1-- 2-- SPDX-License-Identifier: BSD-2-Clause-FreeBSD 3-- 4-- Copyright (c) 2015 Pedro Souza <pedrosouza@freebsd.org> 5-- Copyright (C) 2018 Kyle Evans <kevans@FreeBSD.org> 6-- All rights reserved. 7-- 8-- Redistribution and use in source and binary forms, with or without 9-- modification, are permitted provided that the following conditions 10-- are met: 11-- 1. Redistributions of source code must retain the above copyright 12-- notice, this list of conditions and the following disclaimer. 13-- 2. Redistributions in binary form must reproduce the above copyright 14-- notice, this list of conditions and the following disclaimer in the 15-- documentation and/or other materials provided with the distribution. 16-- 17-- THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND 18-- ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 19-- IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 20-- ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE 21-- FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 22-- DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 23-- OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 24-- HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 25-- LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 26-- OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 27-- SUCH DAMAGE. 28-- 29-- $FreeBSD: stable/12/stand/lua/config.lua 369209 2021-02-03 06:59:30Z git2svn $ 30-- 31 32local hook = require("hook") 33 34local config = {} 35local modules = {} 36local carousel_choices = {} 37-- Which variables we changed 38local env_changed = {} 39-- Values to restore env to (nil to unset) 40local env_restore = {} 41 42local MSG_FAILDIR = "Failed to load conf dir '%s': not a directory" 43local MSG_FAILEXEC = "Failed to exec '%s'" 44local MSG_FAILSETENV = "Failed to '%s' with value: %s" 45local MSG_FAILOPENCFG = "Failed to open config: '%s'" 46local MSG_FAILREADCFG = "Failed to read config: '%s'" 47local MSG_FAILPARSECFG = "Failed to parse config: '%s'" 48local MSG_FAILPARSEVAR = "Failed to parse variable '%s': %s" 49local MSG_FAILEXBEF = "Failed to execute '%s' before loading '%s'" 50local MSG_FAILEXAF = "Failed to execute '%s' after loading '%s'" 51local MSG_MALFORMED = "Malformed line (%d):\n\t'%s'" 52local MSG_DEFAULTKERNFAIL = "No kernel set, failed to load from module_path" 53local MSG_KERNFAIL = "Failed to load kernel '%s'" 54local MSG_XENKERNFAIL = "Failed to load Xen kernel '%s'" 55local MSG_XENKERNLOADING = "Loading Xen kernel..." 56local MSG_KERNLOADING = "Loading kernel..." 57local MSG_MODLOADING = "Loading configured modules..." 58local MSG_MODBLACKLIST = "Not loading blacklisted module '%s'" 59 60local MSG_FAILSYN_QUOTE = "Stray quote at position '%d'" 61local MSG_FAILSYN_EOLESC = "Stray escape at end of line" 62local MSG_FAILSYN_EOLVAR = "Unescaped $ at end of line" 63local MSG_FAILSYN_BADVAR = "Malformed variable expression at position '%d'" 64 65local MODULEEXPR = '([-%w_]+)' 66local QVALEXPR = '"(.*)"' 67local QVALREPL = QVALEXPR:gsub('%%', '%%%%') 68local WORDEXPR = "([-%w%d][-%w%d_.]*)" 69local WORDREPL = WORDEXPR:gsub('%%', '%%%%') 70 71-- Entries that should never make it into the environment; each one should have 72-- a documented reason for its existence, and these should all be implementation 73-- details of the config module. 