TSBP.md

TSBP - TOSAITHE BOOT PROTOCOL

Version 1.0.1pre

Introduction

Tosaithe, or TSBP, is a boot protocol for handover between bootloaders and OS kernels, on x86-64 architecture. It is designed to minimise implementation requirements on both loader and kernel sides, but provides a range of features that may be required by advanced systems.

This document defines the protocol requirements for the bootloader and kernel.

The bootloader is responsible for loading the kernel from storage, establishing an appropriate environment including the provision of system information, and then passing control to the kernel. Specifically, the bootloader:

• Loads the kernel image (and any ramdisk image) into memory.
• Establishes a structure with system information and parameters (such as kernel command line) for use by the kernel. This includes a memory map detailing the availability of memory and address ranges.
• Creates a page table structure so that the kernel is mapped (virtually addressable) at its preferred address, and that other areas of memory are available.
• Ensures that the processor state is suitable, and jumps to the kernel entry point.

The specific means by which the loader loads the kernel image, determines the kernel command line, and how the loader is configured, are out of scope and are not covered by this document. Similarly, the mechanism by which the bootloader itself is started and the environment in which it runs are not specified; however, there are some requirements for information about certain environments to be passed to the kernel (for example, the UEFI system table must be passed from the loader to the kernel if the loader executes in the UEFI environment).

The following sections describe:

• The format of a compliant kernel image, in detail.
• How the kernel can (statically) communicate requirements to the loader, via information embedded in the kernel image.
• The specific information that is passed from the bootloader to the kernel.
• The specific processor state that is established before execution of the kernel begins.

This specification is not intended to imply any specific implementation of either loader or kernel beyond the requirements explicitly listed. It is intended that a loader and kernel that are both compliant with this specification should be compatible with each other, regardless of how either individual component is implemented.

Conventions

Structures are specified as a sequence of fields with their types, with the type name first followed by the field name. A set of standard types are used as defined in C/C++, in particular:

• char is a single byte.
• uintN_t for some N means an unsigned integer of bit size N.
• uintptr_t is an unsigned integer that is the same size as a pointer (64 bits).
• A pointer to a particular type is written as type * where type is the name of pointee type.
• A pointer to no particular type is written as void *.
• A pointer to a value that is not intended to be modified is written as const type * (where type is the name of the pointee type). That the value not be modified is advisory, unless otherwise stated.

Structure fields are aligned to the size of their type, unless otherwise stated. Pointer types are 8 bytes in size and aligned to an 8-byte boundary. Structures as a whole are aligned according to alignment of their largest field.

Numbers preceded by 0x are in hexadecimal; numbers are otherwise in decimal.

TSBP Header for C and C++

A header file for C and C++ is provided defining the types and constants used by this specification. The header is named tosaithe-proto.h.

In some case this specification refers to scoped names such as tbsp_mmap_flags::CACHE_MASK. These names are usable as-is in C++ code; for C code, a usuable name can be derived by substituting an underscore (_) for the scope operator (::). For the CACHE_MASK example, the usable C name is tbsp_mmap_flags_CACHE_MASK.

Note: it is not intended that implementation be limited to C and C++ only, but headers or equivalent definitions for other languages are not as yet provided.

Kernel File Requirements

The protocol recognises kernels in the ELF file format. ELF is a very flexible format, and there are some restrictions on some specifics of the structure that must be applied to the kernel. The main requirement is that a Tosaithe Entry Header be present (see relevant section below). There are some other minor restrictions, many of which may be satisfied as a natural outcome of the usual linking process; they are listed here.

