Home Explore Help
Sign In
RISCI_ATOM
/
admc
mirror of https://gitlab.com/giomasce/asmc.git
1
0
Fork 0
Files Issues 0 Wiki
Branch: master
Branches Tags
admc
/
http
/
continue2.c

continue2.c 11 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303 
  1. /* This file is part of asmc, a bootstrapping OS with minimal seed
    2. 

  2.    Copyright (C) 2019 Giovanni Mascellani <gio@debian.org>
    3. 

  3.    https://gitlab.com/giomasce/asmc
    4. 

  4. 

  5.    This program is free software: you can redistribute it and/or modify
    6. 

  6.    it under the terms of the GNU General Public License as published by
    7. 

  7.    the Free Software Foundation, either version 3 of the License, or
    8. 

  8.    (at your option) any later version.
    9. 

  9. 

  10.    This program is distributed in the hope that it will be useful,
    11. 

  11.    but WITHOUT ANY WARRANTY; without even the implied warranty of
    12. 

  12.    MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    13. 

  13.    GNU General Public License for more details.
    14. 

  14. 

  15.    You should have received a copy of the GNU General Public License
    16. 

  16.    along with this program.  If not, see <https://www.gnu.org/licenses/>. */
    17. 

  17. 

  18. #include <stdint.h>
    19. 

  19. #include <assert.h>
    20. 

  20. #include <stdio.h>
    21. 

  21. #include <string.h>
    22. 

  22. #include <asmc_api.h>
    23. 

  23. 

  24. struct gdt_entry {
    25. 

  25.     unsigned int limit_low : 16;
    26. 

  26.     unsigned int base_low : 24;
    27. 

  27.     // Access byte
    28. 

  28.     unsigned int accessed : 1;
    29. 

  29.     unsigned int read_write : 1; // Readable for code, writable for data
    30. 

  30.     unsigned int conforming : 1; // Conforming for code, expand down for data
    31. 

  31.     unsigned int code : 1; // 1 for code, 0 for data
    32. 

  32.     unsigned int type : 1; // 1 for code/data, 0 for system segments (like TSS)
    33. 

  33.     unsigned int DPL : 2; //priviledge level
    34. 

  34.     unsigned int present : 1;
    35. 

  35.     // Flags
    36. 

  36.     unsigned int limit_high : 4;
    37. 

  37.     unsigned int always_0 : 2;
    38. 

  38.     unsigned int size : 1; // 1 for 32 bits, 0 for 16 bits
    39. 

  39.     unsigned int gran : 1; // 1 for 4k page addressing, 0 for byte addressing
    40. 

  40.     unsigned int base_high : 8;
    41. 

  41. } __attribute__((packed));
    42. 

  42. 

  43. struct gdt_desc {
    44. 

  44.     uint16_t size;
    45. 

  45.     struct gdt_entry *offset;
    46. 

  46. } __attribute__((packed));
    47. 

  47. 

  48. void reload_gdt(struct gdt_entry *gdt, int entry_num) {
    49. 

  49.     struct gdt_desc desc;
    50. 

  50.     desc.size = entry_num * 8 - 1;
    51. 

  51.     desc.offset = gdt;
    52. 

  52.     asm volatile("lgdt %0 \n\t"
    53. 

  53.                  "push $0x10 \n\t"
    54. 

  54.                  "push $reload_cs \n\t"
    55. 

  55.                  // TCC does not know retf
    56. 

  56.                  ".byte 0xcb \n\t"
    57. 

  57.                  "reload_cs: \n\t"
    58. 

  58.                  "mov $0x18, %%ax \n\t"
    59. 

  59.                  // TCC generates a 0x66 prefix that does not look like right
    60. 

  60.                  /*"mov %%ax, %%ds \n\t"
    61. 

  61.                  "mov %%ax, %%es \n\t"
    62. 

  62.                  "mov %%ax, %%fs \n\t"
    63. 

  63.                  "mov %%ax, %%gs \n\t"
    64. 

