Improve Environment variables

Now seperate storage for Shell (UCS-2) and Rust variables (UTF-8).
Reading is possible for both, however only writing to
RUST_VARIABLES_GUID is possible.

Signed-off-by: Ayush <ayushsingh1325@gmail.com>

Author: Ayush1325

library/std/src/os/uefi/ffi.rs

@@ -37,12 +37,12 @@ pub trait OsStringExt: Sealed
 where
     Self: Sized,
 {
-    fn from_ucs2(ucs: &[u16]) -> Self;
+    fn from_ucs2_lossy(ucs: &[u16]) -> Self;
 
     // For Null terminated UCS-2 Strings.
     #[inline]
     fn from_ucs2_null_termintated(ucs: &[u16]) -> Self {
-        Self::from_ucs2(&ucs[..(ucs.len() - 1)])
+        Self::from_ucs2_lossy(&ucs[..(ucs.len() - 1)])
     }
 
     // Create OsString from an FFI obtained pointer.
@@ -56,7 +56,7 @@ where
 }
 
 impl OsStringExt for OsString {
-    fn from_ucs2(ucs: &[u16]) -> Self {
+    fn from_ucs2_lossy(ucs: &[u16]) -> Self {
         // Min capacity(in case of all ASCII) is `ucs.len()`
         let mut buf = String::with_capacity(ucs.len());
 

library/std/src/sys/uefi/args.rs

@@ -78,7 +78,7 @@ fn parse_lp_cmd_line<'a, F: Fn() -> OsString>(
     }
     // Skip whitespace.
     code_units.advance_while(|w| w == SPACE || w == TAB);
-    ret_val.push(OsString::from_ucs2(&cur));
+    ret_val.push(OsString::from_ucs2_lossy(&cur));
 
     // Parse the arguments according to these rules:
     // * All code units are taken literally except space, tab, quote and backslash.
@@ -98,7 +98,7 @@ fn parse_lp_cmd_line<'a, F: Fn() -> OsString>(
         match w {
             // If not `in_quotes`, a space or tab ends the argument.
             SPACE | TAB if !in_quotes => {
-                ret_val.push(OsString::from_ucs2(&cur[..]));
+                ret_val.push(OsString::from_ucs2_lossy(&cur[..]));
                 cur.truncate(0);
 
                 // Skip whitespace.
@@ -141,7 +141,7 @@ fn parse_lp_cmd_line<'a, F: Fn() -> OsString>(
     }
     // Push the final argument, if any.
     if !cur.is_empty() || in_quotes {
-        ret_val.push(OsString::from_ucs2(&cur[..]));
+        ret_val.push(OsString::from_ucs2_lossy(&cur[..]));
     }
     ret_val
 }

library/std/src/sys/uefi/os.rs

@@ -2,14 +2,14 @@ use super::{
     common::{self, status_to_io_error},
     unsupported,
 };
-use crate::error::Error as StdError;
 use crate::ffi::{OsStr, OsString};
 use crate::fmt;
 use crate::io;
 use crate::marker::PhantomData;
 use crate::os::uefi;
 use crate::os::uefi::ffi::OsStrExt;
 use crate::path::{self, PathBuf};
+use crate::{error::Error as StdError, os::uefi::ffi::OsStringExt};
 
 // Return EFI_ABORTED as Status
 pub fn errno() -> i32 {
@@ -84,31 +84,65 @@ pub fn current_exe() -> io::Result<PathBuf> {
 }
 
 // FIXME: Implement using Variable Services
-pub struct Env(!);
+pub struct Env {
+    last_var_name: Vec<u16>,
+    last_var_guid: r_efi::efi::Guid,
+}
 
 impl Iterator for Env {
     type Item = (OsString, OsString);
     fn next(&mut self) -> Option<(OsString, OsString)> {
-        self.0
+        let mut key = self.last_var_name.clone();
+        // Only Read Shell and Rust variables. UEFI variables can be random bytes of data and so
+        // not much point in reading anything else in Env context.
+        let val = match self.last_var_guid {
+            uefi_vars::RUST_VARIABLE_GUID => {
+                uefi_vars::get_variable_utf8(&mut key, uefi_vars::RUST_VARIABLE_GUID)
+            }
+            uefi_vars::SHELL_VARIABLE_GUID => {
+                uefi_vars::get_variable_ucs2(&mut key, self.last_var_guid)
+            }
+            _ => None,
+        };
+        let (k, g) =
+            uefi_vars::get_next_variable_name(&self.last_var_name, &self.last_var_guid).ok()?;
+        self.last_var_guid = g;
+        self.last_var_name = k;
+        match val {
+            None => self.next(),
+            Some(x) => Some((OsString::from_ucs2_lossy(&key), x)),
+        }
     }
 }
 
 pub fn env() -> Env {
-    panic!("not supported on this platform")
+    // The Guid should be ignored, so just passing anything
+    let (key, guid) =
+        uefi_vars::get_next_variable_name(&[0], &uefi_vars::RUST_VARIABLE_GUID).unwrap();
+    Env { last_var_name: key, last_var_guid: guid }
 }
 
