
355local function loadModule(mod, silent)
356	local status = true
357	local blacklist = getBlacklist()
358	local pstatus
359	for k, v in pairs(mod) do
360		if v.load ~= nil and v.load:lower() == "yes" then
361			local module_name = v.name or k
362			if not v.force and blacklist[module_name] ~= nil then
363				if not silent then
364					print(MSG_MODBLACKLIST:format(module_name))
365				end
366				goto continue
367			end
368			if not silent then
369				loader.printc(module_name .. "...")
370			end
371			local str = "load "
372			if v.type ~= nil then
373				str = str .. "-t " .. v.type .. " "
374			end
375			str = str .. module_name
376			if v.flags ~= nil then
377				str = str .. " " .. v.flags
378			end
379			if v.before ~= nil then
380				pstatus = cli_execute_unparsed(v.before) == 0
381				if not pstatus and not silent then
382					print(MSG_FAILEXBEF:format(v.before, k))
383				end
384				status = status and pstatus
385			end
386
387			if cli_execute_unparsed(str) ~= 0 then
388				-- XXX Temporary shim: don't break the boot if
389				-- loader hadn't been recompiled with this
390				-- function exposed.
391				if loader.command_error then
392					print(loader.command_error())
393				end
394				if not silent then
395					print("failed!")
396				end
397				if v.error ~= nil then
398					cli_execute_unparsed(v.error)
399				end
400				status = false
401			elseif v.after ~= nil then
402				pstatus = cli_execute_unparsed(v.after) == 0
403				if not pstatus and not silent then
404					print(MSG_FAILEXAF:format(v.after, k))
405				end
406				if not silent then
407					print("ok")
408				end
409				status = status and pstatus
410			end
411		end
412		::continue::
413	end
414
415	return status
416end
417
418local function readFile(name, silent)
419	local f = io.open(name)
420	if f == nil then
421		if not silent then
422			print(MSG_FAILOPENCFG:format(name))
423		end
424		return nil
425	end
426
427	local text, _ = io.read(f)
428	-- We might have read in the whole file, this won't be needed any more.
429	io.close(f)
430
431	if text == nil and not silent then
432		print(MSG_FAILREADCFG:format(name))
433	end
434	return text
435end
436
437local function checkNextboot()
438	local nextboot_file = loader.getenv("nextboot_conf")
439	if nextboot_file == nil then
440		return
441	end
442
443	local text = readFile(nextboot_file, true)
444	if text == nil then
445		return
446	end
447
448	if text:match("^nextboot_enable=\"NO\"") ~= nil then
449		-- We're done; nextboot is not enabled
450		return
451	end
452
453	if not config.parse(text) then
454		print(MSG_FAILPARSECFG:format(nextboot_file))
455	end
456
457	-- Attempt to rewrite the first line and only the first line of the
458	-- nextboot_file. We overwrite it with nextboot_enable="NO", then
459	-- check for that on load.
460	-- It's worth noting that this won't work on every filesystem, so we
461	-- won't do anything notable if we have any errors in this process.
462	local nfile = io.open(nextboot_file, 'w')
463	if nfile ~= nil then
464		-- We need the trailing space here to account for the extra
465		-- character taken up by the string nextboot_enable="YES"
466		-- Or new end quotation mark lands on the S, and we want to
467		-- rewrite the entirety of the first line.
468		io.write(nfile, "nextboot_enable=\"NO\" ")
469		io.close(nfile)
470	end
471end
472
473-- Module exports
474config.verbose = false
475
476-- The first item in every carousel is always the default item.
477function config.getCarouselIndex(id)
478	return carousel_choices[id] or 1
479end
480
481function config.setCarouselIndex(id, idx)
482	carousel_choices[id] = idx
483end
484
485-- Returns true if we processed the file successfully, false if we did not.
486-- If 'silent' is true, being unable to read the file is not considered a
487-- failure.
