From 84b223c18ca41532645e7594067e87d509a3c96f Mon Sep 17 00:00:00 2001 From: Laszlo Ersek Date: Fri, 20 Sep 2019 15:12:27 +0200 Subject: [PATCH] OvmfPkg/PlatformPei: reserve the SMRAM at the default SMBASE, if it exists The 128KB SMRAM at the default SMBASE will be used for protecting the initial SMI handler for hot-plugged VCPUs. After platform reset, the SMRAM in question is open (and looks just like RAM). When BDS signals EFI_DXE_MM_READY_TO_LOCK_PROTOCOL (and so TSEG is locked down), we're going to lock the SMRAM at the default SMBASE too. For this, we have to reserve said SMRAM area as early as possible, from components in PEI, DXE, and OS runtime. * QemuInitializeRam() currently produces a single resource descriptor HOB, for exposing the system RAM available under 1GB. This occurs during both normal boot and S3 resume identically (the latter only for the sake of CpuMpPei borrowing low RAM for the AP startup vector). But, the SMRAM at the default SMBASE falls in the middle of the current system RAM HOB. Split the HOB, and cover the SMRAM with a reserved memory HOB in the middle. CpuMpPei (via MpInitLib) skips reserved memory HOBs. * InitializeRamRegions() is responsible for producing memory allocation HOBs, carving out parts of the resource descriptor HOBs produced in QemuInitializeRam(). Allocate the above-introduced reserved memory region in full, similarly to how we treat TSEG, so that DXE and the OS avoid the locked SMRAM (black hole) in this area. (Note that these allocations only occur on the normal boot path, as they matter for the UEFI memory map, which cannot be changed during S3 resume.) Cc: Ard Biesheuvel Cc: Jordan Justen Ref: https://bugzilla.tianocore.org/show_bug.cgi?id=1512 Signed-off-by: Laszlo Ersek Reviewed-by: Jiewen Yao Message-Id: <20200129214412.2361-8-lersek@redhat.com> Reviewed-by: Ard Biesheuvel --- OvmfPkg/PlatformPei/MemDetect.c | 37 +++++++++++++++++++++++++++++++-- 1 file changed, 35 insertions(+), 2 deletions(-) diff --git a/OvmfPkg/PlatformPei/MemDetect.c b/OvmfPkg/PlatformPei/MemDetect.c index 4879ee87b7..8fdc9c2ed7 100644 --- a/OvmfPkg/PlatformPei/MemDetect.c +++ b/OvmfPkg/PlatformPei/MemDetect.c @@ -646,6 +646,28 @@ PublishPeiMemory ( } +STATIC +VOID +QemuInitializeRamBelow1gb ( + VOID + ) +{ + if (FeaturePcdGet (PcdSmmSmramRequire) && mQ35SmramAtDefaultSmbase) { + AddMemoryRangeHob (0, SMM_DEFAULT_SMBASE); + AddReservedMemoryBaseSizeHob (SMM_DEFAULT_SMBASE, MCH_DEFAULT_SMBASE_SIZE, + TRUE /* Cacheable */); + STATIC_ASSERT ( + SMM_DEFAULT_SMBASE + MCH_DEFAULT_SMBASE_SIZE < BASE_512KB + BASE_128KB, + "end of SMRAM at default SMBASE ends at, or exceeds, 640KB" + ); + AddMemoryRangeHob (SMM_DEFAULT_SMBASE + MCH_DEFAULT_SMBASE_SIZE, + BASE_512KB + BASE_128KB); + } else { + AddMemoryRangeHob (0, BASE_512KB + BASE_128KB); + } +} + + /** Peform Memory Detection for QEMU / KVM @@ -690,12 +712,12 @@ QemuInitializeRam ( // allocation HOBs, and to honor preexistent memory allocation HOBs when // looking for an area to borrow. // - AddMemoryRangeHob (0, BASE_512KB + BASE_128KB); + QemuInitializeRamBelow1gb (); } else { // // Create memory HOBs // - AddMemoryRangeHob (0, BASE_512KB + BASE_128KB); + QemuInitializeRamBelow1gb (); if (FeaturePcdGet (PcdSmmSmramRequire)) { UINT32 TsegSize; @@ -861,6 +883,17 @@ InitializeRamRegions ( TsegSize, EfiReservedMemoryType ); + // + // Similarly, allocate away the (already reserved) SMRAM at the default + // SMBASE, if it exists. + // + if (mQ35SmramAtDefaultSmbase) { + BuildMemoryAllocationHob ( + SMM_DEFAULT_SMBASE, + MCH_DEFAULT_SMBASE_SIZE, + EfiReservedMemoryType + ); + } } } }