2015-10-19 21:12:53 +02:00
|
|
|
/** @file
|
|
|
|
SMM MP service implementation
|
|
|
|
|
UefiCpuPkg/PiSmmCpuDxeSmm: Consume SMM Base Hob for SmBase info
REF: https://bugzilla.tianocore.org/show_bug.cgi?id=4337
Existing SMBASE Relocation is in the PiSmmCpuDxeSmm driver, which
will relocate the SMBASE of each processor by setting the SMBASE
field in the saved state map (at offset 7EF8h) to a new value.
The RSM instruction reloads the internal SMBASE register with the
value in SMBASE field when each time it exits SMM. All subsequent
SMI requests will use the new SMBASE to find the starting address
for the SMI handler (at SMBASE + 8000h).
Due to the default SMBASE for all x86 processors is 0x30000, the
APs' 1st SMI for rebase has to be executed one by one to avoid
the processors over-writing each other's SMM Save State Area (see
existing SmmRelocateBases() function), which means the next AP has
to wait for the previous AP to finish its 1st SMI, then it can call
into its 1st SMI for rebase via Smi Ipi command, thus leading the
existing SMBASE Relocation has to be running in series. Besides, it
needs very complex code to handle the AP exit semaphore
(mRebased[Index]), which will hook return address of SMM Save State
so that semaphore code can be executed immediately after AP exits
SMM for SMBASE relocation (see existing SemaphoreHook() function).
With SMM Base Hob support, PiSmmCpuDxeSmm does not need the RSM
instruction to do the SMBASE Relocation. SMBASE Register for each
processors have already been programmed and all SMBASE address have
recorded in SMM Base Hob. So the same default SMBASE Address
(0x30000) will not be used, thus the processors over-writing each
other's SMM Save State Area will not happen in PiSmmCpuDxeSmm driver.
This way makes the first SMI init can be executed in parallel and
save boot time on multi-core system. Besides, Semaphore Hook code
logic is also not required, which will greatly simplify the SMBASE
Relocation flow.
Mainly changes as below:
* Assume the biggest possibility of tile size is 8k.
* Combine 2 SMIs (gcSmmInitTemplate & gcSmiHandlerTemplate) into one
(gcSmiHandlerTemplate), the new SMI handler needs to run to 2 paths:
one to SmmCpuFeaturesInitializeProcessor(), the other to SMM Core
Entry Point.
* Issue SMI IPI (All Excluding Self SMM IPI + BSP SMM IPI) for first
SMI init before normal SMI sources happen.
* Call SmmCpuFeaturesInitializeProcessor() in parallel.
Cc: Eric Dong <eric.dong@intel.com>
Cc: Ray Ni <ray.ni@intel.com>
Cc: Zeng Star <star.zeng@intel.com>
Cc: Laszlo Ersek <lersek@redhat.com>
Acked-by: Gerd Hoffmann <kraxel@redhat.com>
Cc: Rahul Kumar <rahul1.kumar@intel.com>
Signed-off-by: Jiaxin Wu <jiaxin.wu@intel.com>
Reviewed-by: Ray Ni <ray.ni@intel.com>
2023-02-16 07:16:31 +01:00
|
|
|
Copyright (c) 2009 - 2023, Intel Corporation. All rights reserved.<BR>
|
2017-02-26 18:43:07 +01:00
|
|
|
Copyright (c) 2017, AMD Incorporated. All rights reserved.<BR>
|
|
|
|
|
2019-04-04 01:07:22 +02:00
|
|
|
SPDX-License-Identifier: BSD-2-Clause-Patent
|
2015-10-19 21:12:53 +02:00
|
|
|
|
|
|
|
**/
|
|
|
|
|
|
|
|
#include "PiSmmCpuDxeSmm.h"
|
|
|
|
|
|
|
|
//
|
|
|
|
// Slots for all MTRR( FIXED MTRR + VARIABLE MTRR + MTRR_LIB_IA32_MTRR_DEF_TYPE)
|
|
|
|
//
|
2016-11-18 05:50:27 +01:00
|
|
|
MTRR_SETTINGS gSmiMtrrs;
|
2015-10-19 21:12:53 +02:00
|
|
|
UINT64 gPhyMask;
|
|
|
|
SMM_DISPATCHER_MP_SYNC_DATA *mSmmMpSyncData = NULL;
|
|
|
|
UINTN mSmmMpSyncDataSize;
|
2016-03-22 02:55:28 +01:00
|
|
|
SMM_CPU_SEMAPHORES mSmmCpuSemaphores;
|
|
|
|
UINTN mSemaphoreSize;
|
2016-03-22 03:15:53 +01:00
|
|
|
SPIN_LOCK *mPFLock = NULL;
|
UefiCpuPkg/PiSmmCpuDxeSmm: dynamic PcdCpuSmmApSyncTimeout, PcdCpuSmmSyncMode
Move the declaration of these PCDs from the
[PcdsFixedAtBuild, PcdsPatchableInModule]
section of "UefiCpuPkg/UefiCpuPkg.dec" to the
[PcdsFixedAtBuild, PcdsPatchableInModule, PcdsDynamic, PcdsDynamicEx]
section. Their types, default values, and token values remain unchanged.
Only UefiCpuPkg/PiSmmCpuDxeSmm consumes these PCDs, specifically on the
call stack of its entry point function, and it turns them into static or
dynamically allocated data in SMRAM:
PiCpuSmmEntry() [PiSmmCpuDxeSmm.c]
InitializeSmmTimer() [SyncTimer.c]
PcdCpuSmmApSyncTimeout
-> mTimeoutTicker
InitializeMpServiceData() [MpService.c]
InitializeMpSyncData() [MpService.c]
PcdCpuSmmSyncMode
-> mSmmMpSyncData->EffectiveSyncMode
However, there's another call path to fetching "PcdCpuSmmSyncMode", namely
SmmInitHandler() [PiSmmCpuDxeSmm.c]
InitializeMpSyncData() [MpService.c]
PcdCpuSmmSyncMode
-> mSmmMpSyncData->EffectiveSyncMode
and this path is exercised during S3 resume (as stated by the comment in
SmmInitHandler() too, "Initialize private data during S3 resume").
While we can call the PCD protocol (via PcdLib) for fetching dynamic PCDs
in the entry point function, we cannot do that at S3 resume. Therefore
pre-fetch PcdCpuSmmSyncMode into a new global variable (which lives in
SMRAM) in InitializeMpServiceData(), just before calling
InitializeMpSyncData(). This way InitializeMpSyncData() can retrieve the
stashed PCD value from SMRAM, regardless of the boot mode.
Cc: Jeff Fan <jeff.fan@intel.com>
Cc: Jordan Justen <jordan.l.justen@intel.com>
Cc: Michael Kinney <michael.d.kinney@intel.com>
Cc: Paolo Bonzini <pbonzini@redhat.com>
Ref: https://bugzilla.tianocore.org/show_bug.cgi?id=230
Contributed-under: TianoCore Contribution Agreement 1.0
Signed-off-by: Laszlo Ersek <lersek@redhat.com>
Reviewed-by: Jeff Fan <jeff.fan@intel.com>
2016-11-17 21:13:29 +01:00
|
|
|
SMM_CPU_SYNC_MODE mCpuSmmSyncMode;
|
2017-08-17 01:49:17 +02:00
|
|
|
BOOLEAN mMachineCheckSupported = FALSE;
|
2021-01-27 08:45:25 +01:00
|
|
|
MM_COMPLETION mSmmStartupThisApToken;
|
2021-12-05 23:54:17 +01:00
|
|
|
|
2022-11-30 06:13:56 +01:00
|
|
|
//
|
|
|
|
// Processor specified by mPackageFirstThreadIndex[PackageIndex] will do the package-scope register check.
|
|
|
|
//
|
|
|
|
UINT32 *mPackageFirstThreadIndex = NULL;
|
|
|
|
|
2021-02-26 05:00:34 +01:00
|
|
|
extern UINTN mSmmShadowStackSize;
|
|
|
|
|
2015-10-19 21:12:53 +02:00
|
|
|
/**
|
|
|
|
Performs an atomic compare exchange operation to get semaphore.
|
|
|
|
The compare exchange operation must be performed using
|
|
|
|
MP safe mechanisms.
|
|
|
|
|
|
|
|
@param Sem IN: 32-bit unsigned integer
|
|
|
|
OUT: original integer - 1
|
|
|
|
@return Original integer - 1
|
|
|
|
|
|
|
|
**/
|
|
|
|
UINT32
|
|
|
|
WaitForSemaphore (
|
|
|
|
IN OUT volatile UINT32 *Sem
|
|
|
|
)
|
|
|
|
{
|
|
|
|
UINT32 Value;
|
|
|
|
|
UefiCpuPkg/PiSmmCpuDxeSmm: pause in WaitForSemaphore() before re-fetch
Most busy waits (spinlocks) in "UefiCpuPkg/PiSmmCpuDxeSmm/MpService.c"
already call CpuPause() in their loop bodies; see SmmWaitForApArrival(),
APHandler(), and SmiRendezvous(). However, the "main wait" within
APHandler():
> //
> // Wait for something to happen
> //
> WaitForSemaphore (mSmmMpSyncData->CpuData[CpuIndex].Run);
doesn't do so, as WaitForSemaphore() keeps trying to acquire the semaphore
without pausing.
The performance impact is especially notable in QEMU/KVM + OVMF
virtualization with CPU overcommit (that is, when the guest has
significantly more VCPUs than the host has physical CPUs). The guest BSP
is working heavily in:
BSPHandler() [MpService.c]
PerformRemainingTasks() [PiSmmCpuDxeSmm.c]
SetUefiMemMapAttributes() [SmmCpuMemoryManagement.c]
while the many guest APs are spinning in the "Wait for something to
happen" semaphore acquisition, in APHandler(). The guest APs are
generating useless memory traffic and saturating host CPUs, hindering the
guest BSP's progress in SetUefiMemMapAttributes().
Rework the loop in WaitForSemaphore(): call CpuPause() in every iteration
after the first check fails. Due to Pause Loop Exiting (known as Pause
Filter on AMD), the host scheduler can favor the guest BSP over the guest
APs.
Running a 16 GB RAM + 512 VCPU guest on a 448 PCPU host, this patch
reduces OVMF boot time (counted until reaching grub) from 20-30 minutes to
less than 4 minutes.
The patch should benefit physical machines as well -- according to the
Intel SDM, PAUSE "Improves the performance of spin-wait loops". Adding
PAUSE to the generic WaitForSemaphore() function is considered a general
improvement.
Cc: Eric Dong <eric.dong@intel.com>
Cc: Philippe Mathieu-Daudé <philmd@redhat.com>
Cc: Rahul Kumar <rahul1.kumar@intel.com>
Cc: Ray Ni <ray.ni@intel.com>
Ref: https://bugzilla.redhat.com/show_bug.cgi?id=1861718
Signed-off-by: Laszlo Ersek <lersek@redhat.com>
Message-Id: <20200729185217.10084-1-lersek@redhat.com>
Reviewed-by: Eric Dong <eric.dong@intel.com>
2020-07-29 20:52:17 +02:00
|
|
|
for ( ; ;) {
|
2015-10-19 21:12:53 +02:00
|
|
|
Value = *Sem;
|
UefiCpuPkg/PiSmmCpuDxeSmm: pause in WaitForSemaphore() before re-fetch
Most busy waits (spinlocks) in "UefiCpuPkg/PiSmmCpuDxeSmm/MpService.c"
already call CpuPause() in their loop bodies; see SmmWaitForApArrival(),
APHandler(), and SmiRendezvous(). However, the "main wait" within
APHandler():
> //
> // Wait for something to happen
> //
> WaitForSemaphore (mSmmMpSyncData->CpuData[CpuIndex].Run);
doesn't do so, as WaitForSemaphore() keeps trying to acquire the semaphore
without pausing.
The performance impact is especially notable in QEMU/KVM + OVMF
virtualization with CPU overcommit (that is, when the guest has
significantly more VCPUs than the host has physical CPUs). The guest BSP
is working heavily in:
BSPHandler() [MpService.c]
PerformRemainingTasks() [PiSmmCpuDxeSmm.c]
SetUefiMemMapAttributes() [SmmCpuMemoryManagement.c]
while the many guest APs are spinning in the "Wait for something to
happen" semaphore acquisition, in APHandler(). The guest APs are
generating useless memory traffic and saturating host CPUs, hindering the
guest BSP's progress in SetUefiMemMapAttributes().
Rework the loop in WaitForSemaphore(): call CpuPause() in every iteration
after the first check fails. Due to Pause Loop Exiting (known as Pause
Filter on AMD), the host scheduler can favor the guest BSP over the guest
APs.
Running a 16 GB RAM + 512 VCPU guest on a 448 PCPU host, this patch
reduces OVMF boot time (counted until reaching grub) from 20-30 minutes to
less than 4 minutes.
The patch should benefit physical machines as well -- according to the
Intel SDM, PAUSE "Improves the performance of spin-wait loops". Adding
PAUSE to the generic WaitForSemaphore() function is considered a general
improvement.
Cc: Eric Dong <eric.dong@intel.com>
Cc: Philippe Mathieu-Daudé <philmd@redhat.com>
Cc: Rahul Kumar <rahul1.kumar@intel.com>
Cc: Ray Ni <ray.ni@intel.com>
Ref: https://bugzilla.redhat.com/show_bug.cgi?id=1861718
Signed-off-by: Laszlo Ersek <lersek@redhat.com>
Message-Id: <20200729185217.10084-1-lersek@redhat.com>
Reviewed-by: Eric Dong <eric.dong@intel.com>
2020-07-29 20:52:17 +02:00
|
|
|
if ((Value != 0) &&
|
|
|
|
(InterlockedCompareExchange32 (
|
|
|
|
(UINT32 *)Sem,
|
|
|
|
Value,
|
|
|
|
Value - 1
|
|
|
|
) == Value))
|
|
|
|
{
|
|
|
|
break;
|
|
|
|
}
|
2021-12-05 23:54:17 +01:00
|
|
|
|
UefiCpuPkg/PiSmmCpuDxeSmm: pause in WaitForSemaphore() before re-fetch
Most busy waits (spinlocks) in "UefiCpuPkg/PiSmmCpuDxeSmm/MpService.c"
already call CpuPause() in their loop bodies; see SmmWaitForApArrival(),
APHandler(), and SmiRendezvous(). However, the "main wait" within
APHandler():
> //
> // Wait for something to happen
> //
> WaitForSemaphore (mSmmMpSyncData->CpuData[CpuIndex].Run);
doesn't do so, as WaitForSemaphore() keeps trying to acquire the semaphore
without pausing.
The performance impact is especially notable in QEMU/KVM + OVMF
virtualization with CPU overcommit (that is, when the guest has
significantly more VCPUs than the host has physical CPUs). The guest BSP
is working heavily in:
BSPHandler() [MpService.c]
PerformRemainingTasks() [PiSmmCpuDxeSmm.c]
SetUefiMemMapAttributes() [SmmCpuMemoryManagement.c]
while the many guest APs are spinning in the "Wait for something to
happen" semaphore acquisition, in APHandler(). The guest APs are
generating useless memory traffic and saturating host CPUs, hindering the
guest BSP's progress in SetUefiMemMapAttributes().
Rework the loop in WaitForSemaphore(): call CpuPause() in every iteration
after the first check fails. Due to Pause Loop Exiting (known as Pause
Filter on AMD), the host scheduler can favor the guest BSP over the guest
APs.
Running a 16 GB RAM + 512 VCPU guest on a 448 PCPU host, this patch
reduces OVMF boot time (counted until reaching grub) from 20-30 minutes to
less than 4 minutes.
The patch should benefit physical machines as well -- according to the
Intel SDM, PAUSE "Improves the performance of spin-wait loops". Adding
PAUSE to the generic WaitForSemaphore() function is considered a general
improvement.
Cc: Eric Dong <eric.dong@intel.com>
Cc: Philippe Mathieu-Daudé <philmd@redhat.com>
Cc: Rahul Kumar <rahul1.kumar@intel.com>
Cc: Ray Ni <ray.ni@intel.com>
Ref: https://bugzilla.redhat.com/show_bug.cgi?id=1861718
Signed-off-by: Laszlo Ersek <lersek@redhat.com>
Message-Id: <20200729185217.10084-1-lersek@redhat.com>
Reviewed-by: Eric Dong <eric.dong@intel.com>
2020-07-29 20:52:17 +02:00
|
|
|
CpuPause ();
|
|
|
|
}
|
2021-12-05 23:54:17 +01:00
|
|
|
|
2015-10-19 21:12:53 +02:00
|
|
|
return Value - 1;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
Performs an atomic compare exchange operation to release semaphore.
|
|
|
|
The compare exchange operation must be performed using
|
|
|
|
MP safe mechanisms.
|
|
|
|
|
|
|
|
@param Sem IN: 32-bit unsigned integer
|
|
|
|
OUT: original integer + 1
|
|
|
|
@return Original integer + 1
|
|
|
|
|
|
|
|
**/
|
|
|
|
UINT32
|
|
|
|
ReleaseSemaphore (
|
|
|
|
IN OUT volatile UINT32 *Sem
|
|
|
|
)
|
|
|
|
{
|
|
|
|
UINT32 Value;
|
|
|
|
|
|
|
|
do {
|
|
|
|
Value = *Sem;
|
|
|
|
} while (Value + 1 != 0 &&
|
|
|
|
InterlockedCompareExchange32 (
|
|
|
|
(UINT32 *)Sem,
|
|
|
|
Value,
|
|
|
|
Value + 1
|
|
|
|
) != Value);
|
2021-12-05 23:54:17 +01:00
|
|
|
|
2015-10-19 21:12:53 +02:00
|
|
|
return Value + 1;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
Performs an atomic compare exchange operation to lock semaphore.
|
|
|
|
The compare exchange operation must be performed using
|
|
|
|
MP safe mechanisms.
|
|
|
|
|
|
|
|
@param Sem IN: 32-bit unsigned integer
|
|
|
|
OUT: -1
|
|
|
|
@return Original integer
|
|
|
|
|
|
|
|
**/
|
|
|
|
UINT32
|
|
|
|
LockdownSemaphore (
|
|
|
|
IN OUT volatile UINT32 *Sem
|
|
|
|
)
|
|
|
|
{
|
|
|
|
UINT32 Value;
|
|
|
|
|
|
|
|
do {
|
|
|
|
Value = *Sem;
|
|
|
|
} while (InterlockedCompareExchange32 (
|
|
|
|
(UINT32 *)Sem,
|
|
|
|
Value,
|
|
|
|
(UINT32)-1
|
|
|
|
) != Value);
|
2021-12-05 23:54:17 +01:00
|
|
|
|
2015-10-19 21:12:53 +02:00
|
|
|
return Value;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
Wait all APs to performs an atomic compare exchange operation to release semaphore.
|
|
|
|
|
|
|
|
@param NumberOfAPs AP number
|
|
|
|
|
|
|
|
**/
|
|
|
|
VOID
|
|
|
|
WaitForAllAPs (
|
|
|
|
IN UINTN NumberOfAPs
|
|
|
|
)
|
|
|
|
{
|
|
|
|
UINTN BspIndex;
|
|
|
|
|
|
|
|
BspIndex = mSmmMpSyncData->BspIndex;
|
|
|
|
while (NumberOfAPs-- > 0) {
|
2016-03-22 03:21:27 +01:00
|
|
|
WaitForSemaphore (mSmmMpSyncData->CpuData[BspIndex].Run);
|
2015-10-19 21:12:53 +02:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
Performs an atomic compare exchange operation to release semaphore
|
|
|
|
for each AP.
|
|
|
|
|
|
|
|
**/
|
|
|
|
VOID
|
|
|
|
ReleaseAllAPs (
|
|
|
|
VOID
|
|
|
|
)
|
|
|
|
{
|
|
|
|
UINTN Index;
|
|
|
|
|
2020-01-07 01:48:17 +01:00
|
|
|
for (Index = 0; Index < mMaxNumberOfCpus; Index++) {
|
2019-07-10 09:49:11 +02:00
|
|
|
if (IsPresentAp (Index)) {
|
2016-03-22 03:21:27 +01:00
|
|
|
ReleaseSemaphore (mSmmMpSyncData->CpuData[Index].Run);
|
2015-10-19 21:12:53 +02:00
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
2022-11-30 06:13:56 +01:00
|
|
|
Check whether the index of CPU perform the package level register
|
|
|
|
programming during System Management Mode initialization.