488function config.processFile(name, silent)
489	if silent == nil then
490		silent = false
491	end
492
493	local text = readFile(name, silent)
494	if text == nil then
495		return silent
496	end
497
498	return config.parse(text)
499end
500
501-- silent runs will not return false if we fail to open the file
502function config.parse(text)
503	local n = 1
504	local status = true
505
506	for line in text:gmatch("([^\n]+)") do
507		if line:match("^%s*$") == nil then
508			for _, val in ipairs(pattern_table) do
509				local pattern = '^%s*' .. val.str .. '%s*(.*)';
510				local cgroups = val.groups or 2
511				local k, v, c = checkPattern(line, pattern)
512				if k ~= nil then
513					-- Offset by one, drats
514					if cgroups == 1 then
515						c = v
516						v = nil
517					end
518
519					if isValidComment(c) then
520						val.process(k, v)
521						goto nextline
522					end
523
524					break
525				end
526			end
527
528			print(MSG_MALFORMED:format(n, line))
529			status = false
530		end
531		::nextline::
532		n = n + 1
533	end
534
535	return status
536end
537
538function config.readConf(file, loaded_files)
539	if loaded_files == nil then
540		loaded_files = {}
541	end
542
543	if loaded_files[file] ~= nil then
544		return
545	end
546
547	-- We'll process loader_conf_dirs at the top-level readConf
548	local load_conf_dirs = next(loaded_files) == nil
549	print("Loading " .. file)
550
551	-- The final value of loader_conf_files is not important, so just
552	-- clobber it here.  We'll later check if it's no longer nil and process
553	-- the new value for files to read.
554	setEnv("loader_conf_files", nil)
555
556	-- These may or may not exist, and that's ok. Do a
557	-- silent parse so that we complain on parse errors but
558	-- not for them simply not existing.
559	if not config.processFile(file, true) then
560		print(MSG_FAILPARSECFG:format(file))
561	end
562
563	loaded_files[file] = true
564
565	-- Going to process "loader_conf_files" extra-files
566	local loader_conf_files = getEnv("loader_conf_files")
567	if loader_conf_files ~= nil then
568		for name in loader_conf_files:gmatch("[%w%p]+") do
569			config.readConf(name, loaded_files)
570		end
571	end
572
573	if load_conf_dirs then
574		local loader_conf_dirs = getEnv("loader_conf_dirs")
575		if loader_conf_dirs ~= nil then
576			for name in loader_conf_dirs:gmatch("[%w%p]+") do
577				if lfs.attributes(name, "mode") ~= "directory" then
578					print(MSG_FAILDIR:format(name))
579					goto nextdir
580				end
581				for cfile in lfs.dir(name) do
582					if cfile:match(".conf$") then
583						local fpath = name .. "/" .. cfile
584						if lfs.attributes(fpath, "mode") == "file" then
585							config.readConf(fpath, loaded_files)
586						end
587					end
588				end
589				::nextdir::
590			end
591		end
592	end
593end
594
595-- other_kernel is optionally the name of a kernel to load, if not the default
596-- or autoloaded default from the module_path
597function config.loadKernel(other_kernel)
598	local flags = loader.getenv("kernel_options") or ""
599	local kernel = other_kernel or loader.getenv("kernel")
600
601	local function tryLoad(names)
602		for name in names:gmatch("([^;]+)%s*;?") do
603			local r = loader.perform("load " .. name ..
604			     " " .. flags)
605			if r == 0 then
606				return name
607			end
608		end
609		return nil
610	end
611
612	local function getModulePath()
613		local module_path = loader.getenv("module_path")
614		local kernel_path = loader.getenv("kernel_path")
615
616		if kernel_path == nil then
617			return module_path
618		end
619
620		-- Strip the loaded kernel path from module_path. This currently assumes
621		-- that the kernel path will be prepended to the module_path when it's
622		-- found.