  64.                  "mov %%ax, %%ss \n\t"*/
    65. 

  65.                  ".byte 0x8e, 0xd8 \n\t"
    66. 

  66.                  ".byte 0x8e, 0xc0 \n\t"
    67. 

  67.                  ".byte 0x8e, 0xe0 \n\t"
    68. 

  68.                  ".byte 0x8e, 0xe8 \n\t"
    69. 

  69.                  ".byte 0x8e, 0xd0 \n\t"
    70. 

  70.                  : : "m" (desc));
    71. 

  71.     printf("Still alive after reloading code and data segments!\n");
    72. 

  72. }
    73. 

  73. 

  74. // Load GDT, code and data segments according to Linux Boot Protocol
    75. 

  75. void load_linux_gdt() {
    76. 

  76.     assert(sizeof(struct gdt_desc) == 6);
    77. 

  77.     assert(sizeof(struct gdt_entry) == 8);
    78. 

  78.     // Random address, hoping that it does not bother anybody
    79. 

  79.     struct gdt_entry *gdt = (struct gdt_entry*) 0x800;
    80. 

  80.     memset(gdt, 0, sizeof(gdt[0]) * 4);
    81. 

  81. 

  82.     // 0x10: code segment
    83. 

  83.     gdt[2].limit_low = 0xffff;
    84. 

  84.     gdt[2].base_low = 0x000000;
    85. 

  85.     gdt[2].accessed = 0;
    86. 

  86.     gdt[2].read_write = 1;
    87. 

  87.     gdt[2].conforming = 0;
    88. 

  88.     gdt[2].code = 1;
    89. 

  89.     gdt[2].type = 1;
    90. 

  90.     gdt[2].DPL = 0;
    91. 

  91.     gdt[2].present = 1;
    92. 

  92.     gdt[2].limit_high = 0xf;
    93. 

  93.     gdt[2].size = 1;
    94. 

  94.     gdt[2].gran = 1;
    95. 

  95.     gdt[2].base_high = 0x00;
    96. 

  96. 

  97.     // 0x18: data segment
    98. 

  98.     gdt[3].limit_low = 0xffff;
    99. 

  99.     gdt[3].base_low = 0x000000;
    100. 

  100.     gdt[3].accessed = 0;
    101. 

  101.     gdt[3].read_write = 1;
    102. 

  102.     gdt[3].conforming = 0;
    103. 

  103.     gdt[3].code = 0;
    104. 

  104.     gdt[3].type = 1;
    105. 

  105.     gdt[3].DPL = 0;
    106. 

  106.     gdt[3].present = 1;
    107. 

  107.     gdt[3].limit_high = 0xf;
    108. 

  108.     gdt[3].size = 1;
    109. 

  109.     gdt[3].gran = 1;
    110. 

  110.     gdt[3].base_high = 0x00;
    111. 

  111. 

  112.     reload_gdt(gdt, 4);
    113. 

  113. }
    114. 

  114. 

  115. // Prepare GDT to re-enter real mode
    116. 

  116. void prepare_real_mode_gdt() {
    117. 

  117.     assert(sizeof(struct gdt_desc) == 6);
    118. 

  118.     assert(sizeof(struct gdt_entry) == 8);
    119. 

  119.     // Random address, hoping that it does not bother anybody
    120. 

  120.     struct gdt_entry *gdt = (struct gdt_entry*) 0x800;
    121. 

  121.     memset(gdt, 0, sizeof(gdt[0]) * 4);
    122. 

  122. 

  123.     // 0x10: code segment
    124. 

  124.     gdt[2].limit_low = 0xffff;
    125. 

  125.     gdt[2].base_low = 0x000000;
    126. 

  126.     gdt[2].accessed = 0;
    127. 

  127.     gdt[2].read_write = 1;
    128. 

  128.     gdt[2].conforming = 0;
    129. 

  129.     gdt[2].code = 1;
    130. 

  130.     gdt[2].type = 1;
    131. 