74local loader_env_restricted_table = { 75 -- loader_conf_files should be considered write-only, and consumers 76 -- should not rely on any particular value; it's a loader implementation 77 -- detail. Moreover, it's not a particularly useful variable to have in 78 -- the kenv. Save the overhead, let it get fetched other ways. 79 loader_conf_files = true, 80} 81 82local function restoreEnv() 83 -- Examine changed environment variables 84 for k, v in pairs(env_changed) do 85 local restore_value = env_restore[k] 86 if restore_value == nil then 87 -- This one doesn't need restored for some reason 88 goto continue 89 end 90 local current_value = loader.getenv(k) 91 if current_value ~= v then 92 -- This was overwritten by some action taken on the menu 93 -- most likely; we'll leave it be. 94 goto continue 95 end 96 restore_value = restore_value.value 97 if restore_value ~= nil then 98 loader.setenv(k, restore_value) 99 else 100 loader.unsetenv(k) 101 end 102 ::continue:: 103 end 104 105 env_changed = {} 106 env_restore = {} 107end 108 109-- XXX This getEnv/setEnv should likely be exported at some point. We can save 110-- the call back into loader.getenv for any variable that's been set or 111-- overridden by any loader.conf using this implementation with little overhead 112-- since we're already tracking the values. 113local function getEnv(key) 114 if loader_env_restricted_table[key] ~= nil or 115 env_changed[key] ~= nil then 116 return env_changed[key] 117 end 118 119 return loader.getenv(key) 120end 121 122local function setEnv(key, value) 123 env_changed[key] = value 124 125 if loader_env_restricted_table[key] ~= nil then 126 return 0 127 end 128 129 -- Track the original value for this if we haven't already 130 if env_restore[key] == nil then 131 env_restore[key] = {value = loader.getenv(key)} 132 end 133 134 return loader.setenv(key, value) 135end 136 137-- name here is one of 'name', 'type', flags', 'before', 'after', or 'error.' 138-- These are set from lines in loader.conf(5): ${key}_${name}="${value}" where 139-- ${key} is a module name. 140local function setKey(key, name, value) 141 if modules[key] == nil then 142 modules[key] = {} 143 end 144 modules[key][name] = value 145end 146 147-- Escapes the named value for use as a literal in a replacement pattern. 148-- e.g. dhcp.host-name gets turned into dhcp%.host%-name to remove the special 149-- meaning. 150local function escapeName(name) 151 return name:gsub("([%p])", "%%%1") 152end 153 154local function processEnvVar(value) 155 local pval, vlen = '', #value 156 local nextpos, vdelim, vinit = 1 157 local vpat 158 for i = 1, vlen do 159 if i < nextpos then 160 goto nextc 161 end 162 163 local c = value:sub(i, i) 164 if c == '\\' then 165 if i == vlen then 166 return nil, MSG_FAILSYN_EOLESC 167 end 168 nextpos = i + 2 169 pval = pval .. value:sub(i + 1, i + 1) 170 elseif c == '"' then 171 return nil, MSG_FAILSYN_QUOTE:format(i) 172 elseif c == "$" then 173 if i == vlen then 174 return nil, MSG_FAILSYN_EOLVAR 175 else 176 if value:sub(i + 1, i + 1) == "{" then 177 -- Skip ${ 178 vinit = i + 2 179 vdelim = '}' 180 vpat = "^([^}]+)}" 181 else 182 -- Skip the $ 183 vinit = i + 1 184 vdelim = nil 185 vpat = "^([%w][-%w%d_.]*)" 186 end 187 188 local name = value:match(vpat, vinit) 189 if not name then 190 return nil, MSG_FAILSYN_BADVAR:format(i) 191 else 192 nextpos = vinit + #name 193 if vdelim then 194 nextpos = nextpos + 1 195 end 196 197 local repl = loader.getenv(name) or "" 198 pval = pval .. repl 199 end 200 end 201 else 202 pval = pval .. c 203 end 204 ::nextc:: 205 end 206 207 return pval 208end 209 210local function checkPattern(line, pattern) 211 local function _realCheck(_line, _pattern) 212 return _line:match(_pattern) 213 end 214 215 if pattern:find('$VALUE') then 216 local k, v, c 217 k, v, c = _realCheck(line, pattern:gsub('$VALUE', QVALREPL)) 218 if k ~= nil then 219 return k,v, c 220 end 221 return _realCheck(line, pattern:gsub('$VALUE', WORDREPL)) 222 else 223 return _realCheck(line, pattern) 224 end 225end 226 227-- str in this table is a