|
2015-10-19 21:12:53 +02:00
|
|
|
|
2022-11-30 06:13:56 +01:00
|
|
|
The index of Processor specified by mPackageFirstThreadIndex[PackageIndex]
|
|
|
|
will do the package-scope register programming.
|
2015-10-19 21:12:53 +02:00
|
|
|
|
2022-11-30 06:13:56 +01:00
|
|
|
@param[in] CpuIndex Processor Index.
|
|
|
|
|
|
|
|
@retval TRUE Perform the package level register programming.
|
|
|
|
@retval FALSE Don't perform the package level register programming.
|
2015-10-19 21:12:53 +02:00
|
|
|
|
|
|
|
**/
|
|
|
|
BOOLEAN
|
2022-11-30 06:13:56 +01:00
|
|
|
IsPackageFirstThread (
|
|
|
|
IN UINTN CpuIndex
|
2015-10-19 21:12:53 +02:00
|
|
|
)
|
|
|
|
{
|
2022-11-30 06:13:56 +01:00
|
|
|
UINT32 PackageIndex;
|
2015-10-19 21:12:53 +02:00
|
|
|
|
2022-11-30 06:13:56 +01:00
|
|
|
PackageIndex = gSmmCpuPrivate->ProcessorInfo[CpuIndex].Location.Package;
|
2015-10-19 21:12:53 +02:00
|
|
|
|
2022-11-30 06:13:56 +01:00
|
|
|
ASSERT (mPackageFirstThreadIndex != NULL);
|
|
|
|
|
|
|
|
//
|
|
|
|
// Set the value of mPackageFirstThreadIndex[PackageIndex].
|
|
|
|
// The package-scope register are checked by the first processor (CpuIndex) in Package.
|
|
|
|
//
|
|
|
|
// If mPackageFirstThreadIndex[PackageIndex] equals to (UINT32)-1, then update
|
|
|
|
// to current CpuIndex. If it doesn't equal to (UINT32)-1, don't change it.
|
|
|
|
//
|
|
|
|
if (mPackageFirstThreadIndex[PackageIndex] == (UINT32)-1) {
|
|
|
|
mPackageFirstThreadIndex[PackageIndex] = (UINT32)CpuIndex;
|
2015-10-19 21:12:53 +02:00
|
|
|
}
|
|
|
|
|
2022-11-30 06:13:56 +01:00
|
|
|
return (BOOLEAN)(mPackageFirstThreadIndex[PackageIndex] == CpuIndex);
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
Returns the Number of SMM Delayed & Blocked & Disabled Thread Count.
|
|
|
|
|
|
|
|
@param[in,out] DelayedCount The Number of SMM Delayed Thread Count.
|
|
|
|
@param[in,out] BlockedCount The Number of SMM Blocked Thread Count.
|
|
|
|
@param[in,out] DisabledCount The Number of SMM Disabled Thread Count.
|
|
|
|
|
|
|
|
**/
|
|
|
|
VOID
|
|
|
|
GetSmmDelayedBlockedDisabledCount (
|
|
|
|
IN OUT UINT32 *DelayedCount,
|
|
|
|
IN OUT UINT32 *BlockedCount,
|
|
|
|
IN OUT UINT32 *DisabledCount
|
|
|
|
)
|
|
|
|
{
|
|
|
|
UINTN Index;
|
2021-12-05 23:54:17 +01:00
|
|
|
|
2022-11-30 06:13:56 +01:00
|
|
|
for (Index = 0; Index < mNumberOfCpus; Index++) {
|
|
|
|
if (IsPackageFirstThread (Index)) {
|
|
|
|
if (DelayedCount != NULL) {
|
|
|
|
*DelayedCount += (UINT32)SmmCpuFeaturesGetSmmRegister (Index, SmmRegSmmDelayed);
|
2015-10-19 21:12:53 +02:00
|
|
|
}
|
2021-12-05 23:54:17 +01:00
|
|
|
|
2022-11-30 06:13:56 +01:00
|
|
|
if (BlockedCount != NULL) {
|
|
|
|
*BlockedCount += (UINT32)SmmCpuFeaturesGetSmmRegister (Index, SmmRegSmmBlocked);
|
2015-10-19 21:12:53 +02:00
|
|
|
}
|
2021-12-05 23:54:17 +01:00
|
|
|
|
2022-11-30 06:13:56 +01:00
|
|
|
if (DisabledCount != NULL) {
|
|
|
|
*DisabledCount += (UINT32)SmmCpuFeaturesGetSmmRegister (Index, SmmRegSmmEnable);
|
|
|
|
}
|
2015-10-19 21:12:53 +02:00
|
|
|
}
|
|
|
|
}
|
2022-11-30 06:13:56 +01:00
|
|
|
}
|
2015-10-19 21:12:53 +02:00
|
|
|
|
2022-11-30 06:13:56 +01:00
|
|
|
/**
|
|
|
|
Checks if all CPUs (except Blocked & Disabled) have checked in for this SMI run
|
|
|
|
|
|
|
|
@retval TRUE if all CPUs the have checked in.
|
|
|
|
@retval FALSE if at least one Normal AP hasn't checked in.
|
|
|
|
|
|
|
|
**/
|
|
|
|
BOOLEAN
|
|
|
|
AllCpusInSmmExceptBlockedDisabled (
|
|
|
|
VOID
|
|
|
|
)
|
|
|
|
{
|
|
|
|
UINT32 BlockedCount;
|
|
|
|
UINT32 DisabledCount;
|
|
|
|
|
|
|
|
BlockedCount = 0;
|
|
|
|
DisabledCount = 0;
|
|
|
|
|
|
|
|
//
|
|
|
|
// Check to make sure mSmmMpSyncData->Counter is valid and not locked.
|
|
|
|
//
|
|
|
|
ASSERT (*mSmmMpSyncData->Counter <= mNumberOfCpus);
|
|
|
|
|
|
|
|
//
|
|
|
|
// Check whether all CPUs in SMM.
|
|
|
|
//
|
|
|
|
if (*mSmmMpSyncData->Counter == mNumberOfCpus) {
|
|
|
|
return TRUE;
|
|
|
|
}
|
|
|
|
|
|
|
|
//
|
|
|
|
// Check for the Blocked & Disabled Exceptions Case.
|
|
|
|
//
|
|
|
|
GetSmmDelayedBlockedDisabledCount (NULL, &BlockedCount, &DisabledCount);
|
|
|
|
|
|
|
|
//
|
|
|
|
// *mSmmMpSyncData->Counter might be updated by all APs concurrently. The value
|
|
|
|
// can be dynamic changed. If some Aps enter the SMI after the BlockedCount &
|
|
|
|
// DisabledCount check, then the *mSmmMpSyncData->Counter will be increased, thus
|
|
|
|
// leading the *mSmmMpSyncData->Counter + BlockedCount + DisabledCount > mNumberOfCpus.
|
|
|
|
// since the BlockedCount & DisabledCount are local variable, it's ok here only for
|
|
|
|
// the checking of all CPUs In Smm.
|
|
|
|
//
|
|
|
|
if (*mSmmMpSyncData->Counter + BlockedCount + DisabledCount >= mNumberOfCpus) {
|
|
|
|
return TRUE;
|
|
|
|
}
|
|
|
|
|
|
|
|
return FALSE;
|
2015-10-19 21:12:53 +02:00
|
|
|
}
|
|
|
|
|
2017-07-20 14:07:46 +02:00
|
|
|
/**
|
|
|
|
Has OS enabled Lmce in the MSR_IA32_MCG_EXT_CTL
|
2018-06-27 15:14:20 +02:00
|
|
|
|
2017-07-20 14:07:46 +02:00
|
|
|
@retval TRUE Os enable lmce.
|
|
|
|
@retval FALSE Os not enable lmce.
|
|
|
|
|
|
|
|
**/
|
|
|
|
BOOLEAN
|
|
|
|
IsLmceOsEnabled (
|
|
|
|
VOID
|
|
|
|
)
|
|
|
|
{
|
|
|
|
MSR_IA32_MCG_CAP_REGISTER McgCap;
|
|
|
|
MSR_IA32_FEATURE_CONTROL_REGISTER FeatureCtrl;
|
|
|
|
MSR_IA32_MCG_EXT_CTL_REGISTER McgExtCtrl;
|
|
|
|
|
|
|
|
McgCap.Uint64 = AsmReadMsr64 (MSR_IA32_MCG_CAP);
|
|
|
|
if (McgCap.Bits.MCG_LMCE_P == 0) {
|
|
|
|
return FALSE;
|
|
|
|
}
|
|
|
|
|
|
|
|
FeatureCtrl.Uint64 = AsmReadMsr64 (MSR_IA32_FEATURE_CONTROL);
|
|
|
|
if (FeatureCtrl.Bits.LmceOn == 0) {
|
|
|
|
return FALSE;
|
|
|
|
}
|
|
|
|
|
|
|
|
McgExtCtrl.Uint64 = AsmReadMsr64 (MSR_IA32_MCG_EXT_CTL);
|
|
|
|
return (BOOLEAN)(McgExtCtrl.Bits.LMCE_EN == 1);
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
2018-06-27 15:14:20 +02:00
|
|
|
Return if Local machine check exception signaled.
|
2017-07-20 14:07:46 +02:00
|
|
|
|
2018-06-27 15:14:20 +02:00
|
|
|
Indicates (when set) that a local machine check exception was generated. This indicates that the current machine-check event was
|
2017-07-20 14:07:46 +02:00
|
|
|
delivered to only the logical processor.
|
|
|
|
|
|
|
|
@retval TRUE LMCE was signaled.
|
|
|
|
@retval FALSE LMCE was not signaled.
|
|
|
|
|
|
|
|
**/
|
|
|
|
BOOLEAN
|
|
|
|
IsLmceSignaled (
|
|
|
|
VOID
|
|
|
|
)
|
|
|
|
{
|
|
|
|
MSR_IA32_MCG_STATUS_REGISTER McgStatus;
|
|
|
|
|
|
|
|
McgStatus.Uint64 = AsmReadMsr64 (MSR_IA32_MCG_STATUS);
|
|
|
|
return (BOOLEAN)(McgStatus.Bits.LMCE_S == 1);
|
|
|
|
}
|
2015-10-19 21:12:53 +02:00
|
|
|
|
|
|
|
/**
|
|
|
|
Given timeout constraint, wait for all APs to arrive, and insure when this function returns, no AP will execute normal mode code before
|
|
|
|
entering SMM, except SMI disabled APs.
|
|
|
|
|
|
|
|
**/
|
|
|
|
VOID
|
|
|
|
SmmWaitForApArrival (
|
|
|
|
VOID
|
|
|
|
)
|
|
|
|
{
|
|
|
|
UINT64 Timer;
|
|
|
|
UINTN Index;
|
2017-07-20 14:07:46 +02:00
|
|
|
BOOLEAN LmceEn;
|
|
|
|
BOOLEAN LmceSignal;
|
2022-11-30 06:13:56 +01:00
|
|
|
UINT32 DelayedCount;
|
|
|
|
UINT32 BlockedCount;
|
|
|
|
|
|
|
|
DelayedCount = 0;
|
|
|
|
BlockedCount = 0;
|
2015-10-19 21:12:53 +02:00
|
|
|
|
2016-03-22 03:15:53 +01:00
|
|
|
ASSERT (*mSmmMpSyncData->Counter <= mNumberOfCpus);
|
2015-10-19 21:12:53 +02:00
|
|
|
|
2017-08-17 01:49:17 +02:00
|
|
|
LmceEn = FALSE;
|
|
|
|
LmceSignal = FALSE;
|
|
|
|
if (mMachineCheckSupported) {
|
|
|
|
LmceEn = IsLmceOsEnabled ();
|
|
|
|
LmceSignal = IsLmceSignaled ();
|
|
|
|
}
|
2017-07-20 14:07:46 +02:00
|
|
|
|
2015-10-19 21:12:53 +02:00
|
|
|
//
|
|
|
|
// Platform implementor should choose a timeout value appropriately:
|
|
|
|
// - The timeout value should balance the SMM time constrains and the likelihood that delayed CPUs are excluded in the SMM run. Note
|
|
|
|
// the SMI Handlers must ALWAYS take into account the cases that not all APs are available in an SMI run.
|
|
|
|
// - The timeout value must, in the case of 2nd timeout, be at least long enough to give time for all APs to receive the SMI IPI
|
|
|
|
// and either enter SMM or buffer the SMI, to insure there is no CPU running normal mode code when SMI handling starts. This will
|
|
|
|
// be TRUE even if a blocked CPU is brought out of the blocked state by a normal mode CPU (before the normal mode CPU received the
|
|
|
|
// SMI IPI), because with a buffered SMI, and CPU will enter SMM immediately after it is brought out of the blocked state.
|
|
|
|
// - The timeout value must be longer than longest possible IO operation in the system
|
|
|
|
//
|
|
|
|
|
|
|
|
//
|
|
|
|
// Sync with APs 1st timeout
|
|
|
|
//
|
|
|
|
for (Timer = StartSyncTimer ();
|
2022-03-01 12:22:19 +01:00
|
|
|
!IsSyncTimerTimeout (Timer) && !(LmceEn && LmceSignal);
|
2015-10-19 21:12:53 +02:00
|
|
|
)
|
|
|
|
{
|
2022-11-30 06:13:56 +01:00
|
|
|
mSmmMpSyncData->AllApArrivedWithException = AllCpusInSmmExceptBlockedDisabled ();
|
2022-03-01 12:22:19 +01:00
|
|
|
if (mSmmMpSyncData->AllApArrivedWithException) {
|
|
|
|
break;
|
|
|
|
}
|
|
|
|
|
2015-10-19 21:12:53 +02:00
|
|
|
CpuPause ();
|
|
|
|
}
|
|
|
|
|
|
|
|
//
|
|
|
|
// Not all APs have arrived, so we need 2nd round of timeout. IPIs should be sent to ALL none present APs,
|
|
|
|
// because:
|
|
|
|
// a) Delayed AP may have just come out of the delayed state. Blocked AP may have just been brought out of blocked state by some AP running
|
|
|
|
// normal mode code. These APs need to be guaranteed to have an SMI pending to insure that once they are out of delayed / blocked state, they
|
|
|
|
// enter SMI immediately without executing instructions in normal mode. Note traditional flow requires there are no APs doing normal mode
|
|
|
|
// work while SMI handling is on-going.
|
|
|
|
// b) As a consequence of SMI IPI sending, (spurious) SMI may occur after this SMM run.
|
|
|
|
// c) ** NOTE **: Use SMI disabling feature VERY CAREFULLY (if at all) for traditional flow, because a processor in SMI-disabled state
|
|
|
|
// will execute normal mode code, which breaks the traditional SMI handlers' assumption that no APs are doing normal
|
|
|
|
// mode work while SMI handling is on-going.
|
|
|
|
// d) We don't add code to check SMI disabling status to skip sending IPI to SMI disabled APs, because:
|
|
|
|
// - In traditional flow, SMI disabling is discouraged.
|
|
|
|
// - In relaxed flow, CheckApArrival() will check SMI disabling status before calling this function.
|
|
|
|
// In both cases, adding SMI-disabling checking code increases overhead.
|
|
|
|
//
|
2016-03-22 03:15:53 +01:00
|
|
|
if (*mSmmMpSyncData->Counter < mNumberOfCpus) {
|
2015-10-19 21:12:53 +02:00
|
|
|
//
|
|
|
|
// Send SMI IPIs to bring outside processors in
|
|
|
|
//
|
2020-01-07 01:48:17 +01:00
|
|
|
for (Index = 0; Index < mMaxNumberOfCpus; Index++) {
|
2016-03-22 03:21:27 +01:00
|
|
|
if (!(*(mSmmMpSyncData->CpuData[Index].Present)) && (gSmmCpuPrivate->ProcessorInfo[Index].ProcessorId != INVALID_APIC_ID)) {
|
2015-10-19 21:12:53 +02:00
|
|
|
SendSmiIpi ((UINT32)gSmmCpuPrivate->ProcessorInfo[Index].ProcessorId);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
//
|
|
|
|
// Sync with APs 2nd timeout.
|
|
|
|
//
|
|
|
|
for (Timer = StartSyncTimer ();
|
2022-03-01 12:22:19 +01:00
|
|
|
!IsSyncTimerTimeout (Timer);
|
2015-10-19 21:12:53 +02:00
|
|
|
)
|
|
|
|
{
|
2022-11-30 06:13:56 +01:00
|
|
|
mSmmMpSyncData->AllApArrivedWithException = AllCpusInSmmExceptBlockedDisabled ();
|
2022-03-01 12:22:19 +01:00
|
|
|
if (mSmmMpSyncData->AllApArrivedWithException) {
|
|
|
|
break;
|
|
|
|
}
|
|
|
|
|
2015-10-19 21:12:53 +02:00
|
|
|
CpuPause ();
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2022-11-30 06:13:56 +01:00
|
|
|
if (!mSmmMpSyncData->AllApArrivedWithException) {
|
|
|
|
//
|
|
|
|
// Check for the Blocked & Delayed Case.
|
|
|
|
//
|
|
|
|
GetSmmDelayedBlockedDisabledCount (&DelayedCount, &BlockedCount, NULL);
|
|
|
|
DEBUG ((DEBUG_INFO, "SmmWaitForApArrival: Delayed AP Count = %d, Blocked AP Count = %d\n", DelayedCount, BlockedCount));
|
|
|
|
}
|
|
|
|
|
2015-10-19 21:12:53 +02:00
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
Replace OS MTRR's with SMI MTRR's.
|
|
|
|
|
|
|
|
@param CpuIndex Processor Index
|
|
|
|
|
|
|
|
**/
|
|
|
|
VOID
|
|
|
|
ReplaceOSMtrrs (
|
|
|
|
IN UINTN CpuIndex
|
|
|
|
)
|
|
|
|
{
|
|
|
|
SmmCpuFeaturesDisableSmrr ();
|
|
|
|
|
|
|
|
//
|
|
|
|
// Replace all MTRRs registers
|
|
|
|
//
|
2016-11-18 05:50:27 +01:00
|
|
|
MtrrSetAllMtrrs (&gSmiMtrrs);
|
2015-10-19 21:12:53 +02:00
|
|
|
}
|
|
|
|
|
2019-07-10 09:49:11 +02:00
|
|
|
/**
|
|
|
|
Wheck whether task has been finished by all APs.
|
|
|
|
|
|
|
|
@param BlockMode Whether did it in block mode or non-block mode.
|
|
|
|
|
|
|
|
@retval TRUE Task has been finished by all APs.
|
|
|
|
@retval FALSE Task not has been finished by all APs.
|
|
|
|
|
|
|
|
**/
|
|
|
|
BOOLEAN
|
|
|
|
WaitForAllAPsNotBusy (
|
|
|
|
IN BOOLEAN BlockMode
|
|
|
|
)
|
|
|
|
{
|
|
|
|
UINTN Index;
|
|
|
|
|
2020-01-07 01:48:17 +01:00
|
|
|
for (Index = 0; Index < mMaxNumberOfCpus; Index++) {
|
2019-07-10 09:49:11 +02:00
|
|
|
//
|
|
|
|
// Ignore BSP and APs which not call in SMM.
|
|
|
|
//
|
|
|
|
if (!IsPresentAp (Index)) {
|
|
|
|
continue;
|
|
|
|
}
|
|
|
|
|
|
|
|
if (BlockMode) {
|
|
|
|
AcquireSpinLock (mSmmMpSyncData->CpuData[Index].Busy);
|
|
|
|
ReleaseSpinLock (mSmmMpSyncData->CpuData[Index].Busy);
|
|
|
|
} else {
|
|
|
|
if (AcquireSpinLockOrFail (mSmmMpSyncData->CpuData[Index].Busy)) {
|
|
|
|
ReleaseSpinLock (mSmmMpSyncData->CpuData[Index].Busy);
|
|
|
|
} else {
|
|
|
|
return FALSE;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
return TRUE;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
Check whether it is an present AP.
|
|
|
|
|
|
|
|
@param CpuIndex The AP index which calls this function.
|
|
|
|
|
|
|
|
@retval TRUE It's a present AP.
|
|
|
|
@retval TRUE This is not an AP or it is not present.
