]>
Commit | Line | Data |
---|---|---|
1 | /** @file\r | |
2 | \r | |
3 | Copyright (c) 2016 - 2019, Intel Corporation. All rights reserved.<BR>\r | |
4 | SPDX-License-Identifier: BSD-2-Clause-Patent\r | |
5 | \r | |
6 | **/\r | |
7 | \r | |
8 | #include "PiSmmCpuDxeSmm.h"\r | |
9 | \r | |
10 | //\r | |
11 | // attributes for reserved memory before it is promoted to system memory\r | |
12 | //\r | |
13 | #define EFI_MEMORY_PRESENT 0x0100000000000000ULL\r | |
14 | #define EFI_MEMORY_INITIALIZED 0x0200000000000000ULL\r | |
15 | #define EFI_MEMORY_TESTED 0x0400000000000000ULL\r | |
16 | \r | |
17 | #define PREVIOUS_MEMORY_DESCRIPTOR(MemoryDescriptor, Size) \\r | |
18 | ((EFI_MEMORY_DESCRIPTOR *)((UINT8 *)(MemoryDescriptor) - (Size)))\r | |
19 | \r | |
20 | EFI_MEMORY_DESCRIPTOR *mUefiMemoryMap;\r | |
21 | UINTN mUefiMemoryMapSize;\r | |
22 | UINTN mUefiDescriptorSize;\r | |
23 | \r | |
24 | EFI_GCD_MEMORY_SPACE_DESCRIPTOR *mGcdMemSpace = NULL;\r | |
25 | UINTN mGcdMemNumberOfDesc = 0;\r | |
26 | \r | |
27 | EFI_MEMORY_ATTRIBUTES_TABLE *mUefiMemoryAttributesTable = NULL;\r | |
28 | \r | |
29 | PAGE_ATTRIBUTE_TABLE mPageAttributeTable[] = {\r | |
30 | { Page4K, SIZE_4KB, PAGING_4K_ADDRESS_MASK_64 },\r | |
31 | { Page2M, SIZE_2MB, PAGING_2M_ADDRESS_MASK_64 },\r | |
32 | { Page1G, SIZE_1GB, PAGING_1G_ADDRESS_MASK_64 },\r | |
33 | };\r | |
34 | \r | |
35 | BOOLEAN mIsShadowStack = FALSE;\r | |
36 | BOOLEAN m5LevelPagingNeeded = FALSE;\r | |
37 | \r | |
38 | //\r | |
39 | // Global variable to keep track current available memory used as page table.\r | |
40 | //\r | |
41 | PAGE_TABLE_POOL *mPageTablePool = NULL;\r | |
42 | \r | |
43 | //\r | |
44 | // If memory used by SMM page table has been mareked as ReadOnly.\r | |
45 | //\r | |
46 | BOOLEAN mIsReadOnlyPageTable = FALSE;\r | |
47 | \r | |
48 | /**\r | |
49 | Initialize a buffer pool for page table use only.\r | |
50 | \r | |
51 | To reduce the potential split operation on page table, the pages reserved for\r | |
52 | page table should be allocated in the times of PAGE_TABLE_POOL_UNIT_PAGES and\r | |
53 | at the boundary of PAGE_TABLE_POOL_ALIGNMENT. So the page pool is always\r | |
54 | initialized with number of pages greater than or equal to the given PoolPages.\r | |
55 | \r | |
56 | Once the pages in the pool are used up, this method should be called again to\r | |
57 | reserve at least another PAGE_TABLE_POOL_UNIT_PAGES. But usually this won't\r | |
58 | happen in practice.\r | |
59 | \r | |
60 | @param PoolPages The least page number of the pool to be created.\r | |
61 | \r | |
62 | @retval TRUE The pool is initialized successfully.\r | |
63 | @retval FALSE The memory is out of resource.\r | |
64 | **/\r | |
65 | BOOLEAN\r | |
66 | InitializePageTablePool (\r | |
67 | IN UINTN PoolPages\r | |
68 | )\r | |
69 | {\r | |
70 | VOID *Buffer;\r | |
71 | BOOLEAN CetEnabled;\r | |
72 | BOOLEAN WpEnabled;\r | |
73 | IA32_CR0 Cr0;\r | |
74 | \r | |
75 | //\r | |