regex pattern. It will automatically be anchored to 228-- the beginning of a line and any preceding whitespace will be skipped. The 229-- pattern should have no more than two captures patterns, which correspond to 230-- the two parameters (usually 'key' and 'value') that are passed to the 231-- process function. All trailing characters will be validated. Any $VALUE 232-- token included in a pattern will be tried first with a quoted value capture 233-- group, then a single-word value capture group. This is our kludge for Lua 234-- regex not supporting branching. 235-- 236-- We have two special entries in this table: the first is the first entry, 237-- a full-line comment. The second is for 'exec' handling. Both have a single 238-- capture group, but the difference is that the full-line comment pattern will 239-- match the entire line. This does not run afoul of the later end of line 240-- validation that we'll do after a match. However, the 'exec' pattern will. 241-- We document the exceptions with a special 'groups' index that indicates 242-- the number of capture groups, if not two. We'll use this later to do 243-- validation on the proper entry. 244-- 245local pattern_table = { 246 { 247 str = "(#.*)", 248 process = function(_, _) end, 249 groups = 1, 250 }, 251 -- module_load="value" 252 { 253 str = MODULEEXPR .. "_load%s*=%s*$VALUE", 254 process = function(k, v) 255 if modules[k] == nil then 256 modules[k] = {} 257 end 258 modules[k].load = v:upper() 259 end, 260 }, 261 -- module_name="value" 262 { 263 str = MODULEEXPR .. "_name%s*=%s*$VALUE", 264 process = function(k, v) 265 setKey(k, "name", v) 266 end, 267 }, 268 -- module_type="value" 269 { 270 str = MODULEEXPR .. "_type%s*=%s*$VALUE", 271 process = function(k, v) 272 setKey(k, "type", v) 273 end, 274 }, 275 -- module_flags="value" 276 { 277 str = MODULEEXPR .. "_flags%s*=%s*$VALUE", 278 process = function(k, v) 279 setKey(k, "flags", v) 280 end, 281 }, 282 -- module_before="value" 283 { 284 str = MODULEEXPR .. "_before%s*=%s*$VALUE", 285 process = function(k, v) 286 setKey(k, "before", v) 287 end, 288 }, 289 -- module_after="value" 290 { 291 str = MODULEEXPR .. "_after%s*=%s*$VALUE", 292 process = function(k, v) 293 setKey(k, "after", v) 294 end, 295 }, 296 -- module_error="value" 297 { 298 str = MODULEEXPR .. "_error%s*=%s*$VALUE", 299 process = function(k, v) 300 setKey(k, "error", v) 301 end, 302 }, 303 -- exec="command" 304 { 305 str = "exec%s*=%s*" .. QVALEXPR, 306 process = function(k, _) 307 if cli_execute_unparsed(k) ~= 0 then 308 print(MSG_FAILEXEC:format(k)) 309 end 310 end, 311 groups = 1, 312 }, 313 -- env_var="value" or env_var=[word|num] 314 { 315 str = "([%w][%w%d-_.]*)%s*=%s*$VALUE", 316 process = function(k, v) 317 local pv, msg = processEnvVar(v) 318 if not pv then 319 print(MSG_FAILPARSEVAR:format(k, msg)) 320 return 321 end 322 if setEnv(k, pv) ~= 0 then 323 print(MSG_FAILSETENV:format(k, v)) 324 end 325 end, 326 }, 327} 328 329local function isValidComment(line) 330 if line ~= nil then 331 local s = line:match("^%s*#.*") 332 if s == nil then 333 s = line:match("^%s*$") 334 end 335 if s == nil then 336 return false 337 end 338 end 339 return true 340end 341 342local function getBlacklist() 343 local blacklist = {} 344 local blacklist_str = loader.getenv('module_blacklist') 345 if blacklist_str == nil then 346 return blacklist 347 end 348 349 for mod in blacklist_str:gmatch("[;, ]?([-%w_]+)[;, ]?") do 350 blacklist[mod] = true 351 end 352 return blacklist 353end 354 355local function loadModule(mod, silent) 356 local status = true 357 local blacklist = getBlacklist() 358 local pstatus 359 for k, v in pairs(mod) do 360 if v.load ~= nil and v.load:lower() == "yes" then 361 local module_name = v.name or k 362 if not v.force and blacklist[module_name] ~= nil then 363 if not silent then 364 print(MSG_MODBLACKLIST:format(module_name)) 365 end 366 goto continue 367 end 368 if not silent then 369 loader.printc(module_name .. "...") 370 end 371 local str = "load " 372 if v.type ~= nil then 373 str = str .. "-t " .. v.type .. " " 374 end 375 str = str .. module_name 376 if v.flags ~= nil then 377 str = str .. " " .. v.flags 378 end 379 if v.before ~= nil then 380 pstatus = cli_execute_unparsed(v.before) == 0 381 if not pstatus and not silent then 382 print(MSG_FAILEXBEF:format(v.before, k)) 383 end 384 status = status and pstatus 385 end 386 387 if cli_execute_unparsed(str) ~= 0 then 388 -- XXX Temporary shim: don't break the boot if 389 -- loader hadn't been recompiled with this 390 -- function exposed. 391 if loader.command_error then 392 print(loader.command_error()) 393 end 394 if not silent then 395 print("failed!") 396 end 397 if v.error ~= nil then 398 cli_execute_unparsed(v.error) 399 end 400 status = false 401 elseif v.after ~= nil then 402 pstatus = cli_execute_unparsed(v.after) == 0 403 if not pstatus and not silent then 404 print(MSG_FAILEXAF:format(v.after, k)) 405 end 406 if not silent then 407 print("ok") 408 end 409 status = status and pstatus 410 end 411 end 412 ::continue:: 413 end 414 415 return status 416end 417 418local function readFile(name, silent) 419 local f = io.open(name) 420 if f == nil then 421 if not silent then 422 print(MSG_FAILOPENCFG:format(name)) 423 end 424 return nil 425 end 426 427 local text, _ = io.read(f) 428 -- We might have read in the whole file, this won't be needed any more. 429 io.close(f) 430 431 if text == nil and not silent then 432 print(MSG_FAILREADCFG:format(name)) 433 end 434 return text 435end 436 437local function checkNextboot() 438 local nextboot_file = loader.getenv("nextboot_conf") 439 if nextboot_file == nil then 440 return 441 end 442 443 local text = readFile(nextboot_file, true) 444 if text == nil then 445 return 446 end 447 448 if text:match("^nextboot_enable=\"NO\"") ~= nil then 449 -- We're done; nextboot is not enabled 450 return 451 end 452 453 if not config.parse(text) then 454 print(MSG_FAILPARSECFG:format(nextboot_file)) 455 end 456 457 -- Attempt to rewrite the first line and only the first line of the 458 -- nextboot_file. We overwrite it with nextboot_enable="NO", then 459 -- check for that on load. 460 -- It's worth noting that this won't work on every filesystem, so we 461 -- won't do anything notable if we have any errors in this process. 462 local nfile = io.open(nextboot_file, 'w') 463 if nfile ~= nil then 464 -- We need the trailing space here to account for the extra 465 -- character taken up by the string nextboot_enable="YES" 466 -- Or new end quotation mark lands on the S, and we want to 467 -- rewrite the entirety of the first line. 468 io.write(nfile, "nextboot_enable=\"NO\" ") 469 io.close(nfile) 470 end 471end 472 473-- Module exports 474config.verbose = false 475 476-- The first item in every carousel is always the default item. 477function config.getCarouselIndex(id) 478 return carousel_choices[id] or 1 479end 480 481function config.setCarouselIndex(id, idx) 482 carousel_choices[id] = idx 483end 484 485-- Returns true if we processed the file successfully, false if we did not. 486-- If 'silent' is true, being unable to read the file is not considered a 487-- failure. 