|
|
|
|
|
|
|
|
**/
|
|
|
|
BOOLEAN
|
|
|
|
IsPresentAp (
|
|
|
|
IN UINTN CpuIndex
|
|
|
|
)
|
|
|
|
{
|
|
|
|
return ((CpuIndex != gSmmCpuPrivate->SmmCoreEntryContext.CurrentlyExecutingCpu) &&
|
|
|
|
*(mSmmMpSyncData->CpuData[CpuIndex].Present));
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
Clean up the status flags used during executing the procedure.
|
|
|
|
|
|
|
|
@param CpuIndex The AP index which calls this function.
|
|
|
|
|
|
|
|
**/
|
|
|
|
VOID
|
|
|
|
ReleaseToken (
|
|
|
|
IN UINTN CpuIndex
|
|
|
|
)
|
|
|
|
{
|
2019-12-23 07:15:04 +01:00
|
|
|
PROCEDURE_TOKEN *Token;
|
2019-07-10 09:49:11 +02:00
|
|
|
|
2019-12-23 07:15:04 +01:00
|
|
|
Token = mSmmMpSyncData->CpuData[CpuIndex].Token;
|
|
|
|
|
|
|
|
if (InterlockedDecrement (&Token->RunningApCount) == 0) {
|
|
|
|
ReleaseSpinLock (Token->SpinLock);
|
2019-07-10 09:49:11 +02:00
|
|
|
}
|
2019-12-23 07:15:04 +01:00
|
|
|
|
|
|
|
mSmmMpSyncData->CpuData[CpuIndex].Token = NULL;
|
2019-07-10 09:49:11 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
Free the tokens in the maintained list.
|
|
|
|
|
|
|
|
**/
|
|
|
|
VOID
|
2019-12-27 08:30:27 +01:00
|
|
|
ResetTokens (
|
2019-07-10 09:49:11 +02:00
|
|
|
VOID
|
|
|
|
)
|
|
|
|
{
|
2020-04-10 04:51:26 +02:00
|
|
|
//
|
|
|
|
// Reset the FirstFreeToken to the beginning of token list upon exiting SMI.
|
|
|
|
//
|
|
|
|
gSmmCpuPrivate->FirstFreeToken = GetFirstNode (&gSmmCpuPrivate->TokenList);
|
2019-07-10 09:49:11 +02:00
|
|
|
}
|
|
|
|
|
2015-10-19 21:12:53 +02:00
|
|
|
/**
|
|
|
|
SMI handler for BSP.
|
|
|
|
|
|
|
|
@param CpuIndex BSP processor Index
|
|
|
|
@param SyncMode SMM MP sync mode
|
|
|
|
|
|
|
|
**/
|
|
|
|
VOID
|
|
|
|
BSPHandler (
|
|
|
|
IN UINTN CpuIndex,
|
|
|
|
IN SMM_CPU_SYNC_MODE SyncMode
|
|
|
|
)
|
|
|
|
{
|
|
|
|
UINTN Index;
|
|
|
|
MTRR_SETTINGS Mtrrs;
|
|
|
|
UINTN ApCount;
|
|
|
|
BOOLEAN ClearTopLevelSmiResult;
|
|
|
|
UINTN PresentCount;
|
|
|
|
|
|
|
|
ASSERT (CpuIndex == mSmmMpSyncData->BspIndex);
|
|
|
|
ApCount = 0;
|
|
|
|
|
|
|
|
//
|
|
|
|
// Flag BSP's presence
|
|
|
|
//
|
2016-03-22 03:15:53 +01:00
|
|
|
*mSmmMpSyncData->InsideSmm = TRUE;
|
2015-10-19 21:12:53 +02:00
|
|
|
|
|
|
|
//
|
|
|
|
// Initialize Debug Agent to start source level debug in BSP handler
|
|
|
|
//
|
|
|
|
InitializeDebugAgent (DEBUG_AGENT_INIT_ENTER_SMI, NULL, NULL);
|
|
|
|
|
|
|
|
//
|
|
|
|
// Mark this processor's presence
|
|
|
|
//
|
2016-03-22 03:21:27 +01:00
|
|
|
*(mSmmMpSyncData->CpuData[CpuIndex].Present) = TRUE;
|
2015-10-19 21:12:53 +02:00
|
|
|
|
|
|
|
//
|
|
|
|
// Clear platform top level SMI status bit before calling SMI handlers. If
|
|
|
|
// we cleared it after SMI handlers are run, we would miss the SMI that
|
|
|
|
// occurs after SMI handlers are done and before SMI status bit is cleared.
|
|
|
|
//
|
|
|
|
ClearTopLevelSmiResult = ClearTopLevelSmiStatus ();
|
|
|
|
ASSERT (ClearTopLevelSmiResult == TRUE);
|
|
|
|
|
|
|
|
//
|
|
|
|
// Set running processor index
|
|
|
|
//
|
|
|
|
gSmmCpuPrivate->SmmCoreEntryContext.CurrentlyExecutingCpu = CpuIndex;
|
|
|
|
|
|
|
|
//
|
|
|
|
// If Traditional Sync Mode or need to configure MTRRs: gather all available APs.
|
|
|
|
//
|
|
|
|
if ((SyncMode == SmmCpuSyncModeTradition) || SmmCpuFeaturesNeedConfigureMtrrs ()) {
|
|
|
|
//
|
|
|
|
// Wait for APs to arrive
|
|
|
|
//
|
|
|
|
SmmWaitForApArrival ();
|
|
|
|
|
|
|
|
//
|
|
|
|
// Lock the counter down and retrieve the number of APs
|
|
|
|
//
|
2016-03-22 03:15:53 +01:00
|
|
|
*mSmmMpSyncData->AllCpusInSync = TRUE;
|
|
|
|
ApCount = LockdownSemaphore (mSmmMpSyncData->Counter) - 1;
|
2015-10-19 21:12:53 +02:00
|
|
|
|
|
|
|
//
|
|
|
|
// Wait for all APs to get ready for programming MTRRs
|
|
|
|
//
|
|
|
|
WaitForAllAPs (ApCount);
|
|
|
|
|
|
|
|
if (SmmCpuFeaturesNeedConfigureMtrrs ()) {
|
|
|
|
//
|
|
|
|
// Signal all APs it's time for backup MTRRs
|
|
|
|
//
|
|
|
|
ReleaseAllAPs ();
|
|
|
|
|
|
|
|
//
|
|
|
|
// WaitForSemaphore() may wait for ever if an AP happens to enter SMM at
|
|
|
|
// exactly this point. Please make sure PcdCpuSmmMaxSyncLoops has been set
|
|
|
|
// to a large enough value to avoid this situation.
|
|
|
|
// Note: For HT capable CPUs, threads within a core share the same set of MTRRs.
|
|
|
|
// We do the backup first and then set MTRR to avoid race condition for threads
|
|
|
|
// in the same core.
|
|
|
|
//
|
|
|
|
MtrrGetAllMtrrs (&Mtrrs);
|
|
|
|
|
|
|
|
//
|
|
|
|
// Wait for all APs to complete their MTRR saving
|
|
|
|
//
|
|
|
|
WaitForAllAPs (ApCount);
|
|
|
|
|
|
|
|
//
|
|
|
|
// Let all processors program SMM MTRRs together
|
|
|
|
//
|
|
|
|
ReleaseAllAPs ();
|
|
|
|
|
|
|
|
//
|
|
|
|
// WaitForSemaphore() may wait for ever if an AP happens to enter SMM at
|
|
|
|
// exactly this point. Please make sure PcdCpuSmmMaxSyncLoops has been set
|
|
|
|
// to a large enough value to avoid this situation.
|
|
|
|
//
|
|
|
|
ReplaceOSMtrrs (CpuIndex);
|
|
|
|
|
|
|
|
//
|
|
|
|
// Wait for all APs to complete their MTRR programming
|
|
|
|
//
|
|
|
|
WaitForAllAPs (ApCount);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
//
|
|
|
|
// The BUSY lock is initialized to Acquired state
|
|
|
|
//
|
2017-04-18 04:14:08 +02:00
|
|
|
AcquireSpinLock (mSmmMpSyncData->CpuData[CpuIndex].Busy);
|
2015-10-19 21:12:53 +02:00
|
|
|
|
|
|
|
//
|
2015-11-25 05:28:46 +01:00
|
|
|
// Perform the pre tasks
|
2015-10-19 21:12:53 +02:00
|
|
|
//
|
2015-11-25 05:28:46 +01:00
|
|
|
PerformPreTasks ();
|
2015-10-19 21:12:53 +02:00
|
|
|
|
|
|
|
//
|
|
|
|
// Invoke SMM Foundation EntryPoint with the processor information context.
|
|
|
|
//
|
|
|
|
gSmmCpuPrivate->SmmCoreEntry (&gSmmCpuPrivate->SmmCoreEntryContext);
|
|
|
|
|
|
|
|
//
|
|
|
|
// Make sure all APs have completed their pending none-block tasks
|
|
|
|
//
|
2019-07-10 09:49:11 +02:00
|
|
|
WaitForAllAPsNotBusy (TRUE);
|
2015-10-19 21:12:53 +02:00
|
|
|
|
|
|
|
//
|
|
|
|
// Perform the remaining tasks
|
|
|
|
//
|
|
|
|
PerformRemainingTasks ();
|
|
|
|
|
|
|
|
//
|
|
|
|
// If Relaxed-AP Sync Mode: gather all available APs after BSP SMM handlers are done, and
|
|
|
|
// make those APs to exit SMI synchronously. APs which arrive later will be excluded and
|
|
|
|
// will run through freely.
|
|
|
|
//
|
|
|
|
if ((SyncMode != SmmCpuSyncModeTradition) && !SmmCpuFeaturesNeedConfigureMtrrs ()) {
|
|
|
|
//
|
|
|
|
// Lock the counter down and retrieve the number of APs
|
|
|
|
//
|
2016-03-22 03:15:53 +01:00
|
|
|
*mSmmMpSyncData->AllCpusInSync = TRUE;
|
|
|
|
ApCount = LockdownSemaphore (mSmmMpSyncData->Counter) - 1;
|
2015-10-19 21:12:53 +02:00
|
|
|
//
|
|
|
|
// Make sure all APs have their Present flag set
|
|
|
|
//
|
|
|
|
while (TRUE) {
|
|
|
|
PresentCount = 0;
|
2020-01-07 01:48:17 +01:00
|
|
|
for (Index = 0; Index < mMaxNumberOfCpus; Index++) {
|
2016-03-22 03:21:27 +01:00
|
|
|
if (*(mSmmMpSyncData->CpuData[Index].Present)) {
|
2015-10-19 21:12:53 +02:00
|
|
|
PresentCount++;
|
|
|
|
}
|
|
|
|
}
|
2021-12-05 23:54:17 +01:00
|
|
|
|
2015-10-19 21:12:53 +02:00
|
|
|
if (PresentCount > ApCount) {
|
|
|
|
break;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
//
|
|
|
|
// Notify all APs to exit
|
|
|
|
//
|
2016-03-22 03:15:53 +01:00
|
|
|
*mSmmMpSyncData->InsideSmm = FALSE;
|
2015-10-19 21:12:53 +02:00
|
|
|
ReleaseAllAPs ();
|
|
|
|
|
|
|
|
//
|
|
|
|
// Wait for all APs to complete their pending tasks
|
|
|
|
//
|
|
|
|
WaitForAllAPs (ApCount);
|
|
|
|
|
|
|
|
if (SmmCpuFeaturesNeedConfigureMtrrs ()) {
|
|
|
|
//
|
|
|
|
// Signal APs to restore MTRRs
|
|
|
|
//
|
|
|
|
ReleaseAllAPs ();
|
|
|
|
|
|
|
|
//
|
|
|
|
// Restore OS MTRRs
|
|
|
|
//
|
|
|
|
SmmCpuFeaturesReenableSmrr ();
|
|
|
|
MtrrSetAllMtrrs (&Mtrrs);
|
|
|
|
|
|
|
|
//
|
|
|
|
// Wait for all APs to complete MTRR programming
|
|
|
|
//
|
|
|
|
WaitForAllAPs (ApCount);
|
|
|
|
}
|
|
|
|
|
|
|
|
//
|
|
|
|
// Stop source level debug in BSP handler, the code below will not be
|
|
|
|
// debugged.
|
|
|
|
//
|
|
|
|
InitializeDebugAgent (DEBUG_AGENT_INIT_EXIT_SMI, NULL, NULL);
|
|
|
|
|
|
|
|
//
|
|
|
|
// Signal APs to Reset states/semaphore for this processor
|
|
|
|
//
|
|
|
|
ReleaseAllAPs ();
|
|
|
|
|
|
|
|
//
|
|
|
|
// Perform pending operations for hot-plug
|
|
|
|
//
|
|
|
|
SmmCpuUpdate ();
|
|
|
|
|
|
|
|
//
|
|
|
|
// Clear the Present flag of BSP
|
|
|
|
//
|
2016-03-22 03:21:27 +01:00
|
|
|
*(mSmmMpSyncData->CpuData[CpuIndex].Present) = FALSE;
|
2015-10-19 21:12:53 +02:00
|
|
|
|
|
|
|
//
|
|
|
|
// Gather APs to exit SMM synchronously. Note the Present flag is cleared by now but
|
|
|
|
// WaitForAllAps does not depend on the Present flag.
|
|
|
|
//
|
|
|
|
WaitForAllAPs (ApCount);
|
|
|
|
|
2019-07-10 09:49:11 +02:00
|
|
|
//
|
2019-12-27 08:30:27 +01:00
|
|
|
// Reset the tokens buffer.
|
2019-07-10 09:49:11 +02:00
|
|
|
//
|
2019-12-27 08:30:27 +01:00
|
|
|
ResetTokens ();
|
2019-07-10 09:49:11 +02:00
|
|
|
|
2015-10-19 21:12:53 +02:00
|
|
|
//
|
|
|
|
// Reset BspIndex to -1, meaning BSP has not been elected.
|
|
|
|
//
|
|
|
|
if (FeaturePcdGet (PcdCpuSmmEnableBspElection)) {
|
|
|
|
mSmmMpSyncData->BspIndex = (UINT32)-1;
|
|
|
|
}
|
|
|
|
|
|
|
|
//
|
|
|
|
// Allow APs to check in from this point on
|
|
|
|
//
|
2022-09-27 14:57:38 +02:00
|
|
|
*mSmmMpSyncData->Counter = 0;
|
|
|
|
*mSmmMpSyncData->AllCpusInSync = FALSE;
|
|
|
|
mSmmMpSyncData->AllApArrivedWithException = FALSE;
|
2015-10-19 21:12:53 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
SMI handler for AP.
|
|
|
|
|
|
|
|
@param CpuIndex AP processor Index.
|
|
|
|
@param ValidSmi Indicates that current SMI is a valid SMI or not.
|
|
|
|
@param SyncMode SMM MP sync mode.
|
|
|
|
|
|
|
|
**/
|
|
|
|
VOID
|
|
|
|
APHandler (
|
|
|
|
IN UINTN CpuIndex,
|
|
|
|
IN BOOLEAN ValidSmi,
|
|
|
|
IN SMM_CPU_SYNC_MODE SyncMode
|
|
|
|
)
|
|
|
|
{
|
|
|
|
UINT64 Timer;
|
|
|
|
UINTN BspIndex;
|
|
|
|
MTRR_SETTINGS Mtrrs;
|
2019-07-10 09:49:11 +02:00
|
|
|
EFI_STATUS ProcedureStatus;
|
2015-10-19 21:12:53 +02:00
|
|
|
|
|
|
|
//
|
|
|
|
// Timeout BSP
|
|
|
|
//
|
|
|
|
for (Timer = StartSyncTimer ();
|
|
|
|
!IsSyncTimerTimeout (Timer) &&
|
2016-03-22 03:15:53 +01:00
|
|
|
!(*mSmmMpSyncData->InsideSmm);
|
2015-10-19 21:12:53 +02:00
|
|
|
)
|
|
|
|
{
|
|
|
|
CpuPause ();
|
|
|
|
}
|
|
|
|
|
2016-03-22 03:15:53 +01:00
|
|
|
if (!(*mSmmMpSyncData->InsideSmm)) {
|
2015-10-19 21:12:53 +02:00
|
|
|
//
|
|
|
|
// BSP timeout in the first round
|
|
|
|
//
|
|
|
|
if (mSmmMpSyncData->BspIndex != -1) {
|
|
|
|
//
|
|
|
|
// BSP Index is known
|
2022-11-30 06:13:56 +01:00
|
|
|
// Existing AP is in SMI now but BSP not in, so, try bring BSP in SMM.
|
2015-10-19 21:12:53 +02:00
|
|
|
//
|
|
|
|
BspIndex = mSmmMpSyncData->BspIndex;
|
|
|
|
ASSERT (CpuIndex != BspIndex);
|
|
|
|
|
|
|
|
//
|
|
|
|
// Send SMI IPI to bring BSP in
|
|
|
|
//
|
|
|
|
SendSmiIpi ((UINT32)gSmmCpuPrivate->ProcessorInfo[BspIndex].ProcessorId);
|
|
|
|
|
|
|
|
//
|
|
|
|
// Now clock BSP for the 2nd time
|
|
|
|
//
|
|
|
|
for (Timer = StartSyncTimer ();
|
|
|
|
!IsSyncTimerTimeout (Timer) &&
|
2016-03-22 03:15:53 +01:00
|
|
|
!(*mSmmMpSyncData->InsideSmm);
|
2015-10-19 21:12:53 +02:00
|
|
|
)
|
|
|
|
{
|
|
|
|
CpuPause ();
|
|
|
|
}
|
|
|
|
|
2016-03-22 03:15:53 +01:00
|
|
|
if (!(*mSmmMpSyncData->InsideSmm)) {
|
2015-10-19 21:12:53 +02:00
|
|
|
//
|
|
|
|
// Give up since BSP is unable to enter SMM
|
|
|
|
// and signal the completion of this AP
|
2022-11-30 06:13:56 +01:00
|
|
|
// Reduce the mSmmMpSyncData->Counter!
|
|
|
|
//
|
2016-03-22 03:15:53 +01:00
|
|
|
WaitForSemaphore (mSmmMpSyncData->Counter);
|
2015-10-19 21:12:53 +02:00
|
|
|
return;
|
|
|
|
}
|
|
|
|
} else {
|
|
|
|
//
|
|
|
|
// Don't know BSP index. Give up without sending IPI to BSP.
|
2022-11-30 06:13:56 +01:00
|
|
|
// Reduce the mSmmMpSyncData->Counter!