  131.     gdt[2].DPL = 0;
    132. 

  132.     gdt[2].present = 1;
    133. 

  133.     gdt[2].limit_high = 0x0;
    134. 

  134.     gdt[2].size = 0;
    135. 

  135.     gdt[2].gran = 0;
    136. 

  136.     gdt[2].base_high = 0x00;
    137. 

  137. 

  138.     // 0x18: data segment
    139. 

  139.     gdt[3].limit_low = 0xffff;
    140. 

  140.     gdt[3].base_low = 0x000000;
    141. 

  141.     gdt[3].accessed = 0;
    142. 

  142.     gdt[3].read_write = 1;
    143. 

  143.     gdt[3].conforming = 0;
    144. 

  144.     gdt[3].code = 0;
    145. 

  145.     gdt[3].type = 1;
    146. 

  146.     gdt[3].DPL = 0;
    147. 

  147.     gdt[3].present = 1;
    148. 

  148.     gdt[3].limit_high = 0x0;
    149. 

  149.     gdt[3].size = 0;
    150. 

  150.     gdt[3].gran = 0;
    151. 

  151.     gdt[3].base_high = 0x00;
    152. 

  152. }
    153. 

  153. 

  154. void prepare_setup_header(void *zero_page, void *initrd, size_t initrd_size) {
    155. 

  155.     char *czp = (char*) zero_page;
    156. 

  156.     *((uint16_t*)(czp+0x1fa)) = 0xffff;
    157. 

  157.     *((uint8_t*)(czp+0x210)) = 0xff;
    158. 

  158.     *((uint8_t*)(czp+0x211)) = 0x81;
    159. 

  159.     *((void**)(czp+0x218)) = initrd;
    160. 

  160.     *((uint32_t*)(czp+0x21c)) = initrd_size;
    161. 

  161.     *((uint16_t*)(czp+0x224)) = 0xde00;
    162. 

  162.     *((void**)(czp+0x228)) = (void*) 0x1e000;
    163. 

  163. }
    164. 

  164. 

  165. void prepare_boot_params(void *zero_page, void *initrd, size_t initrd_size) {
    166. 

  166.     prepare_setup_header(zero_page, initrd, initrd_size);
    167. 

  167. }
    168. 

  168. 

  169. #define SECT_SIZE 512
    170. 

  170. 

  171. void load_linux32() {
    172. 

  172.     download_file("http://10.0.2.2:8080/bzImage", "/ram/cont/bzImage");
    173. 

  173.     download_file("http://10.0.2.2:8080/initrd.img", "/ram/cont/initrd.img");
    174. 

  174.     printf("Loading Linux kernel\n");
    175. 

  175.     FILE *fin = fopen("/ram/cont/bzImage", "rb");
    176. 

  176.     void *real_mode = malloc(SECT_SIZE);
    177. 

  177.     size_t res = fread(real_mode, SECT_SIZE, 1, fin);
    178. 

  178.     assert(res == 1);
    179. 

  179.     uint8_t setup_sects = *((uint8_t*)(((char*)real_mode)+0x1f1));
    180. 

  180.     setup_sects = setup_sects == 0 ? 4 : setup_sects;
    181. 

  181.     size_t real_mode_size = SECT_SIZE * (1 + setup_sects);
    182. 

  182.     printf("Real mode code/data is 0x%x bytes long\n", real_mode_size);
    183. 

  183.     real_mode = realloc(real_mode, real_mode_size);
    184. 

  184.     res = fread(((char*)real_mode) + SECT_SIZE, SECT_SIZE, setup_sects, fin);
    185. 

  185.     assert(res == setup_sects);
    186. 

  186.     assert(*((uint16_t*)(((char*)real_mode)+0x1fe)) == 0xaa55);
    187. 

  187.     assert(*((uint32_t*)(((char*)real_mode)+0x202)) == 0x53726448);
    188. 

  188.     size_t prot_mode_size;
    189. 