• The kernel must be structured as an ELF file, with no relocations.
• At offset 0 in any loadable ELF segment (i.e. of type PT_LOAD) a tosaithe_entry_header structure, including valid signature, must be present. Alternatively, a non-loadable segment of type 0x64534250 must be present and contain the header (which must also be present in a loadable segment); in this case, the header must also be contained anywhere within a loadable segment. The header must be aligned to an 8-byte boundary.
• Kernel virtual address must be somewhere in the top 2GB of the "negative" portion of the address space (i.e. from 0xFFFF_FFFF_8000_0000 to 0xFFFF_FFFF_FFFF_FFFF).
  Note: the "negative" portion is also referred to as the "higher half".
• Loadable segments must not overlap.
• Segment alignment must be 4kb, 2mb or 1gb; all segments must have the same alignment.

The format of the Tosaithe Entry Header is detailed in the following section.

Tosaithe Entry Header

The Tosaithe Entry Header (tosaithe_entry_header structure) must be present in the kernel, such that it can be located by the bootloader (see the requirements in Kernel File Requirements above).

It contains the following fields:

• uint32_t signature - the Tosaithe Boot Protocol signature, corresponding to the byte sequence of "TSBP" (the value 0x50425354).
  Note: in C, the correct value can be specified as 'T' + ('S' << 8) + ('B' << 16) + ('P' << 24).
• uint32_t version - the version of the protocol that the kernel implements. This should be 1 to match the version of the protocol documented here.
• uint32_t min_reqd_version - the minimum version of the protocol that the bootloader must support in order to be able to load the kernel. This should be 1.
• uint32_t flags - flags specifying kernel requirements. Currently the following are defined:
  • bits 0-1: framebuffer requirement. 00b = not required, 01b = required; other values reserved.
  • other bits are reserved and should be set to 0.
• uintptr_t stack_ptr - the stack pointer that should be established on entry to the kernel.

How the Kernel is Loaded

The kernel is loaded by the bootloader according to its own processes and conventions. The following restrictions apply:

• The kernel will be loaded into physically contiguous memory, but at an arbitrary physical address. Segment alignment will be honoured.
• Any parts of a loadable segment that are not present in the file (i.e. for segments where the size in memory is larger than the size in file) will be zero-filled.
  Note: this allows for a standard ".bss" section.

Entry To Kernel

The bootloader transfers control by jumping to execution at the entry point (specified via the ELF header). The entry function is passed a single parameter, a pointer to the TSBP loader data structure (detailed in a section below), in the rdi register.
Note: this corresponds to the SysV ABI calling convention.

Additionally:

• The processor is in 64-bit long mode (IA-32e mode).
• The CS descriptor selects a 64-bit code segment with CPL=0; specifically, the first non-null segment from the GDT (selector value 0x8). DS/SS will be set to the null segment selector.
  Note: in long mode, the null selector may be used for DS/SS just as any other valid selector.
  Note: it is recommended that the kernel establish its own GDT as soon as reasonably possible.
• The stack pointer is set as per required by the kernel (as specified in the entry header). A single value (an invalid return address) will be pushed onto the stack.
  Note: the kernel should specify a stack pointer that ensures any required alignment of the stack pointer for the entry function.
• The CR0.WP flag is clear. CR0.{PE,PG} will necessarily be set. CR0.{MP,EM,TS,ET,NE,AM} may take any values. CR0.{NW,CD} will be clear. CR4.LA57 will be clear. Other flags in control registers and MSRs are unspecified, except that features that may raise exceptions or otherwise restrict execution should be disabled, as should any features which alter execution or behaviour in a backwards-incompatible way.
• All flags in EFLAGS are clear. This includes IF, the interrupt enable flag; thus interrupts are disabled at the processor level.
• Other processor state is unspecified, but is intended to be backwards-compatible where possible with earlier hardware, and to not require specific knowledge or action on the part of the OS.
• The entry point receives a single argument, a pointer to the tosaithe_loader_data structure (see Loader data structure below). Pointers within the tosaithe_loader_data structure (and any referenced structures) use physical addresses.
• UEFI Boot Services are not available.
  Note: UEFI Runtime services may be available.
• Page tables have been constructed to implement the address mappings discussed in the next section.