|
2015-10-19 21:12:53 +02:00
|
|
|
//
|
2016-03-22 03:15:53 +01:00
|
|
|
WaitForSemaphore (mSmmMpSyncData->Counter);
|
2015-10-19 21:12:53 +02:00
|
|
|
return;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
//
|
|
|
|
// BSP is available
|
|
|
|
//
|
|
|
|
BspIndex = mSmmMpSyncData->BspIndex;
|
|
|
|
ASSERT (CpuIndex != BspIndex);
|
|
|
|
|
|
|
|
//
|
|
|
|
// Mark this processor's presence
|
|
|
|
//
|
2016-03-22 03:21:27 +01:00
|
|
|
*(mSmmMpSyncData->CpuData[CpuIndex].Present) = TRUE;
|
2015-10-19 21:12:53 +02:00
|
|
|
|
|
|
|
if ((SyncMode == SmmCpuSyncModeTradition) || SmmCpuFeaturesNeedConfigureMtrrs ()) {
|
|
|
|
//
|
|
|
|
// Notify BSP of arrival at this point
|
|
|
|
//
|
2016-03-22 03:21:27 +01:00
|
|
|
ReleaseSemaphore (mSmmMpSyncData->CpuData[BspIndex].Run);
|
2015-10-19 21:12:53 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
if (SmmCpuFeaturesNeedConfigureMtrrs ()) {
|
|
|
|
//
|
|
|
|
// Wait for the signal from BSP to backup MTRRs
|
|
|
|
//
|
2016-03-22 03:21:27 +01:00
|
|
|
WaitForSemaphore (mSmmMpSyncData->CpuData[CpuIndex].Run);
|
2015-10-19 21:12:53 +02:00
|
|
|
|
|
|
|
//
|
|
|
|
// Backup OS MTRRs
|
|
|
|
//
|
|
|
|
MtrrGetAllMtrrs (&Mtrrs);
|
|
|
|
|
|
|
|
//
|
|
|
|
// Signal BSP the completion of this AP
|
|
|
|
//
|
2016-03-22 03:21:27 +01:00
|
|
|
ReleaseSemaphore (mSmmMpSyncData->CpuData[BspIndex].Run);
|
2015-10-19 21:12:53 +02:00
|
|
|
|
|
|
|
//
|
|
|
|
// Wait for BSP's signal to program MTRRs
|
|
|
|
//
|
2016-03-22 03:21:27 +01:00
|
|
|
WaitForSemaphore (mSmmMpSyncData->CpuData[CpuIndex].Run);
|
2015-10-19 21:12:53 +02:00
|
|
|
|
|
|
|
//
|
|
|
|
// Replace OS MTRRs with SMI MTRRs
|
|
|
|
//
|
|
|
|
ReplaceOSMtrrs (CpuIndex);
|
|
|
|
|
|
|
|
//
|
|
|
|
// Signal BSP the completion of this AP
|
|
|
|
//
|
2016-03-22 03:21:27 +01:00
|
|
|
ReleaseSemaphore (mSmmMpSyncData->CpuData[BspIndex].Run);
|
2015-10-19 21:12:53 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
while (TRUE) {
|
|
|
|
//
|
|
|
|
// Wait for something to happen
|
|
|
|
//
|
2016-03-22 03:21:27 +01:00
|
|
|
WaitForSemaphore (mSmmMpSyncData->CpuData[CpuIndex].Run);
|
2015-10-19 21:12:53 +02:00
|
|
|
|
|
|
|
//
|
|
|
|
// Check if BSP wants to exit SMM
|
|
|
|
//
|
2016-03-22 03:15:53 +01:00
|
|
|
if (!(*mSmmMpSyncData->InsideSmm)) {
|
2015-10-19 21:12:53 +02:00
|
|
|
break;
|
|
|
|
}
|
|
|
|
|
|
|
|
//
|
|
|
|
// BUSY should be acquired by SmmStartupThisAp()
|
|
|
|
//
|
|
|
|
ASSERT (
|
2016-03-22 03:21:27 +01:00
|
|
|
!AcquireSpinLockOrFail (mSmmMpSyncData->CpuData[CpuIndex].Busy)
|
2015-10-19 21:12:53 +02:00
|
|
|
);
|
|
|
|
|
|
|
|
//
|
|
|
|
// Invoke the scheduled procedure
|
|
|
|
//
|
2019-07-10 09:49:11 +02:00
|
|
|
ProcedureStatus = (*mSmmMpSyncData->CpuData[CpuIndex].Procedure)(
|
|
|
|
(VOID *)mSmmMpSyncData->CpuData[CpuIndex].Parameter
|
|
|
|
);
|
|
|
|
if (mSmmMpSyncData->CpuData[CpuIndex].Status != NULL) {
|
|
|
|
*mSmmMpSyncData->CpuData[CpuIndex].Status = ProcedureStatus;
|
|
|
|
}
|
2015-10-19 21:12:53 +02:00
|
|
|
|
2019-12-23 07:15:04 +01:00
|
|
|
if (mSmmMpSyncData->CpuData[CpuIndex].Token != NULL) {
|
|
|
|
ReleaseToken (CpuIndex);
|
|
|
|
}
|
|
|
|
|
2015-10-19 21:12:53 +02:00
|
|
|
//
|
|
|
|
// Release BUSY
|
|
|
|
//
|
2016-03-22 03:21:27 +01:00
|
|
|
ReleaseSpinLock (mSmmMpSyncData->CpuData[CpuIndex].Busy);
|
2015-10-19 21:12:53 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
if (SmmCpuFeaturesNeedConfigureMtrrs ()) {
|
|
|
|
//
|
|
|
|
// Notify BSP the readiness of this AP to program MTRRs
|
|
|
|
//
|
2016-03-22 03:21:27 +01:00
|
|
|
ReleaseSemaphore (mSmmMpSyncData->CpuData[BspIndex].Run);
|
2015-10-19 21:12:53 +02:00
|
|
|
|
|
|
|
//
|
|
|
|
// Wait for the signal from BSP to program MTRRs
|
|
|
|
//
|
2016-03-22 03:21:27 +01:00
|
|
|
WaitForSemaphore (mSmmMpSyncData->CpuData[CpuIndex].Run);
|
2015-10-19 21:12:53 +02:00
|
|
|
|
|
|
|
//
|
|
|
|
// Restore OS MTRRs
|
|
|
|
//
|
|
|
|
SmmCpuFeaturesReenableSmrr ();
|
|
|
|
MtrrSetAllMtrrs (&Mtrrs);
|
|
|
|
}
|
|
|
|
|
|
|
|
//
|
|
|
|
// Notify BSP the readiness of this AP to Reset states/semaphore for this processor
|
|
|
|
//
|
2016-03-22 03:21:27 +01:00
|
|
|
ReleaseSemaphore (mSmmMpSyncData->CpuData[BspIndex].Run);
|
2015-10-19 21:12:53 +02:00
|
|
|
|
|
|
|
//
|
|
|
|
// Wait for the signal from BSP to Reset states/semaphore for this processor
|
|
|
|
//
|
2016-03-22 03:21:27 +01:00
|
|
|
WaitForSemaphore (mSmmMpSyncData->CpuData[CpuIndex].Run);
|
2015-10-19 21:12:53 +02:00
|
|
|
|
|
|
|
//
|
|
|
|
// Reset states/semaphore for this processor
|
|
|
|
//
|
2016-03-22 03:21:27 +01:00
|
|
|
*(mSmmMpSyncData->CpuData[CpuIndex].Present) = FALSE;
|
2015-10-19 21:12:53 +02:00
|
|
|
|
|
|
|
//
|
|
|
|
// Notify BSP the readiness of this AP to exit SMM
|
|
|
|
//
|
2016-03-22 03:21:27 +01:00
|
|
|
ReleaseSemaphore (mSmmMpSyncData->CpuData[BspIndex].Run);
|
2015-10-19 21:12:53 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
Create 4G PageTable in SMRAM.
|
|
|
|
|
2016-10-23 17:19:52 +02:00
|
|
|
@param[in] Is32BitPageTable Whether the page table is 32-bit PAE
|
2015-10-19 21:12:53 +02:00
|
|
|
@return PageTable Address
|
|
|
|
|
|
|
|
**/
|
|
|
|
UINT32
|
|
|
|
Gen4GPageTable (
|
2015-11-30 20:57:40 +01:00
|
|
|
IN BOOLEAN Is32BitPageTable
|
2015-10-19 21:12:53 +02:00
|
|
|
)
|
|
|
|
{
|
|
|
|
VOID *PageTable;
|
|
|
|
UINTN Index;
|
|
|
|
UINT64 *Pte;
|
|
|
|
UINTN PagesNeeded;
|
|
|
|
UINTN Low2MBoundary;
|
|
|
|
UINTN High2MBoundary;
|
|
|
|
UINTN Pages;
|
|
|
|
UINTN GuardPage;
|
|
|
|
UINT64 *Pdpte;
|
|
|
|
UINTN PageIndex;
|
|
|
|
UINTN PageAddress;
|
|
|
|
|
|
|
|
Low2MBoundary = 0;
|
|
|
|
High2MBoundary = 0;
|
|
|
|
PagesNeeded = 0;
|
|
|
|
if (FeaturePcdGet (PcdCpuSmmStackGuard)) {
|
|
|
|
//
|
|
|
|
// Add one more page for known good stack, then find the lower 2MB aligned address.
|
|
|
|
//
|
|
|
|
Low2MBoundary = (mSmmStackArrayBase + EFI_PAGE_SIZE) & ~(SIZE_2MB-1);
|
|
|
|
//
|
|
|
|
// Add two more pages for known good stack and stack guard page,
|
|
|
|
// then find the lower 2MB aligned address.
|
|
|
|
//
|
2021-02-26 05:00:34 +01:00
|
|
|
High2MBoundary = (mSmmStackArrayEnd - mSmmStackSize - mSmmShadowStackSize + EFI_PAGE_SIZE * 2) & ~(SIZE_2MB-1);
|
2015-10-19 21:12:53 +02:00
|
|
|
PagesNeeded = ((High2MBoundary - Low2MBoundary) / SIZE_2MB) + 1;
|
|
|
|
}
|
2021-12-05 23:54:17 +01:00
|
|
|
|
2015-10-19 21:12:53 +02:00
|
|
|
//
|
|
|
|
// Allocate the page table
|
|
|
|
//
|
2016-10-23 17:19:52 +02:00
|
|
|
PageTable = AllocatePageTableMemory (5 + PagesNeeded);
|
2015-10-19 21:12:53 +02:00
|
|
|
ASSERT (PageTable != NULL);
|
|
|
|
|
2016-10-23 17:19:52 +02:00
|
|
|
PageTable = (VOID *)((UINTN)PageTable);
|
2015-10-19 21:12:53 +02:00
|
|
|
Pte = (UINT64 *)PageTable;
|
|
|
|
|
|
|
|
//
|
|
|
|
// Zero out all page table entries first
|
|
|
|
//
|
|
|
|
ZeroMem (Pte, EFI_PAGES_TO_SIZE (1));
|
|
|
|
|
|
|
|
//
|
|
|
|
// Set Page Directory Pointers
|
|
|
|
//
|
|
|
|
for (Index = 0; Index < 4; Index++) {
|
2017-03-07 02:00:48 +01:00
|
|
|
Pte[Index] = ((UINTN)PageTable + EFI_PAGE_SIZE * (Index + 1)) | mAddressEncMask |
|
2017-02-26 18:43:07 +01:00
|
|
|
(Is32BitPageTable ? IA32_PAE_PDPTE_ATTRIBUTE_BITS : PAGE_ATTRIBUTE_BITS);
|
2015-10-19 21:12:53 +02:00
|
|
|
}
|
2021-12-05 23:54:17 +01:00
|
|
|
|
2015-10-19 21:12:53 +02:00
|
|
|
Pte += EFI_PAGE_SIZE / sizeof (*Pte);
|
|
|
|
|
|
|
|
//
|
|
|
|
// Fill in Page Directory Entries
|
|
|
|
//
|
|
|
|
for (Index = 0; Index < EFI_PAGE_SIZE * 4 / sizeof (*Pte); Index++) {
|
2017-02-26 18:43:07 +01:00
|
|
|
Pte[Index] = (Index << 21) | mAddressEncMask | IA32_PG_PS | PAGE_ATTRIBUTE_BITS;
|
2015-10-19 21:12:53 +02:00
|
|
|
}
|
|
|
|
|
2017-10-09 16:00:39 +02:00
|
|
|
Pdpte = (UINT64 *)PageTable;
|
2015-10-19 21:12:53 +02:00
|
|
|
if (FeaturePcdGet (PcdCpuSmmStackGuard)) {
|
|
|
|
Pages = (UINTN)PageTable + EFI_PAGES_TO_SIZE (5);
|
|
|
|
GuardPage = mSmmStackArrayBase + EFI_PAGE_SIZE;
|
|
|
|
for (PageIndex = Low2MBoundary; PageIndex <= High2MBoundary; PageIndex += SIZE_2MB) {
|
2017-02-26 18:43:07 +01:00
|
|
|
Pte = (UINT64 *)(UINTN)(Pdpte[BitFieldRead32 ((UINT32)PageIndex, 30, 31)] & ~mAddressEncMask & ~(EFI_PAGE_SIZE - 1));
|
|
|
|
Pte[BitFieldRead32 ((UINT32)PageIndex, 21, 29)] = (UINT64)Pages | mAddressEncMask | PAGE_ATTRIBUTE_BITS;
|
2015-10-19 21:12:53 +02:00
|
|
|
//
|
|
|
|
// Fill in Page Table Entries
|
|
|
|
//
|
|
|
|
Pte = (UINT64 *)Pages;
|
|
|
|
PageAddress = PageIndex;
|
|
|
|
for (Index = 0; Index < EFI_PAGE_SIZE / sizeof (*Pte); Index++) {
|
|
|
|
if (PageAddress == GuardPage) {
|
|
|
|
//
|
|
|
|
// Mark the guard page as non-present
|
|
|
|
//
|
2017-02-26 18:43:07 +01:00
|
|
|
Pte[Index] = PageAddress | mAddressEncMask;
|
2021-02-26 05:00:34 +01:00
|
|
|
GuardPage += (mSmmStackSize + mSmmShadowStackSize);
|
2015-10-19 21:12:53 +02:00
|
|
|
if (GuardPage > mSmmStackArrayEnd) {
|
|
|
|
GuardPage = 0;
|
|
|
|
}
|
|
|
|
} else {
|
2017-02-26 18:43:07 +01:00
|
|
|
Pte[Index] = PageAddress | mAddressEncMask | PAGE_ATTRIBUTE_BITS;
|
2015-10-19 21:12:53 +02:00
|
|
|
}
|
2021-12-05 23:54:17 +01:00
|
|
|
|
2015-10-19 21:12:53 +02:00
|
|
|
PageAddress += EFI_PAGE_SIZE;
|
|
|
|
}
|
2021-12-05 23:54:17 +01:00
|
|
|
|
2015-10-19 21:12:53 +02:00
|
|
|
Pages += EFI_PAGE_SIZE;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2017-10-09 16:00:39 +02:00
|
|
|
if ((PcdGet8 (PcdNullPointerDetectionPropertyMask) & BIT1) != 0) {
|
|
|
|
Pte = (UINT64 *)(UINTN)(Pdpte[0] & ~mAddressEncMask & ~(EFI_PAGE_SIZE - 1));
|
|
|
|
if ((Pte[0] & IA32_PG_PS) == 0) {
|
|
|
|
// 4K-page entries are already mapped. Just hide the first one anyway.
|
|
|
|
Pte = (UINT64 *)(UINTN)(Pte[0] & ~mAddressEncMask & ~(EFI_PAGE_SIZE - 1));
|
2017-10-12 06:49:18 +02:00
|
|
|
Pte[0] &= ~(UINT64)IA32_PG_P; // Hide page 0
|
2017-10-09 16:00:39 +02:00
|
|
|
} else {
|
|
|
|
// Create 4K-page entries
|
|
|
|
Pages = (UINTN)AllocatePageTableMemory (1);
|
|
|
|
ASSERT (Pages != 0);
|
|
|
|
|
|
|
|
Pte[0] = (UINT64)(Pages | mAddressEncMask | PAGE_ATTRIBUTE_BITS);
|
|
|
|
|
|
|
|
Pte = (UINT64 *)Pages;
|
|
|
|
PageAddress = 0;
|
|
|
|
Pte[0] = PageAddress | mAddressEncMask; // Hide page 0 but present left
|
|
|
|
for (Index = 1; Index < EFI_PAGE_SIZE / sizeof (*Pte); Index++) {
|
|
|
|
PageAddress += EFI_PAGE_SIZE;
|
|
|
|
Pte[Index] = PageAddress | mAddressEncMask | PAGE_ATTRIBUTE_BITS;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2015-10-19 21:12:53 +02:00
|
|
|
return (UINT32)(UINTN)PageTable;
|
|
|
|
}
|
|
|
|
|
2019-07-10 09:49:11 +02:00
|
|
|
/**
|
|
|
|
Checks whether the input token is the current used token.
|
|
|
|
|
|
|
|
@param[in] Token This parameter describes the token that was passed into DispatchProcedure or
|
|
|
|
BroadcastProcedure.
|
|
|
|
|
|
|
|
@retval TRUE The input token is the current used token.
|
|
|
|
@retval FALSE The input token is not the current used token.
|
|
|
|
**/
|
|
|
|
BOOLEAN
|
|
|
|
IsTokenInUse (
|
|
|
|
IN SPIN_LOCK *Token
|
|
|
|
)
|
|
|
|
{
|
|
|
|
LIST_ENTRY *Link;
|
|
|
|
PROCEDURE_TOKEN *ProcToken;
|
|
|
|
|
|
|
|
if (Token == NULL) {
|
|
|
|
return FALSE;
|
|
|
|
}
|
|
|
|
|
|
|
|
Link = GetFirstNode (&gSmmCpuPrivate->TokenList);
|
2020-04-10 08:54:00 +02:00
|
|
|
//
|
|
|
|
// Only search used tokens.
|
|
|
|
//
|
|
|
|
while (Link != gSmmCpuPrivate->FirstFreeToken) {
|
2019-07-10 09:49:11 +02:00
|
|
|
ProcToken = PROCEDURE_TOKEN_FROM_LINK (Link);
|
|
|
|
|
2020-04-10 08:54:00 +02:00
|
|
|
if (ProcToken->SpinLock == Token) {
|
2019-07-10 09:49:11 +02:00
|
|
|
return TRUE;
|
|
|
|
}
|
|
|
|
|
|
|
|
Link = GetNextNode (&gSmmCpuPrivate->TokenList, Link);
|
|
|
|
}
|
|
|
|
|
|
|
|
return FALSE;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
2019-12-27 08:30:27 +01:00
|
|
|
Allocate buffer for the SPIN_LOCK and PROCEDURE_TOKEN.
|
2019-07-10 09:49:11 +02:00
|
|
|
|
2020-04-10 04:51:26 +02:00
|
|
|
@return First token of the token buffer.
|
2019-07-10 09:49:11 +02:00
|
|
|
**/
|
2020-04-10 04:51:26 +02:00
|
|
|
LIST_ENTRY *
|
2019-12-27 08:30:27 +01:00
|
|
|
AllocateTokenBuffer (
|
|
|
|
VOID
|
2019-07-10 09:49:11 +02:00
|
|
|
)
|
|
|
|
{
|
|
|
|
UINTN SpinLockSize;
|
2019-12-06 04:36:35 +01:00
|
|
|
UINT32 TokenCountPerChunk;
|
2019-12-27 08:30:27 +01:00
|
|
|
UINTN Index;
|
|
|
|
SPIN_LOCK *SpinLock;
|
|
|
|
UINT8 *SpinLockBuffer;
|
2020-04-10 04:51:26 +02:00
|
|
|
PROCEDURE_TOKEN *ProcTokens;
|
2019-07-10 09:49:11 +02:00
|
|
|
|
|
|
|
SpinLockSize = GetSpinLockProperties ();
|
2019-12-27 08:30:27 +01:00
|
|
|
|
2019-12-06 04:36:35 +01:00
|
|
|
TokenCountPerChunk = FixedPcdGet32 (PcdCpuSmmMpTokenCountPerChunk);
|
2019-12-27 08:30:27 +01:00
|
|
|
ASSERT (TokenCountPerChunk != 0);
|
|
|
|
if (TokenCountPerChunk == 0) {
|
|
|
|
DEBUG ((DEBUG_ERROR, "PcdCpuSmmMpTokenCountPerChunk should not be Zero!\n"));
|
|
|
|
CpuDeadLoop ();
|
|
|
|
}
|
2021-12-05 23:54:17 +01:00
|
|
|
|
2019-12-27 08:30:27 +01:00
|
|
|
DEBUG ((DEBUG_INFO, "CpuSmm: SpinLock Size = 0x%x, PcdCpuSmmMpTokenCountPerChunk = 0x%x\n", SpinLockSize, TokenCountPerChunk));
|
2019-12-06 04:36:35 +01:00
|
|
|
|
2019-12-27 08:30:27 +01:00
|
|
|
//
|
|
|
|
// Separate the Spin_lock and Proc_token because the alignment requires by Spin_Lock.
|
|
|
|
//
|
|
|
|
SpinLockBuffer = AllocatePool (SpinLockSize * TokenCountPerChunk);
|
|
|
|
ASSERT (SpinLockBuffer != NULL);
|
2019-12-06 04:36:35 +01:00
|
|
|
|
2020-04-10 04:51:26 +02:00
|
|
|
ProcTokens = AllocatePool (sizeof (PROCEDURE_TOKEN) * TokenCountPerChunk);
|
|
|
|
ASSERT (ProcTokens != NULL);
|
2019-12-27 08:30:27 +01:00
|
|
|
|
|
|
|
for (Index = 0; Index < TokenCountPerChunk; Index++) {
|
|
|
|
SpinLock = (SPIN_LOCK *)(SpinLockBuffer + SpinLockSize * Index);
|
|
|
|
InitializeSpinLock (SpinLock);
|
|
|
|
|
2020-04-10 04:51:26 +02:00
|
|
|
ProcTokens[Index].Signature = PROCEDURE_TOKEN_SIGNATURE;
|
|
|
|
ProcTokens[Index].SpinLock = SpinLock;
|
|
|
|
ProcTokens[Index].RunningApCount = 0;
|
2019-12-27 08:30:27 +01:00
|
|
|
|
2020-04-10 04:51:26 +02:00
|
|
|
InsertTailList (&gSmmCpuPrivate->TokenList, &ProcTokens[Index].Link);
|
2019-12-27 08:30:27 +01:00
|
|
|
}
|
2019-12-06 04:36:35 +01:00
|
|
|
|
2020-04-10 04:51:26 +02:00
|
|
|
return &ProcTokens[0].Link;
|
2019-12-27 08:30:27 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
Get the free token.
