From mboxrd@z Thu Jan  1 00:00:00 1970
Authentication-Results: mx.groups.io;
 dkim=pass header.i=@amdcloud.onmicrosoft.com header.s=selector2-amdcloud-onmicrosoft-com header.b=NNY2RJqz;
 spf=none, err=SPF record not found (domain: amd.com, ip: <nil>, mailfrom: thomas.lendacky@amd.com)
Received: from NAM02-BL2-obe.outbound.protection.outlook.com (NAM02-BL2-obe.outbound.protection.outlook.com [])
 by groups.io with SMTP; Thu, 19 Sep 2019 12:53:35 -0700
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none;
 b=b2p6LzKuHhl3Q7XrwEQPl9ND8SGaOcc+7ao9zMpLZ/jKnfb8e2TEL8+Q3B/vw/YuQZnfJw+k4s29yG4WgM+2SntTuK9M07i8HrobC4Vnc6u10XXSwPpQUASmmt6nSk61/vO4DfKedK3GsUQK7UIMYP8bOkpc6Wk5j1JN5ggoAHPFvadBuH4ulL0SVFwrNgDbV8KxCxvHrRJdITb4rhyb04S2RLyq4KWLSGf4J+8Quv3P4L38w4KLdN6GEvhWmGHc+SQWjzpWsytQx1OXcZgaVHRfhc3ZfD5Kux85YGYIuL9unH11x1R61qzZQ4w4bhXyjSvaD1HuXJre6adTzaujhg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com;
 s=arcselector9901;
 h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;
 bh=oDt06qfam0b97/VpKScRWiEnSNj3FE0sS0+s76MPMOo=;
 b=WO0jwqIKaG8whhwWn5zktKEUgQKIyH2zlQQkXJ8YDG8tMUC7uIB9zei4YXTlf2zMHDfaINyQoTxxH0Fchwqagg4dpzr28HaT0NQvvB92MunUufC7hVrZWjBYxYu/X4GytRWisARXaPsl6f3WR0ZVTi4D1URepb41Pker9L8u+aJ5R7Nb5LthFSqveLBugcCZPh/xgrhEr+Mqqb+56Q+yZw9KJU46Qn8pxK4BkdV2A6zlCpHjt+QOANvh3vQttQUrI9xOaPEctu00zzCuqDyedSke4c2TdOksgNrx0jpVYyP6Id+Kj+BX6DejzV2XwJ8MPBCF/9MjBpV5+OmE0AbtVQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass
 smtp.mailfrom=amd.com; dmarc=pass action=none header.from=amd.com; dkim=pass
 header.d=amd.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=amdcloud.onmicrosoft.com; s=selector2-amdcloud-onmicrosoft-com;
 h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;
 bh=oDt06qfam0b97/VpKScRWiEnSNj3FE0sS0+s76MPMOo=;
 b=NNY2RJqz9Yqvh9E+aQBkbJhd7wF6lQWQ/2Fc2VMFQ5L6Wk5bQf+bNwoVQxCWw8f0sNm+EPqqiIoumk7SgHGvWs2rP0f52Ds0UiUWz10ZpT5L1gQ0yFnnfO0xg1CimgSJEaMxuv7Mv0m1jz5+oBxRUA/vKSN8aAHWh/KTdSt3w7k=
Received: from DM6PR12MB3163.namprd12.prod.outlook.com (20.179.104.150) by
 DM6PR12MB3372.namprd12.prod.outlook.com (20.178.198.27) with Microsoft SMTP
 Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id
 15.20.2263.22; Thu, 19 Sep 2019 19:53:33 +0000
Received: from DM6PR12MB3163.namprd12.prod.outlook.com
 ([fe80::400e:f0c3:7ca:2fcc]) by DM6PR12MB3163.namprd12.prod.outlook.com
 ([fe80::400e:f0c3:7ca:2fcc%6]) with mapi id 15.20.2284.009; Thu, 19 Sep 2019
 19:53:33 +0000
From: "Lendacky, Thomas" <thomas.lendacky@amd.com>
To: "devel@edk2.groups.io" <devel@edk2.groups.io>
CC: Jordan Justen <jordan.l.justen@intel.com>, Laszlo Ersek
	<lersek@redhat.com>, Ard Biesheuvel <ard.biesheuvel@linaro.org>, Michael D
 Kinney <michael.d.kinney@intel.com>, Liming Gao <liming.gao@intel.com>, Eric
 Dong <eric.dong@intel.com>, Ray Ni <ray.ni@intel.com>, "Singh, Brijesh"
	<brijesh.singh@amd.com>
Subject: [RFC PATCH v2 37/44] OvmfPkg: Add support for SEV-ES AP reset vector re-directing
Thread-Topic: [RFC PATCH v2 37/44] OvmfPkg: Add support for SEV-ES AP reset
 vector re-directing
Thread-Index: AQHVbyPa3GbA3JfqWEG3XgfImlrAHw==
Date: Thu, 19 Sep 2019 19:53:05 +0000
Message-ID: 
 <61fd6897ca552edbb39ab2f2ee0cce0b505ee71c.1568922729.git.thomas.lendacky@amd.com>