If the CPU supports the Page Attribute Table (PAT, the IA32_PAT MSR) then it is set up (via the IA32_PAT MSR) with the following entries:

• 0 - 06; Write-back (WB)
• 1 - 04; Write-throught (WT)
• 2 - 07; Uncached, overridable by MTRRs (UC-)
• 3 - 00; Uncached (UC)
• 4 - 05; Write protected (WP)
• 5 - 01; Write combining (WC)

The GDT and page tables will both be located in memory marked in the memory map as bootloader reclaimable (type 0x1000). See the Tosaithe Memory Map section.

The interrupt controllers remain in the state established by firmware.

Note: according to ACPI, this allows for an OS to use the legacy PIC if so desired (and if it is present), with no action required to disable or mask interrupts in other interrupt controllers. If the OS will use the IOAPIC, it should follow the guidelines in the ACPI specification, which include use of the ACPI \_PIC method and masking all interrupts on the legacy PIC.

Address Mappings

On entry to the kernel, a virtual-to-physical mapping of memory addresses has been established by the bootloader, as follows:

• Physical memory (as described in the memory map provided) is mapped linearly at address 0 (i.e. identity-mapped), and is also mapped (mirrored) at 0xFFFF_8000_0000_0000, i.e. the lowest higher-half address in 4-level paging mode.
• Regardless of the memory map provided, the entire first 4GB will be identity mapped (with mapping mirrored in the top-half).
  Note: this allows for LAPIC/IOAPIC access, for example.
• The kernel is mapped according to its virtual load address, which must be 0xFFFF_FFFF_8000_0000 or greater, putting it in the range [-2gb, 0).
  Note: this allows for efficient code generation using the "kernel" model provided by GCC (-mcmodel=kernel) for example, and prevents conflict with other mappings.
• Any mapped memory is mapped using pages of an unspecified (and possibly heterogeneous) size.

Usable memory is readable and writable by ring-0 (supervisor) code.

The kernel is free to modify the bootloader-provided page tables, but there are no guarantees made as to their exact location or structure. It is recommended that the kernel establish its own page tables as early as possible.

Loader Data Structure

The kernel entry point is provided with a pointer to an instance of a tosaithe_loader_data structure (see Entry To Kernel), which the bootloader fills to provide information to the kernel. The structure contains information about the system (including a memory map), pointers to firmware tables, and parameters such as kernel command line and ramdisk location.

Values are mandatory unless otherwise specified. Optional pointer values will contain null (0) if not present.

The loader data structure contains three groups of fields: basic information, firmware information, and framebuffer information.

Basic Information

The first group of fields in the loader data structure represent information about the bootloader (in the form of a version field), kernel parameters such as command line and ramdisk, and system memory map.

The fields are as follows:

• uint32_t signature - the loader signature, should be "TSLD" (from first i.e. least-significant to last i.e. most-significant byte)
• uint32_t version - the version of the protocol being used by the bootloader.
• uint32_t flags - currently unused.
• const char *cmdline - an optional pointer to the command line string, a nul-terminated string in UTF-8 encoding.
• tsbp_mmap_entry *memmap - pointer to the system-provided memory map; see below.
• uint32_t memmap_entries - number of entries in memory map (via memmap)
• tsbp_kernel_mapping *kern_map - pointer to kernel segment mapping table. Specifies where each ELF segment was loaded and its attributes; see below.
• void *ramdisk - pointer to a ramdisk image that was loaded by the bootloader, or null if none. If present the ramdisk image will be page-aligned.
• uint64_t ramdisk_size - size of the ramdisk image that was loaded by the bootloader, or zero if none.
  Note: this size is not rounded up to a multiple of page size.

