From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from mga06.intel.com (mga06.intel.com [134.134.136.31])
 by mx.groups.io with SMTP id smtpd.web08.6160.1634280127371237727
 for <devel@edk2.groups.io>;
 Thu, 14 Oct 2021 23:42:07 -0700
Authentication-Results: mx.groups.io;
 dkim=pass header.i=@intel.onmicrosoft.com header.s=selector2-intel-onmicrosoft-com header.b=AiXdaxaG;
 spf=pass (domain: intel.com, ip: 134.134.136.31, mailfrom: jiewen.yao@intel.com)
X-IronPort-AV: E=McAfee;i="6200,9189,10137"; a="288727011"
X-IronPort-AV: E=Sophos;i="5.85,375,1624345200"; 
   d="scan'208";a="288727011"
Received: from fmsmga005.fm.intel.com ([10.253.24.32])
  by orsmga104.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 14 Oct 2021 23:41:57 -0700
X-ExtLoop1: 1
X-IronPort-AV: E=Sophos;i="5.85,375,1624345200"; 
   d="scan'208";a="718028209"
Received: from orsmsx603.amr.corp.intel.com ([10.22.229.16])
  by fmsmga005.fm.intel.com with ESMTP; 14 Oct 2021 23:41:56 -0700
Received: from orsmsx611.amr.corp.intel.com (10.22.229.24) by
 ORSMSX603.amr.corp.intel.com (10.22.229.16) with Microsoft SMTP Server
 (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id
 15.1.2242.12; Thu, 14 Oct 2021 23:41:56 -0700
Received: from orsmsx606.amr.corp.intel.com (10.22.229.19) by
 ORSMSX611.amr.corp.intel.com (10.22.229.24) with Microsoft SMTP Server
 (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id
 15.1.2242.12; Thu, 14 Oct 2021 23:41:55 -0700
Received: from ORSEDG602.ED.cps.intel.com (10.7.248.7) by
 orsmsx606.amr.corp.intel.com (10.22.229.19) with Microsoft SMTP Server
 (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id
 15.1.2242.12 via Frontend Transport; Thu, 14 Oct 2021 23:41:55 -0700
Received: from NAM10-MW2-obe.outbound.protection.outlook.com (104.47.55.109)
 by edgegateway.intel.com (134.134.137.103) with Microsoft SMTP Server
 (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id
 15.1.2242.12; Thu, 14 Oct 2021 23:41:55 -0700
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none;
 b=B+tIz4zHH4A2YsPzV3Tn9VyPOMQtS7RmGmACMtAMiB0Wzrak3iAcBm9LiSTxfcZ1xq+x/FEXUUeAPcpajoUf3duZ+Mcp0ZVCZ2gpEb9EGA5chzHL0nZNcF0TVsQvCjR4Mahcl33RuAAViMTHDRafCuIRKpLYHgCaG9dI6xdrCz9PAg2ckvS+AYic1iI9rcwAtmfWzH1g2x8jCpa/sTuqc4M8Ms8Z7tRQ8fOpBAGSqT5Pi2XTSFLMUSc7bpn5HRnnHwFeqdTFhOxiBXLH9QgyCTC7ndDpdevYAexe3NDF3dXRfwsO3TmCjNj1wAAlSWlBaoEd1LWxFfiaxgZtTg46LA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com;
 s=arcselector9901;
 h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1;
 bh=khPHyGrqJB4nm81jY0a82JNFE5PWEuczm0XwPAqMb90=;
 b=HoBvMsRrAatYlOJUO4QCsENqMibhyvLbOm8ZQ+UfoHsCl+/O+RqGdQ92iN96Y+a8wag9qVBD156zOCJxNLV9HHAq7x8H6BdFicdTDJ0wRJmwtiJUdOJRre42nxsLLYknraxEWevyrDZ79Iufp+43mP5E7/DAx1QEeZvEdvWp0pvbPNnOgt7ney9LtK0N6/GdJx2ef5yb8ZJEHnBLHj5kYdU6aglnc7m6SdA3pYyxmMPhlF8lMTXREHuzomVUoStw5piDVmattUNN+rLD7FMwyhsY8rmBX95GnEdpwxWGEuO1bWCBmtCTRvpYN1Ve75hQEIExz9CAvz6FgGUZaVz2jw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass
 smtp.mailfrom=intel.com; dmarc=pass action=none header.from=intel.com;
 dkim=pass header.d=intel.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=intel.onmicrosoft.com;
 s=selector2-intel-onmicrosoft-com;
 h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;
 bh=khPHyGrqJB4nm81jY0a82JNFE5PWEuczm0XwPAqMb90=;
 b=AiXdaxaG1JzLVqwDI7D4ZuznpnDDUj8Ldp/SDULLBqaid3xm7Db86whZLc2LaVPJIMoKtng86RW6ipu38D4U9OKmA0zBJZ4oSxAGYxp9rMT/8qu7DlLiA77GuxkB/od7EaMkns1D4mOZ59N8nxjJ/byvOyZ2cGBm58ePLst44vs=
Received: from PH0PR11MB4885.namprd11.prod.outlook.com (2603:10b6:510:35::14)
 by PH0PR11MB5047.namprd11.prod.outlook.com (2603:10b6:510:3c::18) with
 Microsoft SMTP Server (version=TLS1_2,
 cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4608.17; Fri, 15 Oct
 2021 06:41:49 +0000
Received: from PH0PR11MB4885.namprd11.prod.outlook.com
 ([fe80::c5cb:e37a:9f3:8f80]) by PH0PR11MB4885.namprd11.prod.outlook.com
 ([fe80::c5cb:e37a:9f3:8f80%6]) with mapi id 15.20.4608.017; Fri, 15 Oct 2021
 06:41:49 +0000
From: "Yao, Jiewen" <jiewen.yao@intel.com>
To: "devel@edk2.groups.io" <devel@edk2.groups.io>, "kraxel@redhat.com"
	<kraxel@redhat.com>
CC: "Xu, Min M" <min.m.xu@intel.com>, Ard Biesheuvel
	<ardb+tianocore@kernel.org>, "Justen, Jordan L" <jordan.l.justen@intel.com>,
	Brijesh Singh <brijesh.singh@amd.com>, Erdem Aktas <erdemaktas@google.com>,
	James Bottomley <jejb@linux.ibm.com>, Tom Lendacky <thomas.lendacky@amd.com>
Subject: Re: [edk2-devel] [PATCH V2 21/28] OvmfPkg: Update PlatformPei to support TDX
Thread-Topic: [edk2-devel] [PATCH V2 21/28] OvmfPkg: Update PlatformPei to
 support TDX
Thread-Index: AQHXuZrTdAPXjGvRH02ewz01LNIwravQaC6AgALrzxCAAEingIAACdkA
Date: Fri, 15 Oct 2021 06:41:49 +0000
Message-ID: <PH0PR11MB4885782085683FF122E4FA528CB99@PH0PR11MB4885.namprd11.prod.outlook.com>
References: <cover.1633401643.git.min.m.xu@intel.com>
 <7a6c9317555de257ad0fd1d76c59c841fa601086.1633401643.git.min.m.xu@intel.com>
 <20211013044925.edspdvhh5t5baxez@sirius.home.kraxel.org>
 <PH0PR11MB488559528CF50E75B8D609058CB99@PH0PR11MB4885.namprd11.prod.outlook.com>
 <20211015054557.qwh6qalq5uql4smq@sirius.home.kraxel.org>
In-Reply-To: <20211015054557.qwh6qalq5uql4smq@sirius.home.kraxel.org>
Accept-Language: en-US
X-MS-Has-Attach: 
X-MS-TNEF-Correlator: 
dlp-version: 11.6.200.16
dlp-product: dlpe-windows
dlp-reaction: no-action
authentication-results: edk2.groups.io; dkim=none (message not signed)
 header.d=none;edk2.groups.io; dmarc=none action=none header.from=intel.com;
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: b1f9ce97-d877-4b4e-d83f-08d98fa6dd7f
x-ms-traffictypediagnostic: PH0PR11MB5047:
x-ld-processed: 46c98d88-e344-4ed4-8496-4ed7712e255d,ExtAddr
x-ms-exchange-transport-forked: True