  189.     void *prot_mode = read_whole_file(fin, &prot_mode_size);
    190. 

  190.     printf("Protected mode code/data is 0x%x bytes long\n", prot_mode_size);
    191. 

  191.     fclose(fin);
    192. 

  192.     fin = fopen("/ram/cont/initrd.img", "rb");
    193. 

  193.     size_t initrd_size;
    194. 

  194.     void *initrd = read_whole_file(fin, &initrd_size);
    195. 

  195.     printf("Initrd is 0x%x bytes long\n", initrd_size);
    196. 

  196.     fclose(fin);
    197. 

  197.     // Align initrd
    198. 

  198.     initrd = realloc(initrd, initrd_size + 4096);
    199. 

  199.     void *initrd_aligned = (void*)(((((unsigned long)initrd)-1) | (4096-1)) + 1);
    200. 

  200.     memmove(initrd_aligned, initrd, initrd_size);
    201. 

  201.     printf("Initrd initially allocated at 0x%x, then moved at 0x%x\n", initrd, initrd_aligned);
    202. 

  202.     prepare_boot_params(real_mode, initrd_aligned, initrd_size);
    203. 

  203.     load_linux_gdt();
    204. 

  204.     char *cmdline = "verbose earlyprintk nokaslr console=uart8250,io,0x3f8,115200n8";
    205. 

  205. 

  206.     // Here we really smash our operating system!
    207. 

  207.     memset((void*) 0x10000, 0, 0x10000);
    208. 

  208.     memcpy((void*) 0x10000, real_mode, real_mode_size);
    209. 

  209.     memcpy((void*) 0x1e000, cmdline, strlen(cmdline));
    210. 

  210.     //memcpy((void*) 0x100000, prot_mode, prot_mode_size);
    211. 

  211.     asm volatile("mov $0x100000, %%edi \n\t"
    212. 

  212.                  "cld \n\t"
    213. 

  213.                  "rep movsb \n\t"
    214. 

  214.                  "mov $0x10000, %%esi \n\t"
    215. 

  215.                  "xor %%eax, %%eax \n\t"
    216. 

  216.                  "mov %%eax, %%ebp \n\t"
    217. 

  217.                  "mov %%eax, %%edi \n\t"
    218. 

  218.                  "mov %%eax, %%ebx \n\t"
    219. 

  219.                  "mov %%eax, %%ecx \n\t"
    220. 

  220.                  "mov %%eax, %%edx \n\t"
    221. 

  221.                  "mov $0xe000, %%esp \n\t"
    222. 

  222.                  "push $0x100000 \n\t"
    223. 

  223.                  "ret \n\t"
    224. 

  224.                  : : "S" (prot_mode), "c" (prot_mode_size));
    225. 

  225. 

  226.     free(initrd);
    227. 

  227.     free(real_mode);
    228. 

  228.     free(prot_mode);
    229. 

  229. }
    230. 

  230. 

  231. void load_linux() {
    232. 

  232.     download_file("http://10.0.2.2:8080/bzImage", "/ram/cont/bzImage");
    233. 

  233.     download_file("http://10.0.2.2:8080/realmode.bin", "/ram/cont/realmode.bin");
    234. 

  234.     printf("Loading Linux kernel\n");
    235. 

  235.     FILE *fin = fopen("/ram/cont/bzImage", "rb");
    236. 

  236.     void *real_mode = malloc(SECT_SIZE);
    237. 

  237.     size_t res = fread(real_mode, SECT_SIZE, 1, fin);
    238. 

  238.     assert(res == 1);
    239. 

  239.     uint8_t setup_sects = *((uint8_t*)(((char*)real_mode)+0x1f1));
    240. 

  240.     setup_sects = setup_sects == 0 ? 4 : setup_sects;
    241. 

  241.     size_t real_mode_size = SECT_SIZE * (1 + setup_sects);
    242. 

  242.     printf("Real mode code/data is 0x%x bytes long\n", real_mode_size);
    243. 