|
|
|
|
|
|
|
|
If no free token, allocate new tokens then return the free one.
|
|
|
|
|
2020-01-09 06:21:36 +01:00
|
|
|
@param RunningApsCount The Running Aps count for this token.
|
|
|
|
|
2019-12-27 08:30:27 +01:00
|
|
|
@retval return the first free PROCEDURE_TOKEN.
|
2019-12-06 04:36:35 +01:00
|
|
|
|
2019-12-27 08:30:27 +01:00
|
|
|
**/
|
|
|
|
PROCEDURE_TOKEN *
|
|
|
|
GetFreeToken (
|
|
|
|
IN UINT32 RunningApsCount
|
|
|
|
)
|
|
|
|
{
|
|
|
|
PROCEDURE_TOKEN *NewToken;
|
2019-07-10 09:49:11 +02:00
|
|
|
|
2020-04-10 04:51:26 +02:00
|
|
|
//
|
|
|
|
// If FirstFreeToken meets the end of token list, enlarge the token list.
|
|
|
|
// Set FirstFreeToken to the first free token.
|
|
|
|
//
|
|
|
|
if (gSmmCpuPrivate->FirstFreeToken == &gSmmCpuPrivate->TokenList) {
|
|
|
|
gSmmCpuPrivate->FirstFreeToken = AllocateTokenBuffer ();
|
2019-12-27 08:30:27 +01:00
|
|
|
}
|
2021-12-05 23:54:17 +01:00
|
|
|
|
2020-04-10 04:51:26 +02:00
|
|
|
NewToken = PROCEDURE_TOKEN_FROM_LINK (gSmmCpuPrivate->FirstFreeToken);
|
|
|
|
gSmmCpuPrivate->FirstFreeToken = GetNextNode (&gSmmCpuPrivate->TokenList, gSmmCpuPrivate->FirstFreeToken);
|
2019-07-10 09:49:11 +02:00
|
|
|
|
2019-12-27 08:30:27 +01:00
|
|
|
NewToken->RunningApCount = RunningApsCount;
|
|
|
|
AcquireSpinLock (NewToken->SpinLock);
|
2019-07-10 09:49:11 +02:00
|
|
|
|
2019-12-27 08:30:27 +01:00
|
|
|
return NewToken;
|
2019-07-10 09:49:11 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
Checks status of specified AP.
|
|
|
|
|
|
|
|
This function checks whether the specified AP has finished the task assigned
|
|
|
|
by StartupThisAP(), and whether timeout expires.
|
|
|
|
|
|
|
|
@param[in] Token This parameter describes the token that was passed into DispatchProcedure or
|
|
|
|
BroadcastProcedure.
|
|
|
|
|
|
|
|
@retval EFI_SUCCESS Specified AP has finished task assigned by StartupThisAPs().
|
|
|
|
@retval EFI_NOT_READY Specified AP has not finished task and timeout has not expired.
|
|
|
|
**/
|
|
|
|
EFI_STATUS
|
|
|
|
IsApReady (
|
|
|
|
IN SPIN_LOCK *Token
|
|
|
|
)
|
|
|
|
{
|
|
|
|
if (AcquireSpinLockOrFail (Token)) {
|
|
|
|
ReleaseSpinLock (Token);
|
|
|
|
return EFI_SUCCESS;
|
|
|
|
}
|
|
|
|
|
|
|
|
return EFI_NOT_READY;
|
|
|
|
}
|
|
|
|
|
2015-10-19 21:12:53 +02:00
|
|
|
/**
|
|
|
|
Schedule a procedure to run on the specified CPU.
|
|
|
|
|
2016-10-23 17:19:52 +02:00
|
|
|
@param[in] Procedure The address of the procedure to run
|
|
|
|
@param[in] CpuIndex Target CPU Index
|
2019-07-10 09:49:11 +02:00
|
|
|
@param[in,out] ProcArguments The parameter to pass to the procedure
|
|
|
|
@param[in] Token This is an optional parameter that allows the caller to execute the
|
|
|
|
procedure in a blocking or non-blocking fashion. If it is NULL the
|
|
|
|
call is blocking, and the call will not return until the AP has
|
|
|
|
completed the procedure. If the token is not NULL, the call will
|
|
|
|
return immediately. The caller can check whether the procedure has
|
|
|
|
completed with CheckOnProcedure or WaitForProcedure.
|
|
|
|
@param[in] TimeoutInMicroseconds Indicates the time limit in microseconds for the APs to finish
|
|
|
|
execution of Procedure, either for blocking or non-blocking mode.
|
|
|
|
Zero means infinity. If the timeout expires before all APs return
|
|
|
|
from Procedure, then Procedure on the failed APs is terminated. If
|
|
|
|
the timeout expires in blocking mode, the call returns EFI_TIMEOUT.
|
|
|
|
If the timeout expires in non-blocking mode, the timeout determined
|
|
|
|
can be through CheckOnProcedure or WaitForProcedure.
|
|
|
|
Note that timeout support is optional. Whether an implementation
|
|
|
|
supports this feature can be determined via the Attributes data
|
|
|
|
member.
|
|
|
|
@param[in,out] CpuStatus This optional pointer may be used to get the status code returned
|
|
|
|
by Procedure when it completes execution on the target AP, or with
|
|
|
|
EFI_TIMEOUT if the Procedure fails to complete within the optional
|
|
|
|
timeout. The implementation will update this variable with
|
|
|
|
EFI_NOT_READY prior to starting Procedure on the target AP.
|
2015-10-19 21:12:53 +02:00
|
|
|
|
|
|
|
@retval EFI_INVALID_PARAMETER CpuNumber not valid
|
|
|
|
@retval EFI_INVALID_PARAMETER CpuNumber specifying BSP
|
|
|
|
@retval EFI_INVALID_PARAMETER The AP specified by CpuNumber did not enter SMM
|
|
|
|
@retval EFI_INVALID_PARAMETER The AP specified by CpuNumber is busy
|
|
|
|
@retval EFI_SUCCESS The procedure has been successfully scheduled
|
|
|
|
|
|
|
|
**/
|
|
|
|
EFI_STATUS
|
2016-10-23 17:19:52 +02:00
|
|
|
InternalSmmStartupThisAp (
|
2019-07-10 09:49:11 +02:00
|
|
|
IN EFI_AP_PROCEDURE2 Procedure,
|
|
|
|
IN UINTN CpuIndex,
|
|
|
|
IN OUT VOID *ProcArguments OPTIONAL,
|
|
|
|
IN MM_COMPLETION *Token,
|
|
|
|
IN UINTN TimeoutInMicroseconds,
|
|
|
|
IN OUT EFI_STATUS *CpuStatus
|
2015-10-19 21:12:53 +02:00
|
|
|
)
|
|
|
|
{
|
2019-12-23 07:15:04 +01:00
|
|
|
PROCEDURE_TOKEN *ProcToken;
|
|
|
|
|
2016-10-23 17:19:52 +02:00
|
|
|
if (CpuIndex >= gSmmCpuPrivate->SmmCoreEntryContext.NumberOfCpus) {
|
|
|
|
DEBUG ((DEBUG_ERROR, "CpuIndex(%d) >= gSmmCpuPrivate->SmmCoreEntryContext.NumberOfCpus(%d)\n", CpuIndex, gSmmCpuPrivate->SmmCoreEntryContext.NumberOfCpus));
|
|
|
|
return EFI_INVALID_PARAMETER;
|
|
|
|
}
|
2021-12-05 23:54:17 +01:00
|
|
|
|
2016-10-23 17:19:52 +02:00
|
|
|
if (CpuIndex == gSmmCpuPrivate->SmmCoreEntryContext.CurrentlyExecutingCpu) {
|
|
|
|
DEBUG ((DEBUG_ERROR, "CpuIndex(%d) == gSmmCpuPrivate->SmmCoreEntryContext.CurrentlyExecutingCpu\n", CpuIndex));
|
2015-10-19 21:12:53 +02:00
|
|
|
return EFI_INVALID_PARAMETER;
|
|
|
|
}
|
2021-12-05 23:54:17 +01:00
|
|
|
|
2017-05-10 10:32:25 +02:00
|
|
|
if (gSmmCpuPrivate->ProcessorInfo[CpuIndex].ProcessorId == INVALID_APIC_ID) {
|
|
|
|
return EFI_INVALID_PARAMETER;
|
|
|
|
}
|
2021-12-05 23:54:17 +01:00
|
|
|
|
2016-10-23 17:19:52 +02:00
|
|
|
if (!(*(mSmmMpSyncData->CpuData[CpuIndex].Present))) {
|
|
|
|
if (mSmmMpSyncData->EffectiveSyncMode == SmmCpuSyncModeTradition) {
|
|
|
|
DEBUG ((DEBUG_ERROR, "!mSmmMpSyncData->CpuData[%d].Present\n", CpuIndex));
|
|
|
|
}
|
2021-12-05 23:54:17 +01:00
|
|
|
|
2016-10-23 17:19:52 +02:00
|
|
|
return EFI_INVALID_PARAMETER;
|
|
|
|
}
|
2021-12-05 23:54:17 +01:00
|
|
|
|
2016-10-23 17:19:52 +02:00
|
|
|
if (gSmmCpuPrivate->Operation[CpuIndex] == SmmCpuRemove) {
|
|
|
|
if (!FeaturePcdGet (PcdCpuHotPlugSupport)) {
|
|
|
|
DEBUG ((DEBUG_ERROR, "gSmmCpuPrivate->Operation[%d] == SmmCpuRemove\n", CpuIndex));
|
|
|
|
}
|
2021-12-05 23:54:17 +01:00
|
|
|
|
2016-10-23 17:19:52 +02:00
|
|
|
return EFI_INVALID_PARAMETER;
|
|
|
|
}
|
2021-12-05 23:54:17 +01:00
|
|
|
|
2019-07-10 09:49:11 +02:00
|
|
|
if ((TimeoutInMicroseconds != 0) && ((mSmmMp.Attributes & EFI_MM_MP_TIMEOUT_SUPPORTED) == 0)) {
|
|
|
|
return EFI_INVALID_PARAMETER;
|
|
|
|
}
|
2021-12-05 23:54:17 +01:00
|
|
|
|
2019-07-10 09:49:11 +02:00
|
|
|
if (Procedure == NULL) {
|
|
|
|
return EFI_INVALID_PARAMETER;
|
|
|
|
}
|
2016-10-23 17:19:52 +02:00
|
|
|
|
2019-09-11 10:23:01 +02:00
|
|
|
AcquireSpinLock (mSmmMpSyncData->CpuData[CpuIndex].Busy);
|
2019-07-10 09:49:11 +02:00
|
|
|
|
2015-10-19 21:12:53 +02:00
|
|
|
mSmmMpSyncData->CpuData[CpuIndex].Procedure = Procedure;
|
|
|
|
mSmmMpSyncData->CpuData[CpuIndex].Parameter = ProcArguments;
|
2019-07-10 09:49:11 +02:00
|
|
|
if (Token != NULL) {
|
2021-01-27 08:45:25 +01:00
|
|
|
if (Token != &mSmmStartupThisApToken) {
|
|
|
|
//
|
|
|
|
// When Token points to mSmmStartupThisApToken, this routine is called
|
|
|
|
// from SmmStartupThisAp() in non-blocking mode (PcdCpuSmmBlockStartupThisAp == FALSE).
|
|
|
|
//
|
|
|
|
// In this case, caller wants to startup AP procedure in non-blocking
|
|
|
|
// mode and cannot get the completion status from the Token because there
|
|
|
|
// is no way to return the Token to caller from SmmStartupThisAp().
|
|
|
|
// Caller needs to use its implementation specific way to query the completion status.
|
|
|
|
//
|
|
|
|
// There is no need to allocate a token for such case so the 3 overheads
|
|
|
|
// can be avoided:
|
|
|
|
// 1. Call AllocateTokenBuffer() when there is no free token.
|
|
|
|
// 2. Get a free token from the token buffer.
|
|
|
|
// 3. Call ReleaseToken() in APHandler().
|
|
|
|
//
|
|
|
|
ProcToken = GetFreeToken (1);
|
|
|
|
mSmmMpSyncData->CpuData[CpuIndex].Token = ProcToken;
|
|
|
|
*Token = (MM_COMPLETION)ProcToken->SpinLock;
|
|
|
|
}
|
2019-07-10 09:49:11 +02:00
|
|
|
}
|
2021-12-05 23:54:17 +01:00
|
|
|
|
2019-07-10 09:49:11 +02:00
|
|
|
mSmmMpSyncData->CpuData[CpuIndex].Status = CpuStatus;
|
|
|
|
if (mSmmMpSyncData->CpuData[CpuIndex].Status != NULL) {
|
|
|
|
*mSmmMpSyncData->CpuData[CpuIndex].Status = EFI_NOT_READY;
|
|
|
|
}
|
|
|
|
|
2016-03-22 03:21:27 +01:00
|
|
|
ReleaseSemaphore (mSmmMpSyncData->CpuData[CpuIndex].Run);
|
2015-10-19 21:12:53 +02:00
|
|
|
|
2019-07-10 09:49:11 +02:00
|
|
|
if (Token == NULL) {
|
2016-03-22 03:21:27 +01:00
|
|
|
AcquireSpinLock (mSmmMpSyncData->CpuData[CpuIndex].Busy);
|
|
|
|
ReleaseSpinLock (mSmmMpSyncData->CpuData[CpuIndex].Busy);
|
2015-10-19 21:12:53 +02:00
|
|
|
}
|
2019-07-10 09:49:11 +02:00
|
|
|
|
|
|
|
return EFI_SUCCESS;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
Worker function to execute a caller provided function on all enabled APs.
|
|
|
|
|
|
|
|
@param[in] Procedure A pointer to the function to be run on
|
|
|
|
enabled APs of the system.
|
|
|
|
@param[in] TimeoutInMicroseconds Indicates the time limit in microseconds for
|
|
|
|
APs to return from Procedure, either for
|
|
|
|
blocking or non-blocking mode.
|
|
|
|
@param[in,out] ProcedureArguments The parameter passed into Procedure for
|
|
|
|
all APs.
|
|
|
|
@param[in,out] Token This is an optional parameter that allows the caller to execute the
|
|
|
|
procedure in a blocking or non-blocking fashion. If it is NULL the
|
|
|
|
call is blocking, and the call will not return until the AP has
|
|
|
|
completed the procedure. If the token is not NULL, the call will
|
|
|
|
return immediately. The caller can check whether the procedure has
|
|
|
|
completed with CheckOnProcedure or WaitForProcedure.
|
|
|
|
@param[in,out] CPUStatus This optional pointer may be used to get the status code returned
|
|
|
|
by Procedure when it completes execution on the target AP, or with
|
|
|
|
EFI_TIMEOUT if the Procedure fails to complete within the optional
|
|
|
|
timeout. The implementation will update this variable with
|
|
|
|
EFI_NOT_READY prior to starting Procedure on the target AP.
|
|
|
|
|
|
|
|
|
|
|
|
@retval EFI_SUCCESS In blocking mode, all APs have finished before
|
|
|
|
the timeout expired.
|
|
|
|
@retval EFI_SUCCESS In non-blocking mode, function has been dispatched
|
|
|
|
to all enabled APs.
|
|
|
|
@retval others Failed to Startup all APs.
|
|
|
|
|
|
|
|
**/
|
|
|
|
EFI_STATUS
|
|
|
|
InternalSmmStartupAllAPs (
|
|
|
|
IN EFI_AP_PROCEDURE2 Procedure,
|
|
|
|
IN UINTN TimeoutInMicroseconds,
|
|
|
|
IN OUT VOID *ProcedureArguments OPTIONAL,
|
|
|
|
IN OUT MM_COMPLETION *Token,
|
|
|
|
IN OUT EFI_STATUS *CPUStatus
|
|
|
|
)
|
|
|
|
{
|
|
|
|
UINTN Index;
|
|
|
|
UINTN CpuCount;
|
2019-12-23 07:15:04 +01:00
|
|
|
PROCEDURE_TOKEN *ProcToken;
|
2019-07-10 09:49:11 +02:00
|
|
|
|
|
|
|
if ((TimeoutInMicroseconds != 0) && ((mSmmMp.Attributes & EFI_MM_MP_TIMEOUT_SUPPORTED) == 0)) {
|
|
|
|
return EFI_INVALID_PARAMETER;
|
|
|
|
}
|
2021-12-05 23:54:17 +01:00
|
|
|
|
2019-07-10 09:49:11 +02:00
|
|
|
if (Procedure == NULL) {
|
|
|
|
return EFI_INVALID_PARAMETER;
|
|
|
|
}
|
|
|
|
|
|
|
|
CpuCount = 0;
|
2020-01-07 01:48:17 +01:00
|
|
|
for (Index = 0; Index < mMaxNumberOfCpus; Index++) {
|
2019-07-10 09:49:11 +02:00
|
|
|
if (IsPresentAp (Index)) {
|
|
|
|
CpuCount++;
|
|
|
|
|
|
|
|
if (gSmmCpuPrivate->Operation[Index] == SmmCpuRemove) {
|
|
|
|
return EFI_INVALID_PARAMETER;
|
|
|
|
}
|
|
|
|
|
|
|
|
if (!AcquireSpinLockOrFail (mSmmMpSyncData->CpuData[Index].Busy)) {
|
|
|
|
return EFI_NOT_READY;
|
|
|
|
}
|
2021-12-05 23:54:17 +01:00
|
|
|
|
2019-07-10 09:49:11 +02:00
|
|
|
ReleaseSpinLock (mSmmMpSyncData->CpuData[Index].Busy);
|
|
|
|
}
|
|
|
|
}
|
2021-12-05 23:54:17 +01:00
|
|
|
|
2019-07-10 09:49:11 +02:00
|
|
|
if (CpuCount == 0) {
|
|
|
|
return EFI_NOT_STARTED;
|
|
|
|
}
|
|
|
|
|
|
|
|
if (Token != NULL) {
|
2019-12-27 08:30:27 +01:00
|
|
|
ProcToken = GetFreeToken ((UINT32)mMaxNumberOfCpus);
|
2019-12-23 07:15:04 +01:00
|
|
|
*Token = (MM_COMPLETION)ProcToken->SpinLock;
|
|
|
|
} else {
|
|
|
|
ProcToken = NULL;
|
2019-07-10 09:49:11 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
//
|
|
|
|
// Make sure all BUSY should be acquired.
|
|
|
|
//
|
|
|
|
// Because former code already check mSmmMpSyncData->CpuData[***].Busy for each AP.
|
|
|
|
// Here code always use AcquireSpinLock instead of AcquireSpinLockOrFail for not
|
|
|
|
// block mode.
|
|
|
|
//
|
2020-01-07 01:48:17 +01:00
|
|
|
for (Index = 0; Index < mMaxNumberOfCpus; Index++) {
|
2019-07-10 09:49:11 +02:00
|
|
|
if (IsPresentAp (Index)) {
|
|
|
|
AcquireSpinLock (mSmmMpSyncData->CpuData[Index].Busy);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2020-01-07 01:48:17 +01:00
|
|
|
for (Index = 0; Index < mMaxNumberOfCpus; Index++) {
|
2019-07-10 09:49:11 +02:00
|
|
|
if (IsPresentAp (Index)) {
|
|
|
|
mSmmMpSyncData->CpuData[Index].Procedure = (EFI_AP_PROCEDURE2)Procedure;
|
|
|
|
mSmmMpSyncData->CpuData[Index].Parameter = ProcedureArguments;
|
2019-12-23 07:15:04 +01:00
|
|
|
if (ProcToken != NULL) {
|
|
|
|
mSmmMpSyncData->CpuData[Index].Token = ProcToken;
|
2019-07-10 09:49:11 +02:00
|
|
|
}
|
2021-12-05 23:54:17 +01:00
|
|
|
|
2019-07-10 09:49:11 +02:00
|
|
|
if (CPUStatus != NULL) {
|
|
|
|
mSmmMpSyncData->CpuData[Index].Status = &CPUStatus[Index];
|
|
|
|
if (mSmmMpSyncData->CpuData[Index].Status != NULL) {
|
|
|
|
*mSmmMpSyncData->CpuData[Index].Status = EFI_NOT_READY;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
} else {
|
|
|
|
//
|
|
|
|
// PI spec requirement:
|
|
|
|
// For every excluded processor, the array entry must contain a value of EFI_NOT_STARTED.