488function config.processFile(name, silent) 489 if silent == nil then 490 silent = false 491 end 492 493 local text = readFile(name, silent) 494 if text == nil then 495 return silent 496 end 497 498 return config.parse(text) 499end 500 501-- silent runs will not return false if we fail to open the file 502function config.parse(text) 503 local n = 1 504 local status = true 505 506 for line in text:gmatch("([^\n]+)") do 507 if line:match("^%s*$") == nil then 508 for _, val in ipairs(pattern_table) do 509 local pattern = '^%s*' .. val.str .. '%s*(.*)'; 510 local cgroups = val.groups or 2 511 local k, v, c = checkPattern(line, pattern) 512 if k ~= nil then 513 -- Offset by one, drats 514 if cgroups == 1 then 515 c = v 516 v = nil 517 end 518 519 if isValidComment(c) then 520 val.process(k, v) 521 goto nextline 522 end 523 524 break 525 end 526 end 527 528 print(MSG_MALFORMED:format(n, line)) 529 status = false 530 end 531 ::nextline:: 532 n = n + 1 533 end 534 535 return status 536end 537 538function config.readConf(file, loaded_files) 539 if loaded_files == nil then 540 loaded_files = {} 541 end 542 543 if loaded_files[file] ~= nil then 544 return 545 end 546 547 -- We'll process loader_conf_dirs at the top-level readConf 548 local load_conf_dirs = next(loaded_files) == nil 549 print("Loading " .. file) 550 551 -- The final value of loader_conf_files is not important, so just 552 -- clobber it here. We'll later check if it's no longer nil and process 553 -- the new value for files to read. 554 setEnv("loader_conf_files", nil) 555 556 -- These may or may not exist, and that's ok. Do a 557 -- silent parse so that we complain on parse errors but 558 -- not for them simply not existing. 559 if not config.processFile(file, true) then 560 print(MSG_FAILPARSECFG:format(file)) 561 end 562 563 loaded_files[file] = true 564 565 -- Going to process "loader_conf_files" extra-files 566 local loader_conf_files = getEnv("loader_conf_files") 567 if loader_conf_files ~= nil then 568 for name in loader_conf_files:gmatch("[%w%p]+") do 569 config.readConf(name, loaded_files) 570 end 571 end 572 573 if load_conf_dirs then 574 local loader_conf_dirs = getEnv("loader_conf_dirs") 575 if loader_conf_dirs ~= nil then 576 for name in loader_conf_dirs:gmatch("[%w%p]+") do 577 if lfs.attributes(name, "mode") ~= "directory" then 578 print(MSG_FAILDIR:format(name)) 579 goto nextdir 580 end 581 for cfile in lfs.dir(name) do 582 if cfile:match(".conf$") then 583 local fpath = name .. "/" .. cfile 584 if lfs.attributes(fpath, "mode") == "file" then 585 config.readConf(fpath, loaded_files) 586 end 587 end 588 end 589 ::nextdir:: 590 end 591 end 592 end 593end 594 595-- other_kernel is optionally the name of a kernel to load, if not the default 596-- or autoloaded default from the module_path 597function config.loadKernel(other_kernel) 598 local flags = loader.getenv("kernel_options") or "" 599 local kernel = other_kernel or loader.getenv("kernel") 600 601 local function tryLoad(names) 602 for name in names:gmatch("([^;]+)%s*;?") do 603 local r = loader.perform("load " .. name .. 604 " " .. flags) 605 if r == 0 then 606 return name 607 end 608 end 609 return nil 610 end 611 612 local function getModulePath() 613 local module_path = loader.getenv("module_path") 614 local kernel_path = loader.getenv("kernel_path") 615 616 if kernel_path == nil then 617 return module_path 618 end 619 620 -- Strip the loaded kernel path from module_path. This currently assumes 621 -- that the kernel path will be prepended to the module_path when it's 622 -- found. 