From: "Marcello Sylvester Bauer" <marcello.bauer@9elements.com>
To: "Dong, Guo" <guo.dong@intel.com>
Cc: "devel@edk2.groups.io" <devel@edk2.groups.io>,
"Ma, Maurice" <maurice.ma@intel.com>,
"Desimone, Nathaniel L" <nathaniel.l.desimone@intel.com>,
"Zeng, Star" <star.zeng@intel.com>
Subject: Re: [edk2-devel] [PATCH v1 1/1] UefipayloadPkg: Protect coreboot tables
Date: Mon, 14 Sep 2020 10:59:53 +0200 [thread overview]
Message-ID: <CAB1kMnejZXA-S9mSTFQPVz1PTjmYXUz5wn=LW+Gn93Y0hnqRYQ@mail.gmail.com> (raw)
In-Reply-To: <DM6PR11MB362708FF65602B2EBB3B1FF39E290@DM6PR11MB3627.namprd11.prod.outlook.com>
[-- Attachment #1: Type: text/plain, Size: 4716 bytes --]
Hi Guo,
Sounds like a good proposal, but it would be great to merge this change
temporarily.
In some cases of the current implementation edk2 does override the memory
area, where the coreboot table pointer is located.
Therefore the kernel and cbmem tool is not able to locate the tables
anymore.
Thanks,
Marcello
On Tue, Sep 8, 2020 at 11:40 PM Dong, Guo <guo.dong@intel.com> wrote:
>
> Hi Marcello,
>
> In the UEFI payload, we should not hardcoded any memory usage. It means
> UEFI payload should use the memory map whatever reported from the
> bootloader. I plan to remove this hardcoded memory usage soon.
> Before that, it is OK for me to merge this change if you want.
> BTW, did you see any issue with current implement?
>
> Thanks,
> Guo
>
> > -----Original Message-----
> > From: devel@edk2.groups.io <devel@edk2.groups.io> On Behalf Of Marcello
> > Sylvester Bauer
> > Sent: Wednesday, July 8, 2020 5:01 AM
> > To: devel@edk2.groups.io
> > Cc: Ma, Maurice <maurice.ma@intel.com>; Desimone, Nathaniel L
> > <nathaniel.l.desimone@intel.com>; Zeng, Star <star.zeng@intel.com>
> > Subject: [edk2-devel] [PATCH v1 1/1] UefipayloadPkg: Protect coreboot
> tables
> >
> > From: Patrick Rudolph <patrick.rudolph@9elements.com>
> >
> > Signed-off-by: Patrick Rudolph <patrick.rudolph@9elements.com>
> > Signed-off-by: Marcello Sylvester Bauer <marcello.bauer@9elements.com>
> > Cc: Maurice Ma <maurice.ma@intel.com>
> > Cc: Nate DeSimone <nathaniel.l.desimone@intel.com>
> > Cc: Star Zeng <star.zeng@intel.com>
> > ---
> > UefiPayloadPkg/BlSupportPei/BlSupportPei.c | 26 ++++++++++++++------
> > 1 file changed, 19 insertions(+), 7 deletions(-)
> >
> > diff --git a/UefiPayloadPkg/BlSupportPei/BlSupportPei.c
> > b/UefiPayloadPkg/BlSupportPei/BlSupportPei.c
> > index 22972453117a..b3ff065a537e 100644
> > --- a/UefiPayloadPkg/BlSupportPei/BlSupportPei.c
> > +++ b/UefiPayloadPkg/BlSupportPei/BlSupportPei.c
> > @@ -390,24 +390,36 @@ BlPeiEntryPoint (
> > EFI_PEI_GRAPHICS_DEVICE_INFO_HOB GfxDeviceInfo;
> >
> > EFI_PEI_GRAPHICS_DEVICE_INFO_HOB *NewGfxDeviceInfo;
> >
> >
> >
> > -
> >
> > - //
> >
> > - // Report lower 640KB of RAM. Attribute EFI_RESOURCE_ATTRIBUTE_TESTED
> >
> > - // is intentionally omitted to prevent erasing of the coreboot header
> >
> > - // record before it is processed by ParseMemoryInfo.
> >
> > + // Report lower 640KB of RAM.
> >
> > + // Mark memory as reserved to keep coreboot header in place.