|
|
|
|
//
|
|
|
|
if (CPUStatus != NULL) {
|
|
|
|
CPUStatus[Index] = EFI_NOT_STARTED;
|
|
|
|
}
|
2019-12-23 07:15:04 +01:00
|
|
|
|
|
|
|
//
|
|
|
|
// Decrease the count to mark this processor(AP or BSP) as finished.
|
|
|
|
//
|
|
|
|
if (ProcToken != NULL) {
|
|
|
|
WaitForSemaphore (&ProcToken->RunningApCount);
|
|
|
|
}
|
2019-07-10 09:49:11 +02:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
ReleaseAllAPs ();
|
|
|
|
|
|
|
|
if (Token == NULL) {
|
|
|
|
//
|
|
|
|
// Make sure all APs have completed their tasks.
|
|
|
|
//
|
|
|
|
WaitForAllAPsNotBusy (TRUE);
|
|
|
|
}
|
|
|
|
|
|
|
|
return EFI_SUCCESS;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
ISO C99 6.5.2.2 "Function calls", paragraph 9:
|
|
|
|
If the function is defined with a type that is not compatible with
|
|
|
|
the type (of the expression) pointed to by the expression that
|
|
|
|
denotes the called function, the behavior is undefined.
|
|
|
|
|
|
|
|
So add below wrapper function to convert between EFI_AP_PROCEDURE
|
|
|
|
and EFI_AP_PROCEDURE2.
|
|
|
|
|
|
|
|
Wrapper for Procedures.
|
|
|
|
|
|
|
|
@param[in] Buffer Pointer to PROCEDURE_WRAPPER buffer.
|
|
|
|
|
|
|
|
**/
|
|
|
|
EFI_STATUS
|
|
|
|
EFIAPI
|
|
|
|
ProcedureWrapper (
|
2019-07-31 05:38:12 +02:00
|
|
|
IN VOID *Buffer
|
2019-07-10 09:49:11 +02:00
|
|
|
)
|
|
|
|
{
|
|
|
|
PROCEDURE_WRAPPER *Wrapper;
|
|
|
|
|
|
|
|
Wrapper = Buffer;
|
|
|
|
Wrapper->Procedure (Wrapper->ProcedureArgument);
|
|
|
|
|
2015-10-19 21:12:53 +02:00
|
|
|
return EFI_SUCCESS;
|
|
|
|
}
|
|
|
|
|
2016-10-23 17:19:52 +02:00
|
|
|
/**
|
|
|
|
Schedule a procedure to run on the specified CPU in blocking mode.
|
|
|
|
|
|
|
|
@param[in] Procedure The address of the procedure to run
|
|
|
|
@param[in] CpuIndex Target CPU Index
|
|
|
|
@param[in, out] ProcArguments The parameter to pass to the procedure
|
|
|
|
|
|
|
|
@retval EFI_INVALID_PARAMETER CpuNumber not valid
|
|
|
|
@retval EFI_INVALID_PARAMETER CpuNumber specifying BSP
|
|
|
|
@retval EFI_INVALID_PARAMETER The AP specified by CpuNumber did not enter SMM
|
|
|
|
@retval EFI_INVALID_PARAMETER The AP specified by CpuNumber is busy
|
|
|
|
@retval EFI_SUCCESS The procedure has been successfully scheduled
|
|
|
|
|
|
|
|
**/
|
|
|
|
EFI_STATUS
|
|
|
|
EFIAPI
|
|
|
|
SmmBlockingStartupThisAp (
|
|
|
|
IN EFI_AP_PROCEDURE Procedure,
|
|
|
|
IN UINTN CpuIndex,
|
|
|
|
IN OUT VOID *ProcArguments OPTIONAL
|
|
|
|
)
|
|
|
|
{
|
2019-07-10 09:49:11 +02:00
|
|
|
PROCEDURE_WRAPPER Wrapper;
|
|
|
|
|
|
|
|
Wrapper.Procedure = Procedure;
|
|
|
|
Wrapper.ProcedureArgument = ProcArguments;
|
|
|
|
|
|
|
|
//
|
|
|
|
// Use wrapper function to convert EFI_AP_PROCEDURE to EFI_AP_PROCEDURE2.
|
|
|
|
//
|
|
|
|
return InternalSmmStartupThisAp (ProcedureWrapper, CpuIndex, &Wrapper, NULL, 0, NULL);
|
2016-10-23 17:19:52 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
Schedule a procedure to run on the specified CPU.
|
|
|
|
|
|
|
|
@param Procedure The address of the procedure to run
|
|
|
|
@param CpuIndex Target CPU Index
|
|
|
|
@param ProcArguments The parameter to pass to the procedure
|
|
|
|
|
|
|
|
@retval EFI_INVALID_PARAMETER CpuNumber not valid
|
|
|
|
@retval EFI_INVALID_PARAMETER CpuNumber specifying BSP
|
|
|
|
@retval EFI_INVALID_PARAMETER The AP specified by CpuNumber did not enter SMM
|
|
|
|
@retval EFI_INVALID_PARAMETER The AP specified by CpuNumber is busy
|
|
|
|
@retval EFI_SUCCESS The procedure has been successfully scheduled
|
|
|
|
|
|
|
|
**/
|
|
|
|
EFI_STATUS
|
|
|
|
EFIAPI
|
|
|
|
SmmStartupThisAp (
|
|
|
|
IN EFI_AP_PROCEDURE Procedure,
|
|
|
|
IN UINTN CpuIndex,
|
|
|
|
IN OUT VOID *ProcArguments OPTIONAL
|
|
|
|
)
|
|
|
|
{
|
2019-07-10 09:49:11 +02:00
|
|
|
gSmmCpuPrivate->ApWrapperFunc[CpuIndex].Procedure = Procedure;
|
|
|
|
gSmmCpuPrivate->ApWrapperFunc[CpuIndex].ProcedureArgument = ProcArguments;
|
|
|
|
|
|
|
|
//
|
|
|
|
// Use wrapper function to convert EFI_AP_PROCEDURE to EFI_AP_PROCEDURE2.
|
|
|
|
//
|
|
|
|
return InternalSmmStartupThisAp (
|
|
|
|
ProcedureWrapper,
|
|
|
|
CpuIndex,
|
|
|
|
&gSmmCpuPrivate->ApWrapperFunc[CpuIndex],
|
2021-01-27 08:45:25 +01:00
|
|
|
FeaturePcdGet (PcdCpuSmmBlockStartupThisAp) ? NULL : &mSmmStartupThisApToken,
|
2019-07-10 09:49:11 +02:00
|
|
|
0,
|
|
|
|
NULL
|
|
|
|
);
|
2016-10-23 17:19:52 +02:00
|
|
|
}
|
|
|
|
|
2015-11-25 09:51:15 +01:00
|
|
|
/**
|
2015-12-24 01:13:47 +01:00
|
|
|
This function sets DR6 & DR7 according to SMM save state, before running SMM C code.
|
2015-11-25 09:51:15 +01:00
|
|
|
They are useful when you want to enable hardware breakpoints in SMM without entry SMM mode.
|
|
|
|
|
|
|
|
NOTE: It might not be appreciated in runtime since it might
|
|
|
|
conflict with OS debugging facilities. Turn them off in RELEASE.
|
|
|
|
|
|
|
|
@param CpuIndex CPU Index
|
|
|
|
|
|
|
|
**/
|
|
|
|
VOID
|
|
|
|
EFIAPI
|
|
|
|
CpuSmmDebugEntry (
|
|
|
|
IN UINTN CpuIndex
|
|
|
|
)
|
|
|
|
{
|
|
|
|
SMRAM_SAVE_STATE_MAP *CpuSaveState;
|
2018-06-27 15:14:20 +02:00
|
|
|
|
2015-11-25 09:51:15 +01:00
|
|
|
if (FeaturePcdGet (PcdCpuSmmDebug)) {
|
2016-10-23 17:19:52 +02:00
|
|
|
ASSERT (CpuIndex < mMaxNumberOfCpus);
|
2015-12-24 01:13:47 +01:00
|
|
|
CpuSaveState = (SMRAM_SAVE_STATE_MAP *)gSmmCpuPrivate->CpuSaveState[CpuIndex];
|
2015-11-25 09:51:15 +01:00
|
|
|
if (mSmmSaveStateRegisterLma == EFI_SMM_SAVE_STATE_REGISTER_LMA_32BIT) {
|
|
|
|
AsmWriteDr6 (CpuSaveState->x86._DR6);
|
|
|
|
AsmWriteDr7 (CpuSaveState->x86._DR7);
|
|
|
|
} else {
|
|
|
|
AsmWriteDr6 ((UINTN)CpuSaveState->x64._DR6);
|
|
|
|
AsmWriteDr7 ((UINTN)CpuSaveState->x64._DR7);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
2015-12-24 01:13:47 +01:00
|
|
|
This function restores DR6 & DR7 to SMM save state.
|
2015-11-25 09:51:15 +01:00
|
|
|
|
|
|
|
NOTE: It might not be appreciated in runtime since it might
|
|
|
|
conflict with OS debugging facilities. Turn them off in RELEASE.
|
|
|
|
|
|
|
|
@param CpuIndex CPU Index
|
|
|
|
|
|
|
|
**/
|
|
|
|
VOID
|
|
|
|
EFIAPI
|
|
|
|
CpuSmmDebugExit (
|
|
|
|
IN UINTN CpuIndex
|
|
|
|
)
|
|
|
|
{
|
|
|
|
SMRAM_SAVE_STATE_MAP *CpuSaveState;
|
|
|
|
|
|
|
|
if (FeaturePcdGet (PcdCpuSmmDebug)) {
|
2016-10-23 17:19:52 +02:00
|
|
|
ASSERT (CpuIndex < mMaxNumberOfCpus);
|
2015-12-24 01:13:47 +01:00
|
|
|
CpuSaveState = (SMRAM_SAVE_STATE_MAP *)gSmmCpuPrivate->CpuSaveState[CpuIndex];
|
2015-11-25 09:51:15 +01:00
|
|
|
if (mSmmSaveStateRegisterLma == EFI_SMM_SAVE_STATE_REGISTER_LMA_32BIT) {
|
|
|
|
CpuSaveState->x86._DR7 = (UINT32)AsmReadDr7 ();
|
|
|
|
CpuSaveState->x86._DR6 = (UINT32)AsmReadDr6 ();
|
|
|
|
} else {
|
|
|
|
CpuSaveState->x64._DR7 = AsmReadDr7 ();
|
|
|
|
CpuSaveState->x64._DR6 = AsmReadDr6 ();
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2015-10-19 21:12:53 +02:00
|
|
|
/**
|
|
|
|
C function for SMI entry, each processor comes here upon SMI trigger.
|
|
|
|
|
|
|
|
@param CpuIndex CPU Index
|
|
|
|
|
|
|
|
**/
|
|
|
|
VOID
|
|
|
|
EFIAPI
|
|
|
|
SmiRendezvous (
|
|
|
|
IN UINTN CpuIndex
|
|
|
|
)
|
|
|
|
{
|
2016-04-08 07:55:14 +02:00
|
|
|
EFI_STATUS Status;
|
|
|
|
BOOLEAN ValidSmi;
|
|
|
|
BOOLEAN IsBsp;
|
|
|
|
BOOLEAN BspInProgress;
|
|
|
|
UINTN Index;
|
|
|
|
UINTN Cr2;
|
2016-10-23 17:19:52 +02:00
|
|
|
|
|
|
|
ASSERT (CpuIndex < mMaxNumberOfCpus);
|
2015-10-19 21:12:53 +02:00
|
|
|
|
UefiCpuPkg/PiSmmCpuDxeSmm: Consume SMM Base Hob for SmBase info
REF: https://bugzilla.tianocore.org/show_bug.cgi?id=4337
Existing SMBASE Relocation is in the PiSmmCpuDxeSmm driver, which
will relocate the SMBASE of each processor by setting the SMBASE
field in the saved state map (at offset 7EF8h) to a new value.
The RSM instruction reloads the internal SMBASE register with the
value in SMBASE field when each time it exits SMM. All subsequent
SMI requests will use the new SMBASE to find the starting address
for the SMI handler (at SMBASE + 8000h).
Due to the default SMBASE for all x86 processors is 0x30000, the
APs' 1st SMI for rebase has to be executed one by one to avoid
the processors over-writing each other's SMM Save State Area (see
existing SmmRelocateBases() function), which means the next AP has
to wait for the previous AP to finish its 1st SMI, then it can call
into its 1st SMI for rebase via Smi Ipi command, thus leading the
existing SMBASE Relocation has to be running in series. Besides, it
needs very complex code to handle the AP exit semaphore
(mRebased[Index]), which will hook return address of SMM Save State
so that semaphore code can be executed immediately after AP exits
SMM for SMBASE relocation (see existing SemaphoreHook() function).
With SMM Base Hob support, PiSmmCpuDxeSmm does not need the RSM
instruction to do the SMBASE Relocation. SMBASE Register for each
processors have already been programmed and all SMBASE address have
recorded in SMM Base Hob. So the same default SMBASE Address
(0x30000) will not be used, thus the processors over-writing each
other's SMM Save State Area will not happen in PiSmmCpuDxeSmm driver.
This way makes the first SMI init can be executed in parallel and
save boot time on multi-core system. Besides, Semaphore Hook code
logic is also not required, which will greatly simplify the SMBASE
Relocation flow.
Mainly changes as below:
* Assume the biggest possibility of tile size is 8k.
* Combine 2 SMIs (gcSmmInitTemplate & gcSmiHandlerTemplate) into one
(gcSmiHandlerTemplate), the new SMI handler needs to run to 2 paths:
one to SmmCpuFeaturesInitializeProcessor(), the other to SMM Core
Entry Point.
* Issue SMI IPI (All Excluding Self SMM IPI + BSP SMM IPI) for first
SMI init before normal SMI sources happen.
* Call SmmCpuFeaturesInitializeProcessor() in parallel.
Cc: Eric Dong <eric.dong@intel.com>
Cc: Ray Ni <ray.ni@intel.com>
Cc: Zeng Star <star.zeng@intel.com>
Cc: Laszlo Ersek <lersek@redhat.com>
Acked-by: Gerd Hoffmann <kraxel@redhat.com>
Cc: Rahul Kumar <rahul1.kumar@intel.com>
Signed-off-by: Jiaxin Wu <jiaxin.wu@intel.com>
Reviewed-by: Ray Ni <ray.ni@intel.com>
2023-02-16 07:16:31 +01:00
|
|
|
if (mSmmRelocated) {
|
|
|
|
ASSERT (mSmmInitialized != NULL);
|
|
|
|
}
|
|
|
|
|
2015-10-19 21:12:53 +02:00
|
|
|
//
|
2019-04-01 10:16:01 +02:00
|
|
|
// Save Cr2 because Page Fault exception in SMM may override its value,
|
|
|
|
// when using on-demand paging for above 4G memory.
|
2015-10-19 21:12:53 +02:00
|
|
|
//
|
2019-04-01 10:16:01 +02:00
|
|
|
Cr2 = 0;
|
|
|
|
SaveCr2 (&Cr2);
|
2015-10-19 21:12:53 +02:00
|
|
|
|
UefiCpuPkg/PiSmmCpuDxeSmm: Consume SMM Base Hob for SmBase info
REF: https://bugzilla.tianocore.org/show_bug.cgi?id=4337
Existing SMBASE Relocation is in the PiSmmCpuDxeSmm driver, which
will relocate the SMBASE of each processor by setting the SMBASE
field in the saved state map (at offset 7EF8h) to a new value.
The RSM instruction reloads the internal SMBASE register with the
value in SMBASE field when each time it exits SMM. All subsequent
SMI requests will use the new SMBASE to find the starting address
for the SMI handler (at SMBASE + 8000h).
Due to the default SMBASE for all x86 processors is 0x30000, the
APs' 1st SMI for rebase has to be executed one by one to avoid
the processors over-writing each other's SMM Save State Area (see
existing SmmRelocateBases() function), which means the next AP has
to wait for the previous AP to finish its 1st SMI, then it can call
into its 1st SMI for rebase via Smi Ipi command, thus leading the
existing SMBASE Relocation has to be running in series. Besides, it
needs very complex code to handle the AP exit semaphore
(mRebased[Index]), which will hook return address of SMM Save State
so that semaphore code can be executed immediately after AP exits
SMM for SMBASE relocation (see existing SemaphoreHook() function).
With SMM Base Hob support, PiSmmCpuDxeSmm does not need the RSM
instruction to do the SMBASE Relocation. SMBASE Register for each
processors have already been programmed and all SMBASE address have
recorded in SMM Base Hob. So the same default SMBASE Address
(0x30000) will not be used, thus the processors over-writing each
other's SMM Save State Area will not happen in PiSmmCpuDxeSmm driver.
This way makes the first SMI init can be executed in parallel and
save boot time on multi-core system. Besides, Semaphore Hook code
logic is also not required, which will greatly simplify the SMBASE
Relocation flow.
Mainly changes as below:
* Assume the biggest possibility of tile size is 8k.
* Combine 2 SMIs (gcSmmInitTemplate & gcSmiHandlerTemplate) into one
(gcSmiHandlerTemplate), the new SMI handler needs to run to 2 paths:
one to SmmCpuFeaturesInitializeProcessor(), the other to SMM Core
Entry Point.
* Issue SMI IPI (All Excluding Self SMM IPI + BSP SMM IPI) for first
SMI init before normal SMI sources happen.
* Call SmmCpuFeaturesInitializeProcessor() in parallel.