Firmware Information

The firmware information fields in the loader data structure provide pointers to firmware tables and entry points. The following fields are present:

• void *acpi_rdsp - pointer to the ACPI RDSP, if it can be determined by the bootloader.
• void *smbios3_entry - pointer to SMBIOS 3+ "entry" table, if it can be determined by the bootloader.
• void *efi_memmap, uint32_t efi_memmap_descr_size, uint32_t efi_memmap_size - pointer to the UEFI-firmware-provided memory map, if available; the size of each entry in bytes (efi_memmap_descr_size); and the total size in bytes (efi_memmap_size). Note: the memory map provided via memmap is intended to make this redundant; this map is provided as a fail-safe.
• void *efi_system_table - pointer to the UEFI firmware system table, if available. Note: Boot services will not be available to the kernel.

Framebuffer

The following fields in the loader data structure provide information about a framebuffer established by the firmware or bootloader. Fields are set to 0 if there is no framebuffer available.

Note: the framebuffer format, described in the next paragraph, is typical for framebuffers in other contexts, and readers may already be familiar with it. The description is provided for completeness.

If provided, the framebuffer allows access to individual pixels on the display. Each pixel is represented by a value, stored in one or more bytes, which can be broken into three components: red, green, and blue, each of which is represented via a contiguous set of bits at a particular position within the pixel value. The pixel at the top-left is at offset 0, followed by pixels in the same row in order left to right; the row is packed so that there are no bytes between pixel values. Each row of pixels is evenly spaced according to a pitch value (there may be extra bytes between pixel rows).

Note: typical arrangements include 24-bits per pixel and 32-bits per pixel, with between 5 and 8 bits per colour channel (R/G/B). A 32bpp arrangement is normally preferred.

The following fields provide framebuffer information:

• void * framebuffer_addr - physical address of the framebuffer.
• uintptr_t framebuffer_size - size in bytes of the framebuffer, rounded up to the nearest 4kb.
• uint16_t framebuffer_width - width in pixels.
• uint16_t framebuffer_height - height in pixels.
• uint16_t framebuffer_pitch - pitch in bytes. This is the number of bytes between pixels in successive rows.
• uint16_t framebuffer_bpp - bits per pixel. This must be a multiple of 8, less than or equal to 32.
• uint8_t red_mask_size - the number of bits used to represent the red component
• uint8_t red_mask_shift - the position of the red component within the pixel value
• uint8_t green_mask_size - the number of bits used to represent the green component
• uint8_t green_mask_shift - the position of the green component within the pixel value
• uint8_t blue_mask_size - the number of bits used to represent the blue component
• uint8_t blue_mask_shift - the position of the blue component within the pixel value

Tosaithe Memory Map

The memory map provided (via the memmap field of the loader data) by the loader data is a map of physical memory, comprising entries of type tsbp_mmap_entry, representing non-overlapping ranges of memory ordered from lowest to highest address. The map indicates available memory, reclaimable memory (which holds information useful to the kernel, but which may be used by the kernel once it has processed the information), and reserved address ranges.

Note that the memory map does not necessarily include address ranges currently used by devices such as a Local APIC or IOAPIC, or MMIO ranges for PCI devices or other devices that the firmware expects the OS to enumerate. If ranges for such devices are present, they will be represented by an entry with type RESERVED.

The tsbp_mmap_entry type comprises the following fields:

• uintptr_t base - the physical base address of the memory region (4kb-page-aligned).
• uintptr_t length - the length of the memory region (multiple of 4kb).
• tsbp_mmap_type type - the type of the region (described below).
• uint32_t flags - flags for the region.

The tbsp_mmap_type field 32 bits in size, and takes one of the following values:

• tbsp_mmap_type::USABLE (0) - the memory is available for use by the OS kernel.
• tbsp_mmap_type::RESERVED (1) - the address range is reserved; any memory in the range should not be accessed by the OS. No device should have its MMIO space mapped to the address by the OS.
• tbsp_mmap_type::ACPI_RECLAIMABLE (2) - the memory contains ACPI tables, and is usable by the OS once it no longer needs the tables.
• tbsp_mmap_type::ACPI_NVS (3) - the memory is used by ACPI firmware and the OS should not use the memory or map MMIO into the address range.
• tbsp_mmap_type::UEFI_RUNTIME_CODE (4), tbsp_mmap_type::UEFI_RUNTIME_DATA (5) - the memory contains UEFI firmware code or data; it can be used by the OS if it will not use UEFI runtime services.
  Note: if the OS will use UEFI runtime services with an alternative address map established via the SetVirtualAddressMap() UEFI runtime service function, it must provide a mapping for this memory region as part of that call.
• tbsp_mmap_type::BAD_MEMORY (6) - the memory in this region is known to be faulty, and should not be used.
• tbsp_mmap_type::PERSISTENT_MEMORY (7) - the memory in this range is persistent (the contents should survive system reboots and downtime). The precise nature of the range is dependent upon the system. In general, the OS should not make use of this memory unless it has particular knowledge of the underlying system or if requested by the user to do so.
• tbsp_mmap_type::BOOTLOADER_RECLAIMABLE (0x1000) - the memory contains information passed from the bootloader to the OS kernel. This includes the loader data structure, memory maps, command line, and any other data or tables provided by the bootloader (as opposed to the firmware), as well as in-memory processor structures such as descriptor tables and page tables. The kernel may use this memory once it no longer needs any of the information or structures within it.
• tbsp_mmap_type::KERNEL (0x1001) - the memory contains the loaded kernel. Note: the kernel is also mapped at a virtual address, as described by the kern_map table via the loader entry data.
• tbsp_mmap_type::RAMDISK (0x1002) - the memory contains a ramdisk image, passed to the kernel via the ramdisk pointer.
• tbsp_mmap_type::FRAMEBUFFER (0x1003) - the memory contains a graphics framebuffer, passed to the kernel via the framebuffer_addr pointer. This is provided for convenience; it may not match exactly the MMIO window actually provided to the underlying graphics device.

The flags field may contain the following values (combined via bitwise-OR):

• One of the following caching types (see Intel processor Software Developer's Manual):
  • tsbp_mmap_flags::CACHE_WB (0) - fully cached ("writeback")
  • tsbp_mmap_flags::CACHE_WT (1) - write-through
  • tsbp_mmap_flags::CACHE_UC (2) - uncacheable
  • tsbp_mmap_flags::CACHE_WP (4) - write-protect
  • tsbp_mmap_flags::CACHE_WC (5) - write-combining
• tsbp_mmap_flags::UEFI_RUNTIME (0x10) - indicates that the memory region requires a mapping for UEFI runtime services (a mapping for the memory region must be included in any memory map passed to the SetVirtualMap UEFI runtime services function).

Note: the tsbp_mmap_flags::CACHE_XX value for a particular caching type (XX) correspond to the index of the PAT entry that has been initialised with the corresponding type.

The tsbp_mmap_flags::CACHE_MASK value can be used as a bitmask to extract the cache type from a flags value.

Kernel Mappings

The kernel mappings table, found via the kern_map (and kern_map_entries) field in the loader data, specifies where each segment of the kernel ELF image is located in physical memory as well as where it was mapped in the address space, and the permission flags associated with the segment. The order of entries matches the order of their corresponding segments. Note: the kernel mappings are provided mainly as a convenience.

The entries are of type tsbp_kernel_mapping, with the following fields:

• uintptr_t base_phys - base physical address (page aligned).
• uintptr_t base_virt - base virtual address (page aligned).
• uintptr_t length - length, rounded up to page boundary.
• unsigned flags - segment flags, as specified in ELF header.

The flags field is a bitmask with the following possible values set:

• tsbp_kernel_mapping_flags::EXEC (0x1) - execute permission
• tsbp_kernel_mapping_flags::WRITE (0x2) - write permission
• tsbp_kernel_mapping_flags::READ (0x4) - read permission

Note: the segments may be mapped by the bootloader with more permissions than what is specified by the flags field. The kernel is expected to create its own page table structure and may (at its option) use the kern_map table to choose appropriate permissions for mapped pages.