+// Tries to get variable from bot RUST_VARIABLE_GUID and SHELL_VARIABLE_GUID. Precedence:
+// RUST_VARIABLE_GUID > SHELL_VARIABLE_GUID
 pub fn getenv(key: &OsStr) -> Option<OsString> {
-    uefi_vars::get_variable(key)
+    let mut k = key.to_ffi_string();
+    if let Some(x) = uefi_vars::get_variable_utf8(&mut k, uefi_vars::RUST_VARIABLE_GUID) {
+        Some(x)
+    } else {
+        uefi_vars::get_variable_ucs2(&mut k, uefi_vars::SHELL_VARIABLE_GUID)
+    }
 }
 
+// Only possible to set variable to RUST_VARIABLE_GUID
 pub fn setenv(key: &OsStr, val: &OsStr) -> io::Result<()> {
     // Setting a variable with null value is same as unsetting it in UEFI
     if val.is_empty() {
         unsetenv(key)
     } else {
         unsafe {
-            uefi_vars::set_variable(
+            uefi_vars::set_variable_raw(
                 key.to_ffi_string().as_mut_ptr(),
+                uefi_vars::RUST_VARIABLE_GUID,
                 val.len(),
                 val.bytes().as_ptr() as *mut crate::ffi::c_void,
             )
@@ -118,7 +152,12 @@ pub fn setenv(key: &OsStr, val: &OsStr) -> io::Result<()> {
 
 pub fn unsetenv(key: &OsStr) -> io::Result<()> {
     match unsafe {
-        uefi_vars::set_variable(key.to_ffi_string().as_mut_ptr(), 0, crate::ptr::null_mut())
+        uefi_vars::set_variable_raw(
+            key.to_ffi_string().as_mut_ptr(),
+            uefi_vars::RUST_VARIABLE_GUID,
+            0,
+            crate::ptr::null_mut(),
+        )
     } {
         Ok(_) => Ok(()),
         Err(e) => match e.kind() {
@@ -163,13 +202,14 @@ pub fn getpid() -> u32 {
 pub(crate) mod uefi_vars {
     // It is possible to directly store and use UTF-8 data. So no need to convert to and from UCS-2
     use super::super::common::{self, status_to_io_error};
-    use crate::ffi::{OsStr, OsString};
+    use crate::ffi::OsString;
     use crate::io;
+    use crate::mem::size_of;
     use crate::os::uefi;
-    use crate::os::uefi::ffi::OsStrExt;
+    use crate::os::uefi::ffi::OsStringExt;
 
     // Using Shell Variable Guid from edk2/ShellPkg
-    const SHELL_VARIABLE_GUID: r_efi::efi::Guid = r_efi::efi::Guid::from_fields(
+    pub const SHELL_VARIABLE_GUID: r_efi::efi::Guid = r_efi::efi::Guid::from_fields(
         0x158def5a,
         0xf656,
         0x419c,
@@ -178,14 +218,91 @@ pub(crate) mod uefi_vars {
         &[0x7a, 0x31, 0x92, 0xc0, 0x79, 0xd2],
     );
 