623		kernel_path = escapeName(kernel_path .. ';')
624		return module_path:gsub(kernel_path, '')
625	end
626
627	local function loadBootfile()
628		local bootfile = loader.getenv("bootfile")
629
630		-- append default kernel name
631		if bootfile == nil then
632			bootfile = "kernel"
633		else
634			bootfile = bootfile .. ";kernel"
635		end
636
637		return tryLoad(bootfile)
638	end
639
640	-- kernel not set, try load from default module_path
641	if kernel == nil then
642		local res = loadBootfile()
643
644		if res ~= nil then
645			-- Default kernel is loaded
646			config.kernel_loaded = nil
647			return true
648		else
649			print(MSG_DEFAULTKERNFAIL)
650			return false
651		end
652	else
653		-- Use our cached module_path, so we don't end up with multiple
654		-- automatically added kernel paths to our final module_path
655		local module_path = getModulePath()
656		local res
657
658		if other_kernel ~= nil then
659			kernel = other_kernel
660		end
661		-- first try load kernel with module_path = /boot/${kernel}
662		-- then try load with module_path=${kernel}
663		local paths = {"/boot/" .. kernel, kernel}
664
665		for _, v in pairs(paths) do
666			loader.setenv("module_path", v)
667			res = loadBootfile()
668
669			-- succeeded, add path to module_path
670			if res ~= nil then
671				config.kernel_loaded = kernel
672				if module_path ~= nil then
673					loader.setenv("module_path", v .. ";" ..
674					    module_path)
675					loader.setenv("kernel_path", v)
676				end
677				return true
678			end
679		end
680
681		-- failed to load with ${kernel} as a directory
682		-- try as a file
683		res = tryLoad(kernel)
684		if res ~= nil then
685			config.kernel_loaded = kernel
686			return true
687		else
688			print(MSG_KERNFAIL:format(kernel))
689			return false
690		end
691	end
692end
693
694function config.selectKernel(kernel)
695	config.kernel_selected = kernel
696end
697
698function config.load(file, reloading)
699	if not file then
700		file = "/boot/defaults/loader.conf"
701	end
702
703	config.readConf(file)
704
705	checkNextboot()
706
707	local verbose = loader.getenv("verbose_loading") or "no"
708	config.verbose = verbose:lower() == "yes"
709	if not reloading then
710		hook.runAll("config.loaded")
711	end
712end
713
714-- Reload configuration
715function config.reload(file)
716	modules = {}
717	restoreEnv()
718	config.load(file, true)
719	hook.runAll("config.reloaded")
720end
721
722function config.loadelf()
723	local xen_kernel = loader.getenv('xen_kernel')
724	local kernel = config.kernel_selected or config.kernel_loaded
725	local status
726
727	if xen_kernel ~= nil then
728		print(MSG_XENKERNLOADING)
729		if cli_execute_unparsed('load ' .. xen_kernel) ~= 0 then
730			print(MSG_XENKERNFAIL:format(xen_kernel))
731			return false
732		end
733	end
734	print(MSG_KERNLOADING)
735	if not config.loadKernel(kernel) then
736		return false
737	end
738	hook.runAll("kernel.loaded")
739
740	print(MSG_MODLOADING)
741	status = loadModule(modules, not config.verbose)
742	hook.runAll("modules.loaded")
743	return status
744end
745
746function config.enableModule(modname)
747	if modules[modname] == nil then
748		modules[modname] = {}
749	elseif modules[modname].load == "YES" then
750		modules[modname].force = true
751		return true
752	end
753
754	modules[modname].load = "YES"
755	modules[modname].force = true
756	return true
757end
758
759function config.disableModule(modname)
760	if modules[modname] == nil then
761		return false
762	elseif modules[modname].load ~= "YES" then
763		return true
764	end
765
766	modules[modname].load = "NO"
767	modules[modname].force = nil
768	return true
769end
770
771function config.isModuleEnabled(modname)
772	local mod = modules[modname]
773	if not mod or mod.load ~= "YES" then
774		return false
775	end
776
777	if mod.force then
778		return true
779	end
780
781	local blacklist = getBlacklist()
782	return not blacklist[modname]
783end
784
785function config.getModuleInfo()
786	return {
787		modules = modules,
788		blacklist = getBlacklist()
789	}
790end
791
792hook.registerType("config.loaded")
793hook.registerType("config.reloaded")
794hook.registerType("kernel.loaded")
795hook.registerType("modules.loaded")
796return config
797