Cc: Eric Dong <eric.dong@intel.com>
Cc: Ray Ni <ray.ni@intel.com>
Cc: Zeng Star <star.zeng@intel.com>
Cc: Laszlo Ersek <lersek@redhat.com>
Acked-by: Gerd Hoffmann <kraxel@redhat.com>
Cc: Rahul Kumar <rahul1.kumar@intel.com>
Signed-off-by: Jiaxin Wu <jiaxin.wu@intel.com>
Reviewed-by: Ray Ni <ray.ni@intel.com>
2023-02-16 07:16:31 +01:00
|
|
|
if (mSmmRelocated && !mSmmInitialized[CpuIndex]) {
|
|
|
|
//
|
|
|
|
// Perform SmmInitHandler for CpuIndex
|
|
|
|
//
|
|
|
|
SmmInitHandler ();
|
|
|
|
|
|
|
|
//
|
|
|
|
// Restore Cr2
|
|
|
|
//
|
|
|
|
RestoreCr2 (Cr2);
|
|
|
|
|
|
|
|
//
|
|
|
|
// Mark the first SMI init for CpuIndex has been done so as to avoid the reentry.
|
|
|
|
//
|
|
|
|
mSmmInitialized[CpuIndex] = TRUE;
|
|
|
|
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
2019-07-10 09:49:11 +02:00
|
|
|
//
|
|
|
|
// Call the user register Startup function first.
|
|
|
|
//
|
|
|
|
if (mSmmMpSyncData->StartupProcedure != NULL) {
|
|
|
|
mSmmMpSyncData->StartupProcedure (mSmmMpSyncData->StartupProcArgs);
|
|
|
|
}
|
|
|
|
|
2015-10-19 21:12:53 +02:00
|
|
|
//
|
|
|
|
// Perform CPU specific entry hooks
|
|
|
|
//
|
|
|
|
SmmCpuFeaturesRendezvousEntry (CpuIndex);
|
|
|
|
|
|
|
|
//
|
|
|
|
// Determine if this is a valid SMI
|
|
|
|
//
|
|
|
|
ValidSmi = PlatformValidSmi ();
|
|
|
|
|
|
|
|
//
|
|
|
|
// Determine if BSP has been already in progress. Note this must be checked after
|
|
|
|
// ValidSmi because BSP may clear a valid SMI source after checking in.
|
|
|
|
//
|
2016-03-22 03:15:53 +01:00
|
|
|
BspInProgress = *mSmmMpSyncData->InsideSmm;
|
2015-10-19 21:12:53 +02:00
|
|
|
|
|
|
|
if (!BspInProgress && !ValidSmi) {
|
|
|
|
//
|
|
|
|
// If we reach here, it means when we sampled the ValidSmi flag, SMI status had not
|
|
|
|
// been cleared by BSP in a new SMI run (so we have a truly invalid SMI), or SMI
|
|
|
|
// status had been cleared by BSP and an existing SMI run has almost ended. (Note
|
|
|
|
// we sampled ValidSmi flag BEFORE judging BSP-in-progress status.) In both cases, there
|
|
|
|
// is nothing we need to do.
|
|
|
|
//
|
|
|
|
goto Exit;
|
|
|
|
} else {
|
|
|
|
//
|
|
|
|
// Signal presence of this processor
|
2022-11-30 06:13:56 +01:00
|
|
|
// mSmmMpSyncData->Counter is increased here!
|
|
|
|
// "ReleaseSemaphore (mSmmMpSyncData->Counter) == 0" means BSP has already ended the synchronization.
|
2015-10-19 21:12:53 +02:00
|
|
|
//
|
2016-03-22 03:15:53 +01:00
|
|
|
if (ReleaseSemaphore (mSmmMpSyncData->Counter) == 0) {
|
2015-10-19 21:12:53 +02:00
|
|
|
//
|
|
|
|
// BSP has already ended the synchronization, so QUIT!!!
|
2022-11-30 06:13:56 +01:00
|
|
|
// Existing AP is too late now to enter SMI since BSP has already ended the synchronization!!!
|
2015-10-19 21:12:53 +02:00
|
|
|
//
|
|
|
|
|
|
|
|
//
|
|
|
|
// Wait for BSP's signal to finish SMI
|
|
|
|
//
|
2016-03-22 03:15:53 +01:00
|
|
|
while (*mSmmMpSyncData->AllCpusInSync) {
|
2015-10-19 21:12:53 +02:00
|
|
|
CpuPause ();
|
|
|
|
}
|
2021-12-05 23:54:17 +01:00
|
|
|
|
2015-10-19 21:12:53 +02:00
|
|
|
goto Exit;
|
|
|
|
} else {
|
|
|
|
//
|
|
|
|
// The BUSY lock is initialized to Released state.
|
|
|
|
// This needs to be done early enough to be ready for BSP's SmmStartupThisAp() call.
|
|
|
|
// E.g., with Relaxed AP flow, SmmStartupThisAp() may be called immediately
|
|
|
|
// after AP's present flag is detected.
|
|
|
|
//
|
2016-03-22 03:21:27 +01:00
|
|
|
InitializeSpinLock (mSmmMpSyncData->CpuData[CpuIndex].Busy);
|
2015-10-19 21:12:53 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
if (FeaturePcdGet (PcdCpuSmmProfileEnable)) {
|
|
|
|
ActivateSmmProfile (CpuIndex);
|
|
|
|
}
|
|
|
|
|
|
|
|
if (BspInProgress) {
|
|
|
|
//
|
|
|
|
// BSP has been elected. Follow AP path, regardless of ValidSmi flag
|
|
|
|
// as BSP may have cleared the SMI status
|
|
|
|
//
|
|
|
|
APHandler (CpuIndex, ValidSmi, mSmmMpSyncData->EffectiveSyncMode);
|
|
|
|
} else {
|
|
|
|
//
|
|
|
|
// We have a valid SMI
|
|
|
|
//
|
|
|
|
|
|
|
|
//
|
|
|
|
// Elect BSP
|
|
|
|
//
|
|
|
|
IsBsp = FALSE;
|
|
|
|
if (FeaturePcdGet (PcdCpuSmmEnableBspElection)) {
|
|
|
|
if (!mSmmMpSyncData->SwitchBsp || mSmmMpSyncData->CandidateBsp[CpuIndex]) {
|
|
|
|
//
|
|
|
|
// Call platform hook to do BSP election
|
|
|
|
//
|
|
|
|
Status = PlatformSmmBspElection (&IsBsp);
|
|
|
|
if (EFI_SUCCESS == Status) {
|
|
|
|
//
|
|
|
|
// Platform hook determines successfully
|
|
|
|
//
|
|
|
|
if (IsBsp) {
|
|
|
|
mSmmMpSyncData->BspIndex = (UINT32)CpuIndex;
|
|
|
|
}
|
|
|
|
} else {
|
|
|
|
//
|
|
|
|
// Platform hook fails to determine, use default BSP election method
|
|
|
|
//
|
|
|
|
InterlockedCompareExchange32 (
|
|
|
|
(UINT32 *)&mSmmMpSyncData->BspIndex,
|
|
|
|
(UINT32)-1,
|
|
|
|
(UINT32)CpuIndex
|
|
|
|
);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
//
|
|
|
|
// "mSmmMpSyncData->BspIndex == CpuIndex" means this is the BSP
|
|
|
|
//
|
|
|
|
if (mSmmMpSyncData->BspIndex == CpuIndex) {
|
|
|
|
//
|
|
|
|
// Clear last request for SwitchBsp.
|
|
|
|
//
|
|
|
|
if (mSmmMpSyncData->SwitchBsp) {
|
|
|
|
mSmmMpSyncData->SwitchBsp = FALSE;
|
|
|
|
for (Index = 0; Index < mMaxNumberOfCpus; Index++) {
|
|
|
|
mSmmMpSyncData->CandidateBsp[Index] = FALSE;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
if (FeaturePcdGet (PcdCpuSmmProfileEnable)) {
|
|
|
|
SmmProfileRecordSmiNum ();
|
|
|
|
}
|
|
|
|
|
|
|
|
//
|
|
|
|
// BSP Handler is always called with a ValidSmi == TRUE
|
|
|
|
//
|
|
|
|
BSPHandler (CpuIndex, mSmmMpSyncData->EffectiveSyncMode);
|
|
|
|
} else {
|
|
|
|
APHandler (CpuIndex, ValidSmi, mSmmMpSyncData->EffectiveSyncMode);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2016-03-22 03:21:27 +01:00
|
|
|
ASSERT (*mSmmMpSyncData->CpuData[CpuIndex].Run == 0);
|
2015-10-19 21:12:53 +02:00
|
|
|
|
|
|
|
//
|
|
|
|
// Wait for BSP's signal to exit SMI
|
|
|
|
//
|
2016-03-22 03:15:53 +01:00
|
|
|
while (*mSmmMpSyncData->AllCpusInSync) {
|
2015-10-19 21:12:53 +02:00
|
|
|
CpuPause ();
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
Exit:
|
|
|
|
SmmCpuFeaturesRendezvousExit (CpuIndex);
|
2019-04-01 10:16:01 +02:00
|
|
|
|
2015-10-19 21:12:53 +02:00
|
|
|
//
|
|
|
|
// Restore Cr2
|
|
|
|
//
|
2019-04-01 10:16:01 +02:00
|
|
|
RestoreCr2 (Cr2);
|
2015-10-19 21:12:53 +02:00
|
|
|
}
|
|
|
|
|
2022-11-30 06:13:56 +01:00
|
|
|
/**
|
|
|
|
Initialize PackageBsp Info. Processor specified by mPackageFirstThreadIndex[PackageIndex]
|
|
|
|
will do the package-scope register programming. Set default CpuIndex to (UINT32)-1, which
|
|
|
|
means not specified yet.
|
|
|
|
|
|
|
|
**/
|
|
|
|
VOID
|
|
|
|
InitPackageFirstThreadIndexInfo (
|
|
|
|
VOID
|
|
|
|
)
|
|
|
|
{
|
|
|
|
UINT32 Index;
|
|
|
|
UINT32 PackageId;
|
|
|
|
UINT32 PackageCount;
|
|
|
|
|
|
|
|
PackageId = 0;
|
|
|
|
PackageCount = 0;
|
|
|
|
|
|
|
|
//
|
|
|
|
// Count the number of package, set to max PackageId + 1
|
|
|
|
//
|
|
|
|
for (Index = 0; Index < mNumberOfCpus; Index++) {
|
|
|
|
if (PackageId < gSmmCpuPrivate->ProcessorInfo[Index].Location.Package) {
|
|
|
|
PackageId = gSmmCpuPrivate->ProcessorInfo[Index].Location.Package;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
PackageCount = PackageId + 1;
|
|
|
|
|
|
|
|
mPackageFirstThreadIndex = (UINT32 *)AllocatePool (sizeof (UINT32) * PackageCount);
|
|
|
|
ASSERT (mPackageFirstThreadIndex != NULL);
|
|
|
|
if (mPackageFirstThreadIndex == NULL) {
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
|
|
|
//
|
|
|
|
// Set default CpuIndex to (UINT32)-1, which means not specified yet.
|
|
|
|
//
|
|
|
|
SetMem32 (mPackageFirstThreadIndex, sizeof (UINT32) * PackageCount, (UINT32)-1);
|
|
|
|
}
|
|
|
|
|
2019-07-10 09:49:11 +02:00
|
|
|
/**
|
|
|
|
Allocate buffer for SpinLock and Wrapper function buffer.
|
|
|
|
|
|
|
|
**/
|
|
|
|
VOID
|
|
|
|
InitializeDataForMmMp (
|
|
|
|
VOID
|
|
|
|
)
|
|
|
|
{
|
|
|
|
gSmmCpuPrivate->ApWrapperFunc = AllocatePool (sizeof (PROCEDURE_WRAPPER) * gSmmCpuPrivate->SmmCoreEntryContext.NumberOfCpus);
|
|
|
|
ASSERT (gSmmCpuPrivate->ApWrapperFunc != NULL);
|
|
|
|
|
|
|
|
InitializeListHead (&gSmmCpuPrivate->TokenList);
|
2019-12-27 08:30:27 +01:00
|
|
|
|
2020-04-10 04:51:26 +02:00
|
|
|
gSmmCpuPrivate->FirstFreeToken = AllocateTokenBuffer ();
|
2019-07-10 09:49:11 +02:00
|
|
|
}
|
|
|
|
|
2016-03-22 02:55:28 +01:00
|
|
|
/**
|
|
|
|
Allocate buffer for all semaphores and spin locks.
|
|
|
|
|
|
|
|
**/
|
|
|
|
VOID
|
|
|
|
InitializeSmmCpuSemaphores (
|
|
|
|
VOID
|
|
|
|
)
|
|
|
|
{
|
|
|
|
UINTN ProcessorCount;
|
|
|
|
UINTN TotalSize;
|
|
|
|
UINTN GlobalSemaphoresSize;
|
2016-03-22 03:19:23 +01:00
|
|
|
UINTN CpuSemaphoresSize;
|
2016-03-22 02:55:28 +01:00
|
|
|
UINTN SemaphoreSize;
|
|
|
|
UINTN Pages;
|
|
|
|
UINTN *SemaphoreBlock;
|
|
|
|
UINTN SemaphoreAddr;
|
2021-12-05 23:54:17 +01:00
|
|
|
|
2016-03-22 02:55:28 +01:00
|
|
|
SemaphoreSize = GetSpinLockProperties ();
|
|
|
|
ProcessorCount = gSmmCpuPrivate->SmmCoreEntryContext.NumberOfCpus;
|
|
|
|
GlobalSemaphoresSize = (sizeof (SMM_CPU_SEMAPHORE_GLOBAL) / sizeof (VOID *)) * SemaphoreSize;
|
2016-03-22 03:19:23 +01:00
|
|
|
CpuSemaphoresSize = (sizeof (SMM_CPU_SEMAPHORE_CPU) / sizeof (VOID *)) * ProcessorCount * SemaphoreSize;
|
2018-10-25 04:03:57 +02:00
|
|
|
TotalSize = GlobalSemaphoresSize + CpuSemaphoresSize;
|
2021-11-17 04:21:42 +01:00
|
|
|
DEBUG ((DEBUG_INFO, "One Semaphore Size = 0x%x\n", SemaphoreSize));
|
|
|
|
DEBUG ((DEBUG_INFO, "Total Semaphores Size = 0x%x\n", TotalSize));
|
2016-03-22 02:55:28 +01:00
|
|
|
Pages = EFI_SIZE_TO_PAGES (TotalSize);
|
|
|
|
SemaphoreBlock = AllocatePages (Pages);
|
|
|
|
ASSERT (SemaphoreBlock != NULL);
|
|
|
|
ZeroMem (SemaphoreBlock, TotalSize);
|
|
|
|
|
|
|
|
SemaphoreAddr = (UINTN)SemaphoreBlock;
|
|
|
|
mSmmCpuSemaphores.SemaphoreGlobal.Counter = (UINT32 *)SemaphoreAddr;
|
|
|
|
SemaphoreAddr += SemaphoreSize;
|
|
|
|
mSmmCpuSemaphores.SemaphoreGlobal.InsideSmm = (BOOLEAN *)SemaphoreAddr;
|
|
|
|
SemaphoreAddr += SemaphoreSize;
|
|
|
|
mSmmCpuSemaphores.SemaphoreGlobal.AllCpusInSync = (BOOLEAN *)SemaphoreAddr;
|
|
|
|
SemaphoreAddr += SemaphoreSize;
|
|
|
|
mSmmCpuSemaphores.SemaphoreGlobal.PFLock = (SPIN_LOCK *)SemaphoreAddr;
|
|
|
|
SemaphoreAddr += SemaphoreSize;
|
|
|
|
mSmmCpuSemaphores.SemaphoreGlobal.CodeAccessCheckLock
|
|
|
|
= (SPIN_LOCK *)SemaphoreAddr;
|
2016-06-29 03:00:13 +02:00
|
|
|
SemaphoreAddr += SemaphoreSize;
|
|
|
|
|
2016-03-22 03:19:23 +01:00
|
|
|
SemaphoreAddr = (UINTN)SemaphoreBlock + GlobalSemaphoresSize;
|
|
|
|
mSmmCpuSemaphores.SemaphoreCpu.Busy = (SPIN_LOCK *)SemaphoreAddr;
|
|
|
|
SemaphoreAddr += ProcessorCount * SemaphoreSize;
|
|
|
|
mSmmCpuSemaphores.SemaphoreCpu.Run = (UINT32 *)SemaphoreAddr;
|
|
|
|
SemaphoreAddr += ProcessorCount * SemaphoreSize;
|
|
|
|
mSmmCpuSemaphores.SemaphoreCpu.Present = (BOOLEAN *)SemaphoreAddr;
|
|
|
|
|
2016-03-22 03:15:53 +01:00
|
|
|
mPFLock = mSmmCpuSemaphores.SemaphoreGlobal.PFLock;
|
|
|
|
mConfigSmmCodeAccessCheckLock = mSmmCpuSemaphores.SemaphoreGlobal.CodeAccessCheckLock;
|
|
|
|
|
2016-03-22 02:55:28 +01:00
|
|
|
mSemaphoreSize = SemaphoreSize;
|
|
|
|
}
|
2015-10-19 21:12:53 +02:00
|
|
|
|
|
|
|
/**
|
|
|
|
Initialize un-cacheable data.
|
|
|
|
|
|
|
|
**/
|
|
|
|
VOID
|
|
|
|
EFIAPI
|
|
|
|
InitializeMpSyncData (
|
|
|
|
VOID
|
|
|
|
)
|
|
|
|
{
|
2016-06-27 09:41:50 +02:00
|
|
|
UINTN CpuIndex;
|
|
|
|
|
2015-10-19 21:12:53 +02:00
|
|
|
if (mSmmMpSyncData != NULL) {
|
2016-07-15 08:24:28 +02:00
|
|
|
//
|
|
|
|
// mSmmMpSyncDataSize includes one structure of SMM_DISPATCHER_MP_SYNC_DATA, one
|
|
|
|
// CpuData array of SMM_CPU_DATA_BLOCK and one CandidateBsp array of BOOLEAN.
|
|
|
|
//
|
|
|
|
ZeroMem (mSmmMpSyncData, mSmmMpSyncDataSize);
|
2015-10-19 21:12:53 +02:00
|
|
|
mSmmMpSyncData->CpuData = (SMM_CPU_DATA_BLOCK *)((UINT8 *)mSmmMpSyncData + sizeof (SMM_DISPATCHER_MP_SYNC_DATA));
|
|
|
|
mSmmMpSyncData->CandidateBsp = (BOOLEAN *)(mSmmMpSyncData->CpuData + gSmmCpuPrivate->SmmCoreEntryContext.NumberOfCpus);
|
|
|
|
if (FeaturePcdGet (PcdCpuSmmEnableBspElection)) {
|
|
|
|
//
|
|
|
|
// Enable BSP election by setting BspIndex to -1
|
|
|
|
//
|
|
|
|
mSmmMpSyncData->BspIndex = (UINT32)-1;
|
|
|
|
}
|
2021-12-05 23:54:17 +01:00
|
|
|
|
UefiCpuPkg/PiSmmCpuDxeSmm: dynamic PcdCpuSmmApSyncTimeout, PcdCpuSmmSyncMode
Move the declaration of these PCDs from the
[PcdsFixedAtBuild, PcdsPatchableInModule]
section of "UefiCpuPkg/UefiCpuPkg.dec" to the
[PcdsFixedAtBuild, PcdsPatchableInModule, PcdsDynamic, PcdsDynamicEx]
section. Their types, default values, and token values remain unchanged.
Only UefiCpuPkg/PiSmmCpuDxeSmm consumes these PCDs, specifically on the
call stack of its entry point function, and it turns them into static or
dynamically allocated data in SMRAM:
PiCpuSmmEntry() [PiSmmCpuDxeSmm.c]
InitializeSmmTimer() [SyncTimer.c]
PcdCpuSmmApSyncTimeout
-> mTimeoutTicker
InitializeMpServiceData() [MpService.c]
InitializeMpSyncData() [MpService.c]
PcdCpuSmmSyncMode
-> mSmmMpSyncData->EffectiveSyncMode
However, there's another call path to fetching "PcdCpuSmmSyncMode", namely
SmmInitHandler() [PiSmmCpuDxeSmm.c]
InitializeMpSyncData() [MpService.c]
PcdCpuSmmSyncMode
-> mSmmMpSyncData->EffectiveSyncMode
and this path is exercised during S3 resume (as stated by the comment in
SmmInitHandler() too, "Initialize private data during S3 resume").
While we can call the PCD protocol (via PcdLib) for fetching dynamic PCDs
in the entry point function, we cannot do that at S3 resume. Therefore
pre-fetch PcdCpuSmmSyncMode into a new global variable (which lives in
SMRAM) in InitializeMpServiceData(), just before calling
InitializeMpSyncData(). This way InitializeMpSyncData() can retrieve the
stashed PCD value from SMRAM, regardless of the boot mode.
Cc: Jeff Fan <jeff.fan@intel.com>
Cc: Jordan Justen <jordan.l.justen@intel.com>
Cc: Michael Kinney <michael.d.kinney@intel.com>
Cc: Paolo Bonzini <pbonzini@redhat.com>
Ref: https://bugzilla.tianocore.org/show_bug.cgi?id=230
Contributed-under: TianoCore Contribution Agreement 1.0
Signed-off-by: Laszlo Ersek <lersek@redhat.com>
Reviewed-by: Jeff Fan <jeff.fan@intel.com>
2016-11-17 21:13:29 +01:00
|
|
|
mSmmMpSyncData->EffectiveSyncMode = mCpuSmmSyncMode;
|
2016-03-22 02:55:28 +01:00
|
|
|
|
2016-06-27 09:41:50 +02:00
|
|
|
mSmmMpSyncData->Counter = mSmmCpuSemaphores.SemaphoreGlobal.Counter;
|
|
|
|
mSmmMpSyncData->InsideSmm = mSmmCpuSemaphores.SemaphoreGlobal.InsideSmm;
|
|
|
|
mSmmMpSyncData->AllCpusInSync = mSmmCpuSemaphores.SemaphoreGlobal.AllCpusInSync;
|
|
|
|
ASSERT (
|
|
|
|
mSmmMpSyncData->Counter != NULL && mSmmMpSyncData->InsideSmm != NULL &&
|
|
|
|
mSmmMpSyncData->AllCpusInSync != NULL
|
|
|
|
);
|
|
|
|
*mSmmMpSyncData->Counter = 0;
|
|
|
|
*mSmmMpSyncData->InsideSmm = FALSE;
|
|
|
|
*mSmmMpSyncData->AllCpusInSync = FALSE;
|
|
|
|
|
2022-03-01 12:22:19 +01:00
|
|
|
mSmmMpSyncData->AllApArrivedWithException = FALSE;
|
|
|
|
|
2016-06-27 09:41:50 +02:00
|
|
|
for (CpuIndex = 0; CpuIndex < gSmmCpuPrivate->SmmCoreEntryContext.NumberOfCpus; CpuIndex++) {
|
|
|
|
mSmmMpSyncData->CpuData[CpuIndex].Busy =
|
|
|
|
(SPIN_LOCK *)((UINTN)mSmmCpuSemaphores.SemaphoreCpu.Busy + mSemaphoreSize * CpuIndex);
|
|
|
|
mSmmMpSyncData->CpuData[CpuIndex].Run =
|
|
|
|
(UINT32 *)((UINTN)mSmmCpuSemaphores.SemaphoreCpu.Run + mSemaphoreSize * CpuIndex);
|
|
|
|
mSmmMpSyncData->CpuData[CpuIndex].Present =
|
|
|
|
(BOOLEAN *)((UINTN)mSmmCpuSemaphores.SemaphoreCpu.Present + mSemaphoreSize * CpuIndex);
|
2016-11-29 08:48:32 +01:00
|
|
|
*(mSmmMpSyncData->CpuData[CpuIndex].Busy) = 0;
|
|
|
|
*(mSmmMpSyncData->CpuData[CpuIndex].Run) = 0;
|
|
|
|
*(mSmmMpSyncData->CpuData[CpuIndex].Present) = FALSE;
|
2016-06-27 09:41:50 +02:00
|
|
|
}
|
2015-10-19 21:12:53 +02:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
Initialize global data for MP synchronization.
|
|
|
|
|
UefiCpuPkg/PiSmmCpu: Add Shadow Stack Support for X86 SMM.