References: <cover.1568922728.git.thomas.lendacky@amd.com>
In-Reply-To: <cover.1568922728.git.thomas.lendacky@amd.com>
Accept-Language: en-US
X-MS-Has-Attach: 
X-MS-TNEF-Correlator: 
x-mailer: git-send-email 2.17.1
x-clientproxiedby: SN4PR0501CA0146.namprd05.prod.outlook.com
 (2603:10b6:803:2c::24) To DM6PR12MB3163.namprd12.prod.outlook.com
 (2603:10b6:5:182::22)
authentication-results: spf=none (sender IP is )
 smtp.mailfrom=Thomas.Lendacky@amd.com; 
x-ms-exchange-messagesentrepresentingtype: 1
x-originating-ip: [165.204.78.1]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 4ee8db34-125f-4b55-2b54-08d73d3afcff
x-ms-office365-filtering-ht: Tenant
x-microsoft-antispam: 
 BCL:0;PCL:0;RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600167)(711020)(4605104)(1401327)(4618075)(2017052603328)(7193020);SRVR:DM6PR12MB3372;
x-ms-traffictypediagnostic: DM6PR12MB3372:
x-ms-exchange-purlcount: 1
x-ms-exchange-transport-forked: True
x-microsoft-antispam-prvs: 
 <DM6PR12MB3372627FD65510F72C62BA75EC890@DM6PR12MB3372.namprd12.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:9508;
x-forefront-prvs: 016572D96D
x-forefront-antispam-report: 
 SFV:NSPM;SFS:(10009020)(4636009)(396003)(39860400002)(376002)(366004)(136003)(346002)(199004)(189003)(386003)(71200400001)(52116002)(14444005)(86362001)(14454004)(256004)(76176011)(99286004)(966005)(66446008)(64756008)(478600001)(19627235002)(66556008)(6666004)(118296001)(66946007)(66476007)(71190400001)(66066001)(5660300002)(6306002)(6512007)(5640700003)(476003)(2616005)(36756003)(11346002)(446003)(8676002)(6506007)(8936002)(1730700003)(81166006)(81156014)(2501003)(26005)(186003)(102836004)(50226002)(54906003)(486006)(6436002)(6486002)(2351001)(316002)(6116002)(3846002)(7736002)(305945005)(25786009)(2906002)(6916009)(4326008);DIR:OUT;SFP:1101;SCL:1;SRVR:DM6PR12MB3372;H:DM6PR12MB3163.namprd12.prod.outlook.com;FPR:;SPF:None;LANG:en;PTR:InfoNoRecords;A:1;MX:1;
received-spf: None (protection.outlook.com: amd.com does not designate
 permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: 
 Ufd1KeNXnm2HMvVRWdYFote2Z4YUUlXZ2MZqBRjioEfxvOf+ZnKj7b8ttT5HHBWErNTJxIt4rLK/90bLDBulTIQW08T8c1+Vz2iXqQDCOHqcD6nzXYEXt+Uy2M8JfiAGwO72qp2PQFgRXhFbV72+RAkszFrsZGzUlyz5e+G2AX9Go+MNg9ED0vts1nDF70xdFnxSoJCsZWJsNEjbigO5ZaamaQkoiC28rJkSidRl334NNZoxdt4bVIAyHKLop1bT3u1UfM24eKGVbPoS9xXWljf/775Nm2rNzqfYj4RT/czZyiU7qkhQnUKEj6uTQCx8gH/48L+icI0LtmcaXRaxy11N5fPy4ur81Gb2ie2OTziSL8rs86n6Ve1QDXHbtdchwnT3YInrmCQCMpMOTNPmEFQQydbvfimCTbC5EtYT18Y=
MIME-Version: 1.0
X-OriginatorOrg: amd.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 4ee8db34-125f-4b55-2b54-08d73d3afcff
X-MS-Exchange-CrossTenant-originalarrivaltime: 19 Sep 2019 19:53:05.9912
 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 3dd8961f-e488-4e60-8e11-a82d994e183d
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: etvmczgLbm5/kVvkJYpcZe+0pVxeQaJMKiD9byEv0mahJBIw9v/fKDdeI+nJs8nRqn9uDvlNLTZVOoxN2OOn2g==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM6PR12MB3372
Content-Language: en-US
Content-Type: text/plain; charset="us-ascii"
Content-ID: <FC869C1E7F31504B9F792F3A7F3881B3@namprd12.prod.outlook.com>
Content-Transfer-Encoding: quoted-printable