  243.     real_mode = realloc(real_mode, real_mode_size);
    244. 

  244.     res = fread(((char*)real_mode) + SECT_SIZE, SECT_SIZE, setup_sects, fin);
    245. 

  245.     assert(res == setup_sects);
    246. 

  246.     assert(*((uint16_t*)(((char*)real_mode)+0x1fe)) == 0xaa55);
    247. 

  247.     assert(*((uint32_t*)(((char*)real_mode)+0x202)) == 0x53726448);
    248. 

  248.     size_t prot_mode_size;
    249. 

  249.     void *prot_mode = read_whole_file(fin, &prot_mode_size);
    250. 

  250.     printf("Protected mode code/data is 0x%x bytes long\n", prot_mode_size);
    251. 

  251.     fclose(fin);
    252. 

  252.     prepare_setup_header(real_mode, 0, 0);
    253. 

  253.     //load_linux_gdt();
    254. 

  254.     fin = fopen("/ram/cont/realmode.bin", "rb");
    255. 

  255.     size_t trampoline_size;
    256. 

  256.     void *trampoline = read_whole_file(fin, &trampoline_size);
    257. 

  257.     printf("Trampoline is 0x%x bytes long\n", trampoline_size);
    258. 

  258.     fclose(fin);
    259. 

  259.     prepare_real_mode_gdt();
    260. 

  260.     char *cmdline = "verbose";
    261. 

  261. 

  262.     // Here we really smash our operating system!
    263. 

  263.     memset((void*) 0x10000, 0, 0x10000);
    264. 

  264.     memcpy((void*) 0x500, trampoline, trampoline_size);
    265. 

  265.     memcpy((void*) 0x10000, real_mode, real_mode_size);
    266. 

  266.     memcpy((void*) 0x1e000, cmdline, strlen(cmdline));
    267. 

  267.     memcpy((void*) 0x100000, prot_mode, prot_mode_size);
    268. 

  268.     ((void (*)()) 0x500)();
    269. 

  269. 

  270.     free(trampoline);
    271. 

  271.     free(real_mode);
    272. 

  272.     free(prot_mode);
    273. 

  273. }
    274. 

  274. 

  275. void load_mlb() {
    276. 

  276.     download_file("http://10.0.2.2:8080/realmode2", "/ram/cont/realmode.bin");
    277. 

  277.     download_file("http://10.0.2.2:8080/example", "/ram/cont/bootloader");
    278. 

  278.     FILE *fin = fopen("/ram/cont/realmode.bin", "rb");
    279. 

  279.     size_t trampoline_size;
    280. 

  280.     void *trampoline = read_whole_file(fin, &trampoline_size);
    281. 

  281.     printf("Trampoline is 0x%x bytes long\n", trampoline_size);
    282. 

  282.     fclose(fin);
    283. 

  283.     prepare_real_mode_gdt();
    284. 

  284.     fin = fopen("/ram/cont/bootloader", "rb");
    285. 

  285.     size_t bootloader_size;
    286. 

  286.     void *bootloader = read_whole_file(fin, &bootloader_size);
    287. 

  287.     printf("Bootloader is 0x%x bytes long\n", bootloader_size);
    288. 

  288.     fclose(fin);
    289. 

  289.     prepare_real_mode_gdt();
    290. 

  290. 

  291.     memset((void*) 0x10000, 0, 0x10000);
    292. 

  292.     memcpy((void*) 0x500, trampoline, trampoline_size);
    293. 

  293.     memcpy((void*) 0x7c00, bootloader, bootloader_size);
    294. 

  294.     ((void (*)()) 0x500)();
    295. 

  295. }
    296. 

  296. 

  297. int main(int argc, char *argv[]) {
    298. 

  298.     printf("Hello world from continue2.c!\n");
    299. 

  299.     //load_linux32();
    300. 

  300.     //load_linux();
    301. 

  301.     //load_mlb();
    302. 

  302.     return 0;
    303. 

  303. }
    304.