623 kernel_path = escapeName(kernel_path .. ';') 624 return module_path:gsub(kernel_path, '') 625 end 626 627 local function loadBootfile() 628 local bootfile = loader.getenv("bootfile") 629 630 -- append default kernel name 631 if bootfile == nil then 632 bootfile = "kernel" 633 else 634 bootfile = bootfile .. ";kernel" 635 end 636 637 return tryLoad(bootfile) 638 end 639 640 -- kernel not set, try load from default module_path 641 if kernel == nil then 642 local res = loadBootfile() 643 644 if res ~= nil then 645 -- Default kernel is loaded 646 config.kernel_loaded = nil 647 return true 648 else 649 print(MSG_DEFAULTKERNFAIL) 650 return false 651 end 652 else 653 -- Use our cached module_path, so we don't end up with multiple 654 -- automatically added kernel paths to our final module_path 655 local module_path = getModulePath() 656 local res 657 658 if other_kernel ~= nil then 659 kernel = other_kernel 660 end 661 -- first try load kernel with module_path = /boot/${kernel} 662 -- then try load with module_path=${kernel} 663 local paths = {"/boot/" .. kernel, kernel} 664 665 for _, v in pairs(paths) do 666 loader.setenv("module_path", v) 667 res = loadBootfile() 668 669 -- succeeded, add path to module_path 670 if res ~= nil then 671 config.kernel_loaded = kernel 672 if module_path ~= nil then 673 loader.setenv("module_path", v .. ";" .. 674 module_path) 675 loader.setenv("kernel_path", v) 676 end 677 return true 678 end 679 end 680 681 -- failed to load with ${kernel} as a directory 682 -- try as a file 683 res = tryLoad(kernel) 684 if res ~= nil then 685 config.kernel_loaded = kernel 686 return true 687 else 688 print(MSG_KERNFAIL:format(kernel)) 689 return false 690 end 691 end 692end 693 694function config.selectKernel(kernel) 695 config.kernel_selected = kernel 696end 697 698function config.load(file, reloading) 699 if not file then 700 file = "/boot/defaults/loader.conf" 701 end 702 703 config.readConf(file) 704 705 checkNextboot() 706 707 local verbose = loader.getenv("verbose_loading") or "no" 708 config.verbose = verbose:lower() == "yes" 709 if not reloading then 710 hook.runAll("config.loaded") 711 end 712end 713 714-- Reload configuration 715function config.reload(file) 716 modules = {} 717 restoreEnv() 718 config.load(file, true) 719 hook.runAll("config.reloaded") 720end 721 722function config.loadelf() 723 local xen_kernel = loader.getenv('xen_kernel') 724 local kernel = config.kernel_selected or config.kernel_loaded 725 local status 726 727 if xen_kernel ~= nil then 728 print(MSG_XENKERNLOADING) 729 if cli_execute_unparsed('load ' .. xen_kernel) ~= 0 then 730 print(MSG_XENKERNFAIL:format(xen_kernel)) 731 return false 732 end 733 end 734 print(MSG_KERNLOADING) 735 if not config.loadKernel(kernel) then 736 return false 737 end 738 hook.runAll("kernel.loaded") 739 740 print(MSG_MODLOADING) 741 status = loadModule(modules, not config.verbose) 742 hook.runAll("modules.loaded") 743 return status 744end 745 746function config.enableModule(modname) 747 if modules[modname] == nil then 748 modules[modname] = {} 749 elseif modules[modname].load == "YES" then 750 modules[modname].force = true 751 return true 752 end 753 754 modules[modname].load = "YES" 755 modules[modname].force = true 756 return true 757end 758 759function config.disableModule(modname) 760 if modules[modname] == nil then 761 return false 762 elseif modules[modname].load ~= "YES" then 763 return true 764 end 765 766 modules[modname].load = "NO" 767 modules[modname].force = nil 768 return true 769end 770 771function config.isModuleEnabled(modname) 772 local mod = modules[modname] 773 if not mod or mod.load ~= "YES" then 774 return false 775 end 776 777 if mod.force then 778 return true 779 end 780 781 local blacklist = getBlacklist() 782 return not blacklist[modname] 783end 784 785function config.getModuleInfo() 786 return { 787 modules = modules, 788 blacklist = getBlacklist() 789 } 790end 791 792hook.registerType("config.loaded") 793hook.registerType("config.reloaded") 794hook.registerType("kernel.loaded") 795hook.registerType("modules.loaded") 796return config 797