From: Tom Lendacky <thomas.lendacky@amd.com>

BZ: https://bugzilla.tianocore.org/show_bug.cgi?id=3D2198

A hypervisor is not allowed to update an SEV-ES guests register state,
so when booting an SEV-ES guest AP, the hypervisor is not allowed to
set the RIP to the guest requested value. Instead an SEV-ES AP must be
re-directed from within the guest to the actual requested staring location
as specified in the INIT-SIPI-SIPI sequence.

Provide reset vector code that contains support to jump to the desired
RIP location after having been started. This is required for only the
very first AP reset.

Cc: Jordan Justen <jordan.l.justen@intel.com>
Cc: Laszlo Ersek <lersek@redhat.com>
Cc: Ard Biesheuvel <ard.biesheuvel@linaro.org>
Signed-off-by: Tom Lendacky <thomas.lendacky@amd.com>
---
 OvmfPkg/ResetVector/Ia16/ResetVectorVtf0.asm | 80 ++++++++++++++++++++
 1 file changed, 80 insertions(+)
 create mode 100644 OvmfPkg/ResetVector/Ia16/ResetVectorVtf0.asm

diff --git a/OvmfPkg/ResetVector/Ia16/ResetVectorVtf0.asm b/OvmfPkg/ResetVe=
ctor/Ia16/ResetVectorVtf0.asm
new file mode 100644
index 000000000000..1ac8b7ca7e85
--- /dev/null
+++ b/OvmfPkg/ResetVector/Ia16/ResetVectorVtf0.asm
@@ -0,0 +1,80 @@
+;-------------------------------------------------------------------------=
-----
+; @file
+; First code executed by processor after resetting.
+; Derived from UefiCpuPkg/ResetVector/Vtf0/Ia16/ResetVectorVtf0.asm
+;
+; Copyright (c) 2019, AMD Inc. All rights reserved.<BR>
+; SPDX-License-Identifier: BSD-2-Clause-Patent
+;
+;-------------------------------------------------------------------------=
-----
+
+BITS    16
+
+ALIGN   16
+
+;
+; Pad the image size to 4k when page tables are in VTF0
+;
+; If the VTF0 image has page tables built in, then we need to make
+; sure the end of VTF0 is 4k above where the page tables end.
+;
+; This is required so the page tables will be 4k aligned when VTF0 is
+; located just below 0x100000000 (4GB) in the firmware device.
+;
+%ifdef ALIGN_TOP_TO_4K_FOR_PAGING
+    TIMES (0x1000 - ($ - EndOfPageTables) - 0x20) DB 0
+%endif
+
+;
+; SEV-ES Processor Reset support
+;
+; standardProcessorSevEsReset:    (0xffffffd0)
+;   When using the Application Processors entry point, always perform a
+;   far jump to the RIP/CS value contained at this location.  This will
+;   default to EarlyBspInitReal16 unless specifically overridden.
+
+standardProcessorSevEsReset:
+    DW      0x0000
+    DW      0x0000
+
+ALIGN   16
+
+applicationProcessorEntryPoint:
+;
+; Application Processors entry point
+;
+; GenFv generates code aligned on a 4k boundary which will jump to this
+; location.  (0xffffffe0)  This allows the Local APIC Startup IPI to be
+; used to wake up the application processors.
+;
+    jmp     EarlyApInitReal16
+
+ALIGN   8
+
+    DD      0
+
+;
+; The VTF signature
+;
+; VTF-0 means that the VTF (Volume Top File) code does not require
+; any fixups.
+;
+vtfSignature:
+    DB      'V', 'T', 'F', 0
+
+ALIGN   16
+
+resetVector:
+;
+; Reset Vector
+;
+; This is where the processor will begin execution
+;
+    cmp     dword [CS:0xFFD0], 0
+    je      EarlyBspInitReal16
+    jmp     far [CS:0xFFD0]
+
+ALIGN   16
+
+fourGigabytes:
+
--=20
2.17.1