x-microsoft-antispam-prvs: <PH0PR11MB5047C937352DFA5EE937C65B8CB99@PH0PR11MB5047.namprd11.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:PH0PR11MB4885.namprd11.prod.outlook.com;PTR:;CAT:NONE;SFS:(366004)(15650500001)(71200400001)(8936002)(122000001)(316002)(4326008)(83380400001)(508600001)(5660300002)(110136005)(7696005)(38100700002)(33656002)(82960400001)(8676002)(966005)(54906003)(66946007)(55016002)(38070700005)(66556008)(66446008)(9686003)(86362001)(76116006)(186003)(26005)(53546011)(2906002)(6506007)(52536014)(64756008)(66476007);DIR:OUT;SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: =?us-ascii?Q?V1NWgZ4JRDh42QxTVRSKvnnHF7v4MLhUInmIRqT8VJMjj87C4wLJLa4Gv1O+?=
 =?us-ascii?Q?52qXUhSRBthzcKkXWGP7mlBaYK7MqpQLbiLPfKRttzUNvTnWhj+yHWzWdGHe?=
 =?us-ascii?Q?DNiGQBlw9i3HHtLbhCUTYR5tze+rWP8/VU57bpZzutv6Q+yQQWkjdcJ9QTGd?=
 =?us-ascii?Q?XhSB8tYVGGfWfYR6f1B774z66zezVpXhH6YbQNKLouKNwmkkcSlYzzp46k0n?=
 =?us-ascii?Q?8EtUsEC2e1v+AjkU6Jm4KUrnVR1z8qRO0p+FvUQ+Zw+QV1Bpsf4LBP70/IrH?=
 =?us-ascii?Q?CGZfB5Iz9pO2JUMN9NR5Bc03IqJ4REPSqdtbQ0Q9TNs9aSWzGYR0blPbLBJZ?=
 =?us-ascii?Q?G3eWVs4Ydjo2b0HIDvNqEBZx4WDH4ziKwSncIKHVpFj3QjUGxB8ZS7pGtLBN?=
 =?us-ascii?Q?Uch5MTDeMFoNwVD28XHNvbjzkRz8aqgEIbDT/FF0n5B+cH39tGcibeBkTDJY?=
 =?us-ascii?Q?ZNrNq8cTLXDLdBUDfGVlIiupneJdspsFd7Hj4ivIquWtjqbGOfr3RtQVr6OZ?=
 =?us-ascii?Q?MWvA0OWhuKAVNeR55Ks6TwShpvH1buL3yisYOpTpndezsbDVUs2+VcVFzkjp?=
 =?us-ascii?Q?4d81kj1/4tcR10gqNL1sbVJQkflNvgN6WdDKidU7s1C8lBwOOsueAaZNO+fQ?=
 =?us-ascii?Q?e/AIGX4Xp4ttfac9b5sVeY1csraU4owqTj9cInjuT1pnnwXFdEu4di1ElSO+?=
 =?us-ascii?Q?ry2UeE9o+g+CgYiZqCaqgcz6rcMBb/f39V0mIZHF2GKI7s75K3b0Mv/W6xLD?=
 =?us-ascii?Q?guhyAGOQ0dEValydMMAz6IUiEFkL3VCiT9JaIfwHEvpWPtvA1UjaSxbBwpW6?=
 =?us-ascii?Q?rnGBEe+2ojc0IfhNTc8oKDxJArnIOScPPExzM5koPf60AbiHug5MoseNUL8K?=
 =?us-ascii?Q?poe4m/PWIO7JjJKYGndHJjYYe3gT46lgaSIOhqjjGjRidxBp4shFnTs1I8sd?=
 =?us-ascii?Q?3UVe9QTWrOhCjAc6N6RTKarGUea7UY/cqkeJPAFBGB2xKNNCGl32YR9rjG4C?=
 =?us-ascii?Q?naN8pDPTRgirFQxlxiA6kO8l/ZsKxULBZC0R2Ayj6GWOnfWc33kKMiigULzQ?=
 =?us-ascii?Q?9nSVv9O/Wm9ZCu3nuEgE/+kbvgos+wk9ETzs5qlA+uTOOWxbKGY1psfdtL0Y?=
 =?us-ascii?Q?nGFtO/4DR0KP282uMls+B9fVRa2OY9huwexwvt9wmOOwBw6ZuXPHYdup1Lvt?=
 =?us-ascii?Q?T0PSKmJ7jNkEnD3AekDsqGI8f2tQ38md8tIunehenwL2rlY7MwOxQ4h1M4dc?=
 =?us-ascii?Q?LXdzlbqp8xzy4TLpKbIuODamK0db9GtF3tVMBG1Tjaul8KtTz0KB1tN6rFb+?=
 =?us-ascii?Q?E/Q2ck9mSRFbZ66BNnGasdMG?=
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: PH0PR11MB4885.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: b1f9ce97-d877-4b4e-d83f-08d98fa6dd7f
X-MS-Exchange-CrossTenant-originalarrivaltime: 15 Oct 2021 06:41:49.2295
 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 46c98d88-e344-4ed4-8496-4ed7712e255d
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: tZs8agdl21C9Nn/zQg9/r0cWvyjl9aaGqgEhc+uEwpqITs8WO93P0U1zMm0pTGFgdg091VHWfjmeAwzbY5UmcA==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: PH0PR11MB5047
Return-Path: jiewen.yao@intel.com
X-OriginatorOrg: intel.com
Content-Language: en-US
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable

Ok. Please allow me to clarify my description.=20

"high memory" in this context means the memory region just below the less t=
han 4GiB DRAM limit. In a platform BIOS, it means the memory just below TOL=
UD (Top of Low Usable DRAM).
Usually, the BIOS will reserve a chunk of memory just below TOLUD, includin=
g ReservedMemory, ACPI-NVS, ACPI-Reclaim, RuntimeData, RuntimeCode. As such=
 the OS can use the reset memory as a continuous memory region.

"low memory" in this context means the memory region below the "high memory=
" defined above. From OS perspective, there will be a hole in the continuou=
s memory region. Technically, OS shall handle that. But the best practice t=
old us we should avoid that as much as possible. We have experience that if=
 we put too many holes, some OSes will refuse to boot. From OS perspective,=
 the BIOS should put all BIOS-reserved memory together.

Here, the initial mailbox is in "low memory", because we cannot predict how=
 many virtual-DRAM the VMM will allocate for the OVMF. We cannot predict wh=
ere is the TOLUD.
And we have to put the final mailbox (reserved) to "high memory" to avoid c=
reating a hole for OS.

If you look at the whole firmware code, relocation is quite usual design pa=
ttern in firmware. For example, PEI HOB, SMM init, CPU AP Loop, ACPI table,=
 BootScript, etc.

Thank you
Yao Jiewen

> -----Original Message-----
> From: devel@edk2.groups.io <devel@edk2.groups.io> On Behalf Of Gerd
> Hoffmann
> Sent: Friday, October 15, 2021 1:46 PM
> To: Yao, Jiewen <jiewen.yao@intel.com>
> Cc: devel@edk2.groups.io; Xu, Min M <min.m.xu@intel.com>; Ard Biesheuvel
> <ardb+tianocore@kernel.org>; Justen, Jordan L <jordan.l.justen@intel.com>=
;
> Brijesh Singh <brijesh.singh@amd.com>; Erdem Aktas
> <erdemaktas@google.com>; James Bottomley <jejb@linux.ibm.com>; Tom
> Lendacky <thomas.lendacky@amd.com>
> Subject: Re: [edk2-devel] [PATCH V2 21/28] OvmfPkg: Update PlatformPei to
> support TDX
>=20
>   Hi,
>=20
> > The original mailbox location is in low memory. If we do not relocate
> > to high memory, then the OS will see a hole in low memory.
>=20
> Well, both low and high memory to be exact.  qemu maps the whole
> firmware image below 4G, and mirrors the topmost 128k (including
> memfd + reset vector) below 1M.
>=20
> Given that TDX starts the processor in 32bit mode, so it doesn't need
> the 16bit entry @ f000:fff0, I assumed TDX completely ignores the low
> memory mapping and uses only the high memory mapping.
>=20
> So you are telling me this is not the case?
>=20
> take care,
>   Gerd
>=20
>=20
>=20
>=20
>=20