> >
> > //
> >
> > BuildResourceDescriptorHob (
> >
> > - EFI_RESOURCE_SYSTEM_MEMORY,
> >
> > + EFI_RESOURCE_MEMORY_RESERVED,
> >
> > (
> >
> > EFI_RESOURCE_ATTRIBUTE_PRESENT |
> >
> > EFI_RESOURCE_ATTRIBUTE_INITIALIZED |
> >
> > + EFI_RESOURCE_ATTRIBUTE_TESTED |
> >
> > EFI_RESOURCE_ATTRIBUTE_UNCACHEABLE |
> >
> > EFI_RESOURCE_ATTRIBUTE_WRITE_COMBINEABLE |
> >
> > EFI_RESOURCE_ATTRIBUTE_WRITE_THROUGH_CACHEABLE |
> >
> > EFI_RESOURCE_ATTRIBUTE_WRITE_BACK_CACHEABLE
> >
> > ),
> >
> > (EFI_PHYSICAL_ADDRESS)(0),
> >
> > - (UINT64)(0xA0000)
> >
> > + (UINT64)(0x1000)
> >
> > + );
> >
> > +
> >
> > + BuildResourceDescriptorHob (
> >
> > + EFI_RESOURCE_SYSTEM_MEMORY,
> >
> > + (
> >
> > + EFI_RESOURCE_ATTRIBUTE_PRESENT |
> >
> > + EFI_RESOURCE_ATTRIBUTE_INITIALIZED |
> >
> > + EFI_RESOURCE_ATTRIBUTE_UNCACHEABLE |
> >
> > + EFI_RESOURCE_ATTRIBUTE_WRITE_COMBINEABLE |
> >
> > + EFI_RESOURCE_ATTRIBUTE_WRITE_THROUGH_CACHEABLE |
> >
> > + EFI_RESOURCE_ATTRIBUTE_WRITE_BACK_CACHEABLE
> >
> > + ),
> >
> > + (EFI_PHYSICAL_ADDRESS)(0x1000),
> >
> > + (UINT64)(0x9F000)
> >
> > );
> >
> >
> >
> > BuildResourceDescriptorHob (
> >
> > --
> > 2.27.0
> >
> >
> > -=-=-=-=-=-=
> > Groups.io Links: You receive all messages sent to this group.
> >
> > View/Reply Online (#62229): https://edk2.groups.io/g/devel/message/62229
> > Mute This Topic: https://groups.io/mt/75374752/1781375
> > Group Owner: devel+owner@edk2.groups.io
> > Unsubscribe: https://edk2.groups.io/g/devel/unsub [guo.dong@intel.com]
> > -=-=-=-=-=-=
>
>
--
*[Marcello Sylvester Bauer]*
9elements Agency GmbH, Kortumstraße 19-21, 44787 Bochum, Germany
Email: [DEINE EMAIL ADDRESSE]
<https://static.9elements.com/email_signatur.html>
Phone: *+49 234 68 94 188 <+492346894188>*
Mobile: *+49 1722847618 <+491722847618>*
Sitz der Gesellschaft: Bochum
Handelsregister: Amtsgericht Bochum, HRB 17519
Geschäftsführung: Sebastian Deutsch, Eray Basar
Datenschutzhinweise nach Art. 13 DSGVO <https://9elements.com/privacy>
[-- Attachment #2: Type: text/html, Size: 8919 bytes --]
next prev parent reply other threads:[~2020-09-14 9:00 UTC|newest]
Thread overview: 8+ messages / expand[flat|nested] mbox.gz Atom feed top
2020-07-08 12:01 [PATCH v1 0/1] Protect coreboot tables Marcello Sylvester Bauer
2020-07-08 12:01 ` [PATCH v1 1/1] UefipayloadPkg: " Marcello Sylvester Bauer
2020-09-08 21:40 ` [edk2-devel] " Guo Dong
2020-09-14 8:59 ` Marcello Sylvester Bauer [this message]
2020-09-14 17:32 ` Guo Dong
2020-10-01 10:23 ` Laszlo Ersek
2020-10-05 15:34 ` Marcello Sylvester Bauer
2020-10-06 8:25 ` Laszlo Ersek
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-list from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to='CAB1kMnejZXA-S9mSTFQPVz1PTjmYXUz5wn=LW+Gn93Y0hnqRYQ@mail.gmail.com' \
--to=devel@edk2.groups.io \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox