[Skiboot] [PATCH] libstb/secvar: remove hard stop if storage driver fails to initialize

Wed Oct 7 09:25:37 AEDT 2020

If the storage driver failed to initialize, secvar would immediately
terminate the boot. The original intent was to fail early, however this
has proven to affect usability as it prevents the machine from being
able to boot even to skiroot/petitboot.

This patch instead causes secvar to halt at petitboot in
secure-enforcing mode, without any keys or secvar support.

Signed-off-by: Eric Richter <erichte at linux.ibm.com>
---
 doc/secvar/driver-api.rst   | 8 ++++----
 libstb/secvar/secvar_main.c | 2 +-
 2 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/doc/secvar/driver-api.rst b/doc/secvar/driver-api.rst
index 32ca5785..80986910 100644
--- a/doc/secvar/driver-api.rst
+++ b/doc/secvar/driver-api.rst
@@ -57,10 +57,10 @@ intialization. This hook should perform any initialization logic required for
 the other hooks to operate.
 
 IMPORTANT: If this hook returns an error (non-zero) code, secvar will
-immediately halt the boot. When implementing this hook, consider the
-implications of any errors in initialization, and whether they may affect the
-secure state. For example, if secure state is indeterminable due to some
-hardware failure, this is grounds for a halt.
+quit initializing, and instruct petitboot to halt the boot. When implementing
+this hook, consider the implications of any errors in initialization, and
+whether they may affect the secure state. For example, if secure state is
+indeterminable due to some hardware failure, this is grounds for a halt.
 
 This hook should only be called once. Subsequent calls should have no effect,
 or raise an error.
diff --git a/libstb/secvar/secvar_main.c b/libstb/secvar/secvar_main.c
index 759d8ef4..e38ca967 100644
--- a/libstb/secvar/secvar_main.c
+++ b/libstb/secvar/secvar_main.c
@@ -46,7 +46,7 @@ int secvar_main(struct secvar_storage_driver storage_driver,
 	 */
 	rc = secvar_storage.store_init();
 	if (rc)
-		secureboot_enforce();
+		goto fail;
 
 	rc = secvar_storage.load_bank(&variable_bank, SECVAR_VARIABLE_BANK);
 	if (rc)
-- 
2.21.1