-    pub(crate) unsafe fn set_variable(
+    pub const RUST_VARIABLE_GUID: r_efi::efi::Guid = r_efi::efi::Guid::from_fields(
+        0x49bb4029,
+        0x7d2b,
+        0x4bf7,
+        0xa1,
+        0x95,
+        &[0x0f, 0x18, 0xa1, 0xa8, 0x85, 0xc9],
+    );
+
+    pub fn get_variable_utf8(key: &mut [u16], guid: r_efi::efi::Guid) -> Option<OsString> {
+        let mut buf_size = 0;
+
+        if let Err(e) = unsafe {
+            get_vaiable_raw(key.as_mut_ptr(), guid, &mut buf_size, crate::ptr::null_mut())
+        } {
+            if e.kind() != io::ErrorKind::FileTooLarge {
+                return None;
+            }
+        }
+
+        let mut buf: Vec<u8> = Vec::with_capacity(buf_size);
+        unsafe {
+            get_vaiable_raw(key.as_mut_ptr(), guid, &mut buf_size, buf.as_mut_ptr().cast()).ok()
+        }?;
+
+        unsafe { buf.set_len(buf_size) };
+        Some(OsString::from(String::from_utf8(buf).ok()?))
+    }
+
+    pub fn get_variable_ucs2(key: &mut [u16], guid: r_efi::efi::Guid) -> Option<OsString> {
+        let mut buf_size = 0;
+
+        if let Err(e) = unsafe {
+            get_vaiable_raw(key.as_mut_ptr(), guid, &mut buf_size, crate::ptr::null_mut())
+        } {
+            if e.kind() != io::ErrorKind::FileTooLarge {
+                return None;
+            }
+        }
+
+        let mut buf: Vec<u16> = Vec::with_capacity(buf_size / size_of::<u16>());
+        unsafe {
+            get_vaiable_raw(key.as_mut_ptr(), guid, &mut buf_size, buf.as_mut_ptr().cast()).ok()
+        }?;
+
+        unsafe { buf.set_len(buf_size / size_of::<u16>()) };
+        Some(OsString::from_ucs2_lossy(&buf))
+    }
+
+    pub fn get_next_variable_name(
+        last_var_name: &[u16],
+        last_guid: &r_efi::efi::Guid,
+    ) -> io::Result<(Vec<u16>, r_efi::efi::Guid)> {
+        let mut var_name = Vec::from(last_var_name);
+        let mut var_size = var_name.capacity() * size_of::<u16>();
+        let mut guid: r_efi::efi::Guid = *last_guid;
+        match unsafe { get_next_variable_raw(&mut var_size, var_name.as_mut_ptr(), &mut guid) } {
+            Ok(_) => {
+                unsafe { var_name.set_len(var_size / size_of::<u16>()) };
+                return Ok((var_name, guid));
+            }
+            Err(e) => {
+                if e.kind() != io::ErrorKind::FileTooLarge {
+                    return Err(e);
+                }
+            }
+        }
+
+        var_name.reserve(var_size - (var_name.capacity() * size_of::<u16>()));
+        var_size = var_name.capacity() * size_of::<u16>();
+
+        unsafe { get_next_variable_raw(&mut var_size, var_name.as_mut_ptr(), &mut guid) }?;
+
+        unsafe { var_name.set_len(var_size / size_of::<u16>()) };
+        Ok((var_name, guid))
+    }
+
+    pub unsafe fn set_variable_raw(
         variable_name: *mut u16,
+        mut guid: r_efi::efi::Guid,
         data_size: usize,
         data: *mut crate::ffi::c_void,
     ) -> io::Result<()> {
         let runtime_services =
             uefi::env::get_runtime_services().ok_or(common::RUNTIME_SERVICES_ERROR)?;
-        let mut guid = SHELL_VARIABLE_GUID;
         let r = unsafe {
             ((*runtime_services.as_ptr()).set_variable)(
                 variable_name,
@@ -198,34 +315,14 @@ pub(crate) mod uefi_vars {
         if r.is_error() { Err(status_to_io_error(r)) } else { Ok(()) }
     }
 
-    pub(crate) fn get_variable(key: &OsStr) -> Option<OsString> {
-        let mut buf_size = 0;
-        let mut key_buf = key.to_ffi_string();
-
-        if let Err(e) =
-            unsafe { get_vaiable_raw(key_buf.as_mut_ptr(), &mut buf_size, crate::ptr::null_mut()) }
-        {
-            if e.kind() != io::ErrorKind::FileTooLarge {
-                return None;
-            }
-        }
-
-        let mut buf: Vec<u8> = Vec::with_capacity(buf_size);
-        unsafe { get_vaiable_raw(key_buf.as_mut_ptr(), &mut buf_size, buf.as_mut_ptr().cast()) }
-            .ok()?;
-
-        unsafe { buf.set_len(buf_size) };
-        Some(OsString::from(String::from_utf8(buf).ok()?))
-    }
-
     unsafe fn get_vaiable_raw(
         key: *mut u16,
+        mut guid: r_efi::efi::Guid,
         data_size: &mut usize,
         data: *mut crate::ffi::c_void,
     ) -> io::Result<()> {
         let runtime_services =
             uefi::env::get_runtime_services().ok_or(common::RUNTIME_SERVICES_ERROR)?;
-        let mut guid = SHELL_VARIABLE_GUID;
         let r = unsafe {
             ((*runtime_services.as_ptr()).get_variable)(
                 key,
@@ -237,4 +334,21 @@ pub(crate) mod uefi_vars {
         };
         if r.is_error() { Err(status_to_io_error(r)) } else { Ok(()) }
     }
+
+    unsafe fn get_next_variable_raw(
+        variable_name_size: *mut usize,
+        variable_name: *mut u16,
+        vendor_guid: *mut r_efi::efi::Guid,
+    ) -> io::Result<()> {
+        let runtime_services =
+            uefi::env::get_runtime_services().ok_or(common::RUNTIME_SERVICES_ERROR)?;
+        let r = unsafe {
+            ((*runtime_services.as_ptr()).get_next_variable_name)(
+                variable_name_size,
+                variable_name,
+                vendor_guid,
+            )
+        };
+        if r.is_error() { Err(status_to_io_error(r)) } else { Ok(()) }
+    }
 }

library/std/src/sys/uefi/thread.rs

@@ -39,7 +39,7 @@ impl Thread {
 #[inline]
 pub fn available_parallelism() -> io::Result<NonZeroUsize> {
     // UEFI is single threaded
-    Ok(NonZeroUsize::new(1).unwrap())
+    unsafe { Ok(NonZeroUsize::new_unchecked(1)) }
 }
 
 // FIXME: Should be possible to implement. see https://edk2-docs.gitbook.io/a-tour-beyond-bios-mitigate-buffer-overflow-in-ue/additional_overflow_detection/stack_overflow_detection