REF: https://bugzilla.tianocore.org/show_bug.cgi?id=1521
We scan the SMM code with ROPgadget.
http://shell-storm.org/project/ROPgadget/
https://github.com/JonathanSalwan/ROPgadget/tree/master
This tool reports the gadget in SMM driver.
This patch enabled CET ShadowStack for X86 SMM.
If CET is supported, SMM will enable CET ShadowStack.
SMM CET will save the OS CET context at SmmEntry and
restore OS CET context at SmmExit.
Test:
1) test Intel internal platform (x64 only, CET enabled/disabled)
Boot test:
CET supported or not supported CPU
on CET supported platform
CET enabled/disabled
PcdCpuSmmCetEnable enabled/disabled
Single core/Multiple core
PcdCpuSmmStackGuard enabled/disabled
PcdCpuSmmProfileEnable enabled/disabled
PcdCpuSmmStaticPageTable enabled/disabled
CET exception test:
#CF generated with PcdCpuSmmStackGuard enabled/disabled.
Other exception test:
#PF for normal stack overflow
#PF for NX protection
#PF for RO protection
CET env test:
Launch SMM in CET enabled/disabled environment (DXE) - no impact to DXE
The test case can be found at
https://github.com/jyao1/SecurityEx/tree/master/ControlFlowPkg
2) test ovmf (both IA32 and X64 SMM, CET disabled only)
test OvmfIa32/Ovmf3264, with -D SMM_REQUIRE.
qemu-system-x86_64.exe -machine q35,smm=on -smp 4
-serial file:serial.log
-drive if=pflash,format=raw,unit=0,file=OVMF_CODE.fd,readonly=on
-drive if=pflash,format=raw,unit=1,file=OVMF_VARS.fd
QEMU emulator version 3.1.0 (v3.1.0-11736-g7a30e7adb0-dirty)
3) not tested
IA32 CET enabled platform
Cc: Eric Dong <eric.dong@intel.com>
Cc: Ray Ni <ray.ni@intel.com>
Cc: Laszlo Ersek <lersek@redhat.com>
Contributed-under: TianoCore Contribution Agreement 1.1
Signed-off-by: Yao Jiewen <jiewen.yao@intel.com>
Reviewed-by: Ray Ni <ray.ni@intel.com>
Regression-tested-by: Laszlo Ersek <lersek@redhat.com>
2019-02-22 14:30:36 +01:00
|
|
|
@param Stacks Base address of SMI stack buffer for all processors.
|
|
|
|
@param StackSize Stack size for each processor in SMM.
|
|
|
|
@param ShadowStackSize Shadow Stack size for each processor in SMM.
|
2015-10-19 21:12:53 +02:00
|
|
|
|
|
|
|
**/
|
|
|
|
UINT32
|
|
|
|
InitializeMpServiceData (
|
|
|
|
IN VOID *Stacks,
|
UefiCpuPkg/PiSmmCpu: Add Shadow Stack Support for X86 SMM.
REF: https://bugzilla.tianocore.org/show_bug.cgi?id=1521
We scan the SMM code with ROPgadget.
http://shell-storm.org/project/ROPgadget/
https://github.com/JonathanSalwan/ROPgadget/tree/master
This tool reports the gadget in SMM driver.
This patch enabled CET ShadowStack for X86 SMM.
If CET is supported, SMM will enable CET ShadowStack.
SMM CET will save the OS CET context at SmmEntry and
restore OS CET context at SmmExit.
Test:
1) test Intel internal platform (x64 only, CET enabled/disabled)
Boot test:
CET supported or not supported CPU
on CET supported platform
CET enabled/disabled
PcdCpuSmmCetEnable enabled/disabled
Single core/Multiple core
PcdCpuSmmStackGuard enabled/disabled
PcdCpuSmmProfileEnable enabled/disabled
PcdCpuSmmStaticPageTable enabled/disabled
CET exception test:
#CF generated with PcdCpuSmmStackGuard enabled/disabled.
Other exception test:
#PF for normal stack overflow
#PF for NX protection
#PF for RO protection
CET env test:
Launch SMM in CET enabled/disabled environment (DXE) - no impact to DXE
The test case can be found at
https://github.com/jyao1/SecurityEx/tree/master/ControlFlowPkg
2) test ovmf (both IA32 and X64 SMM, CET disabled only)
test OvmfIa32/Ovmf3264, with -D SMM_REQUIRE.
qemu-system-x86_64.exe -machine q35,smm=on -smp 4
-serial file:serial.log
-drive if=pflash,format=raw,unit=0,file=OVMF_CODE.fd,readonly=on
-drive if=pflash,format=raw,unit=1,file=OVMF_VARS.fd
QEMU emulator version 3.1.0 (v3.1.0-11736-g7a30e7adb0-dirty)
3) not tested
IA32 CET enabled platform
Cc: Eric Dong <eric.dong@intel.com>
Cc: Ray Ni <ray.ni@intel.com>
Cc: Laszlo Ersek <lersek@redhat.com>
Contributed-under: TianoCore Contribution Agreement 1.1
Signed-off-by: Yao Jiewen <jiewen.yao@intel.com>
Reviewed-by: Ray Ni <ray.ni@intel.com>
Regression-tested-by: Laszlo Ersek <lersek@redhat.com>
2019-02-22 14:30:36 +01:00
|
|
|
IN UINTN StackSize,
|
|
|
|
IN UINTN ShadowStackSize
|
2015-10-19 21:12:53 +02:00
|
|
|
)
|
|
|
|
{
|
2021-05-11 18:34:49 +02:00
|
|
|
UINT32 Cr3;
|
|
|
|
UINTN Index;
|
|
|
|
UINT8 *GdtTssTables;
|
|
|
|
UINTN GdtTableStepSize;
|
|
|
|
CPUID_VERSION_INFO_EDX RegEdx;
|
|
|
|
UINT32 MaxExtendedFunction;
|
|
|
|
CPUID_VIR_PHY_ADDRESS_SIZE_EAX VirPhyAddressSize;
|
2017-08-17 01:49:17 +02:00
|
|
|
|
|
|
|
//
|
|
|
|
// Determine if this CPU supports machine check
|
|
|
|
//
|
|
|
|
AsmCpuid (CPUID_VERSION_INFO, NULL, NULL, NULL, &RegEdx.Uint32);
|
|
|
|
mMachineCheckSupported = (BOOLEAN)(RegEdx.Bits.MCA == 1);
|
2015-10-19 21:12:53 +02:00
|
|
|
|
2016-06-27 09:41:50 +02:00
|
|
|
//
|
|
|
|
// Allocate memory for all locks and semaphores
|
|
|
|
//
|
|
|
|
InitializeSmmCpuSemaphores ();
|
|
|
|
|
2016-03-22 03:08:03 +01:00
|
|
|
//
|
|
|
|
// Initialize mSmmMpSyncData
|
|
|
|
//
|
|
|
|
mSmmMpSyncDataSize = sizeof (SMM_DISPATCHER_MP_SYNC_DATA) +
|
|
|
|
(sizeof (SMM_CPU_DATA_BLOCK) + sizeof (BOOLEAN)) * gSmmCpuPrivate->SmmCoreEntryContext.NumberOfCpus;
|
|
|
|
mSmmMpSyncData = (SMM_DISPATCHER_MP_SYNC_DATA *)AllocatePages (EFI_SIZE_TO_PAGES (mSmmMpSyncDataSize));
|
|
|
|
ASSERT (mSmmMpSyncData != NULL);
|
UefiCpuPkg/PiSmmCpuDxeSmm: dynamic PcdCpuSmmApSyncTimeout, PcdCpuSmmSyncMode
Move the declaration of these PCDs from the
[PcdsFixedAtBuild, PcdsPatchableInModule]
section of "UefiCpuPkg/UefiCpuPkg.dec" to the
[PcdsFixedAtBuild, PcdsPatchableInModule, PcdsDynamic, PcdsDynamicEx]
section. Their types, default values, and token values remain unchanged.
Only UefiCpuPkg/PiSmmCpuDxeSmm consumes these PCDs, specifically on the
call stack of its entry point function, and it turns them into static or
dynamically allocated data in SMRAM:
PiCpuSmmEntry() [PiSmmCpuDxeSmm.c]
InitializeSmmTimer() [SyncTimer.c]
PcdCpuSmmApSyncTimeout
-> mTimeoutTicker
InitializeMpServiceData() [MpService.c]
InitializeMpSyncData() [MpService.c]
PcdCpuSmmSyncMode
-> mSmmMpSyncData->EffectiveSyncMode
However, there's another call path to fetching "PcdCpuSmmSyncMode", namely
SmmInitHandler() [PiSmmCpuDxeSmm.c]
InitializeMpSyncData() [MpService.c]
PcdCpuSmmSyncMode
-> mSmmMpSyncData->EffectiveSyncMode
and this path is exercised during S3 resume (as stated by the comment in
SmmInitHandler() too, "Initialize private data during S3 resume").
While we can call the PCD protocol (via PcdLib) for fetching dynamic PCDs
in the entry point function, we cannot do that at S3 resume. Therefore
pre-fetch PcdCpuSmmSyncMode into a new global variable (which lives in
SMRAM) in InitializeMpServiceData(), just before calling
InitializeMpSyncData(). This way InitializeMpSyncData() can retrieve the
stashed PCD value from SMRAM, regardless of the boot mode.
Cc: Jeff Fan <jeff.fan@intel.com>
Cc: Jordan Justen <jordan.l.justen@intel.com>
Cc: Michael Kinney <michael.d.kinney@intel.com>
Cc: Paolo Bonzini <pbonzini@redhat.com>
Ref: https://bugzilla.tianocore.org/show_bug.cgi?id=230
Contributed-under: TianoCore Contribution Agreement 1.0
Signed-off-by: Laszlo Ersek <lersek@redhat.com>
Reviewed-by: Jeff Fan <jeff.fan@intel.com>
2016-11-17 21:13:29 +01:00
|
|
|
mCpuSmmSyncMode = (SMM_CPU_SYNC_MODE)PcdGet8 (PcdCpuSmmSyncMode);
|
2016-03-22 03:08:03 +01:00
|
|
|
InitializeMpSyncData ();
|
|
|
|
|
2015-10-19 21:12:53 +02:00
|
|
|
//
|
|
|
|
// Initialize physical address mask
|
|
|
|
// NOTE: Physical memory above virtual address limit is not supported !!!
|
|
|
|
//
|
2021-05-11 18:34:49 +02:00
|
|
|
AsmCpuid (CPUID_EXTENDED_FUNCTION, &MaxExtendedFunction, NULL, NULL, NULL);
|
|
|
|
if (MaxExtendedFunction >= CPUID_VIR_PHY_ADDRESS_SIZE) {
|
|
|
|
AsmCpuid (CPUID_VIR_PHY_ADDRESS_SIZE, &VirPhyAddressSize.Uint32, NULL, NULL, NULL);
|
|
|
|
} else {
|
|
|
|
VirPhyAddressSize.Bits.PhysicalAddressBits = 36;
|
|
|
|
}
|
2021-12-05 23:54:17 +01:00
|
|
|
|
2021-05-11 18:34:49 +02:00
|
|
|
gPhyMask = LShiftU64 (1, VirPhyAddressSize.Bits.PhysicalAddressBits) - 1;
|
|
|
|
//
|
|
|
|
// Clear the low 12 bits
|
|
|
|
//
|
|
|
|
gPhyMask &= 0xfffffffffffff000ULL;
|
2015-10-19 21:12:53 +02:00
|
|
|
|
|
|
|
//
|
|
|
|
// Create page tables
|
|
|
|
//
|
|
|
|
Cr3 = SmmInitPageTable ();
|
|
|
|
|
2015-11-25 05:23:01 +01:00
|
|
|
GdtTssTables = InitGdt (Cr3, &GdtTableStepSize);
|
2015-10-19 21:12:53 +02:00
|
|
|
|
|
|
|
//
|
2016-11-28 23:13:24 +01:00
|
|
|
// Install SMI handler for each CPU
|
2015-10-19 21:12:53 +02:00
|
|
|
//
|
|
|
|
for (Index = 0; Index < mMaxNumberOfCpus; Index++) {
|
|
|
|
InstallSmiHandler (
|
|
|
|
Index,
|
|
|
|
(UINT32)mCpuHotPlugData.SmBase[Index],
|
UefiCpuPkg/PiSmmCpu: Add Shadow Stack Support for X86 SMM.
REF: https://bugzilla.tianocore.org/show_bug.cgi?id=1521
We scan the SMM code with ROPgadget.
http://shell-storm.org/project/ROPgadget/
https://github.com/JonathanSalwan/ROPgadget/tree/master
This tool reports the gadget in SMM driver.
This patch enabled CET ShadowStack for X86 SMM.
If CET is supported, SMM will enable CET ShadowStack.
SMM CET will save the OS CET context at SmmEntry and
restore OS CET context at SmmExit.
Test:
1) test Intel internal platform (x64 only, CET enabled/disabled)
Boot test:
CET supported or not supported CPU
on CET supported platform
CET enabled/disabled
PcdCpuSmmCetEnable enabled/disabled
Single core/Multiple core
PcdCpuSmmStackGuard enabled/disabled
PcdCpuSmmProfileEnable enabled/disabled
PcdCpuSmmStaticPageTable enabled/disabled
CET exception test:
#CF generated with PcdCpuSmmStackGuard enabled/disabled.
Other exception test:
#PF for normal stack overflow
#PF for NX protection
#PF for RO protection
CET env test:
Launch SMM in CET enabled/disabled environment (DXE) - no impact to DXE
The test case can be found at
https://github.com/jyao1/SecurityEx/tree/master/ControlFlowPkg
2) test ovmf (both IA32 and X64 SMM, CET disabled only)
test OvmfIa32/Ovmf3264, with -D SMM_REQUIRE.
qemu-system-x86_64.exe -machine q35,smm=on -smp 4
-serial file:serial.log
-drive if=pflash,format=raw,unit=0,file=OVMF_CODE.fd,readonly=on
-drive if=pflash,format=raw,unit=1,file=OVMF_VARS.fd
QEMU emulator version 3.1.0 (v3.1.0-11736-g7a30e7adb0-dirty)
3) not tested
IA32 CET enabled platform
Cc: Eric Dong <eric.dong@intel.com>
Cc: Ray Ni <ray.ni@intel.com>
Cc: Laszlo Ersek <lersek@redhat.com>
Contributed-under: TianoCore Contribution Agreement 1.1
Signed-off-by: Yao Jiewen <jiewen.yao@intel.com>
Reviewed-by: Ray Ni <ray.ni@intel.com>
Regression-tested-by: Laszlo Ersek <lersek@redhat.com>
2019-02-22 14:30:36 +01:00
|
|
|
(VOID *)((UINTN)Stacks + (StackSize + ShadowStackSize) * Index),
|
2015-10-19 21:12:53 +02:00
|
|
|
StackSize,
|
2016-11-28 23:13:24 +01:00
|
|
|
(UINTN)(GdtTssTables + GdtTableStepSize * Index),
|
|
|
|
gcSmiGdtr.Limit + 1,
|
2015-10-19 21:12:53 +02:00
|
|
|
gcSmiIdtr.Base,
|
|
|
|
gcSmiIdtr.Limit + 1,
|
|
|
|
Cr3
|
|
|
|
);
|
|
|
|
}
|
|
|
|
|
|
|
|
//
|
|
|
|
// Record current MTRR settings
|
|
|
|
//
|
2016-11-18 05:50:27 +01:00
|
|
|
ZeroMem (&gSmiMtrrs, sizeof (gSmiMtrrs));
|
|
|
|
MtrrGetAllMtrrs (&gSmiMtrrs);
|
2015-10-19 21:12:53 +02:00
|
|
|
|
|
|
|
return Cr3;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
|
|
|
Register the SMM Foundation entry point.
|
|
|
|
|
|
|
|
@param This Pointer to EFI_SMM_CONFIGURATION_PROTOCOL instance
|
|
|
|
@param SmmEntryPoint SMM Foundation EntryPoint
|
|
|
|
|
|
|
|
@retval EFI_SUCCESS Successfully to register SMM foundation entry point
|
|
|
|
|
|
|
|
**/
|
|
|
|
EFI_STATUS
|
|
|
|
EFIAPI
|
|
|
|
RegisterSmmEntry (
|
|
|
|
IN CONST EFI_SMM_CONFIGURATION_PROTOCOL *This,
|
|
|
|
IN EFI_SMM_ENTRY_POINT SmmEntryPoint
|
|
|
|
)
|
|
|
|
{
|
|
|
|
//
|
|
|
|
// Record SMM Foundation EntryPoint, later invoke it on SMI entry vector.
|
|
|
|
//
|
|
|
|
gSmmCpuPrivate->SmmCoreEntry = SmmEntryPoint;
|
|
|
|
return EFI_SUCCESS;
|
|
|
|
}
|
2019-07-10 09:49:11 +02:00
|
|
|
|
|
|
|
/**
|
|
|
|
|
|
|
|
Register the SMM Foundation entry point.
|
|
|
|
|
|
|
|
@param[in] Procedure A pointer to the code stream to be run on the designated target AP
|
|
|
|
of the system. Type EFI_AP_PROCEDURE is defined below in Volume 2
|
|
|
|
with the related definitions of
|
|
|
|
EFI_MP_SERVICES_PROTOCOL.StartupAllAPs.
|
|
|
|
If caller may pass a value of NULL to deregister any existing
|
|
|
|
startup procedure.
|
2019-08-07 04:06:10 +02:00
|
|
|
@param[in,out] ProcedureArguments Allows the caller to pass a list of parameters to the code that is
|
2019-07-10 09:49:11 +02:00
|
|
|
run by the AP. It is an optional common mailbox between APs and
|
|
|
|
the caller to share information
|
|
|
|
|
|
|
|
@retval EFI_SUCCESS The Procedure has been set successfully.
|
|
|
|
@retval EFI_INVALID_PARAMETER The Procedure is NULL but ProcedureArguments not NULL.
|
|
|
|
|
|
|
|
**/
|
|
|
|
EFI_STATUS
|
|
|
|
RegisterStartupProcedure (
|
2019-08-07 04:06:10 +02:00
|
|
|
IN EFI_AP_PROCEDURE Procedure,
|
|
|
|
IN OUT VOID *ProcedureArguments OPTIONAL
|
2019-07-10 09:49:11 +02:00
|
|
|
)
|
|
|
|
{
|
|
|
|
if ((Procedure == NULL) && (ProcedureArguments != NULL)) {
|
|
|
|
return EFI_INVALID_PARAMETER;
|
|
|
|
}
|
2021-12-05 23:54:17 +01:00
|
|
|
|
2019-07-10 09:49:11 +02:00
|
|
|
if (mSmmMpSyncData == NULL) {
|
|
|
|
return EFI_NOT_READY;
|
|
|
|
}
|
|
|
|
|
|
|
|
mSmmMpSyncData->StartupProcedure = Procedure;
|
|
|
|
mSmmMpSyncData->StartupProcArgs = ProcedureArguments;
|
|
|
|
|
|
|
|
return EFI_SUCCESS;
|
|
|
|
}
|