76 | // Always reserve at least PAGE_TABLE_POOL_UNIT_PAGES, including one page for\r | |
77 | // header.\r | |
78 | //\r | |
79 | PoolPages += 1; // Add one page for header.\r | |
80 | PoolPages = ((PoolPages - 1) / PAGE_TABLE_POOL_UNIT_PAGES + 1) *\r | |
81 | PAGE_TABLE_POOL_UNIT_PAGES;\r | |
82 | Buffer = AllocateAlignedPages (PoolPages, PAGE_TABLE_POOL_ALIGNMENT);\r | |
83 | if (Buffer == NULL) {\r | |
84 | DEBUG ((DEBUG_ERROR, "ERROR: Out of aligned pages\r\n"));\r | |
85 | return FALSE;\r | |
86 | }\r | |
87 | \r | |
88 | //\r | |
89 | // Link all pools into a list for easier track later.\r | |
90 | //\r | |
91 | if (mPageTablePool == NULL) {\r | |
92 | mPageTablePool = Buffer;\r | |
93 | mPageTablePool->NextPool = mPageTablePool;\r | |
94 | } else {\r | |
95 | ((PAGE_TABLE_POOL *)Buffer)->NextPool = mPageTablePool->NextPool;\r | |
96 | mPageTablePool->NextPool = Buffer;\r | |
97 | mPageTablePool = Buffer;\r | |
98 | }\r | |
99 | \r | |
100 | //\r | |
101 | // Reserve one page for pool header.\r | |
102 | //\r | |
103 | mPageTablePool->FreePages = PoolPages - 1;\r | |
104 | mPageTablePool->Offset = EFI_PAGES_TO_SIZE (1);\r | |
105 | \r | |
106 | //\r | |
107 | // If page table memory has been marked as RO, mark the new pool pages as read-only.\r | |
108 | //\r | |
109 | if (mIsReadOnlyPageTable) {\r | |
110 | CetEnabled = ((AsmReadCr4 () & CR4_CET_ENABLE) != 0) ? TRUE : FALSE;\r | |
111 | Cr0.UintN = AsmReadCr0 ();\r | |
112 | WpEnabled = (Cr0.Bits.WP != 0) ? TRUE : FALSE;\r | |
113 | if (WpEnabled) {\r | |
114 | if (CetEnabled) {\r | |
115 | //\r | |
116 | // CET must be disabled if WP is disabled. Disable CET before clearing CR0.WP.\r | |
117 | //\r | |
118 | DisableCet ();\r | |
119 | }\r | |
120 | \r | |
121 | Cr0.Bits.WP = 0;\r | |
122 | AsmWriteCr0 (Cr0.UintN);\r | |
123 | }\r | |
124 | \r | |
125 | SmmSetMemoryAttributes ((EFI_PHYSICAL_ADDRESS)(UINTN)Buffer, EFI_PAGES_TO_SIZE (PoolPages), EFI_MEMORY_RO);\r | |
126 | if (WpEnabled) {\r | |
127 | Cr0.UintN = AsmReadCr0 ();\r | |
128 | Cr0.Bits.WP = 1;\r | |
129 | AsmWriteCr0 (Cr0.UintN);\r | |
130 | \r | |
131 | if (CetEnabled) {\r | |
132 | //\r | |
133 | // re-enable CET.\r | |
134 | //\r | |
135 | EnableCet ();\r | |
136 | }\r | |
137 | }\r | |
138 | }\r | |
139 | \r | |
140 | return TRUE;\r | |
141 | }\r | |
142 | \r | |
143 | /**\r | |
144 | This API provides a way to allocate memory for page table.\r | |
145 | \r | |
146 | This API can be called more once to allocate memory for page tables.\r | |
147 | \r | |
148 | Allocates the number of 4KB pages of type EfiRuntimeServicesData and returns a pointer to the\r | |
149 | allocated buffer. The buffer returned is aligned on a 4KB boundary. If Pages is 0, then NULL\r | |
150 | is returned. If there is not enough memory remaining to satisfy the request, then NULL is\r | |
151 | returned.\r | |
152 | \r | |
153 | @param Pages The number of 4 KB pages to allocate.\r | |
154 | \r | |
155 | @return A pointer to the allocated buffer or NULL if allocation fails.\r | |
156 | \r | |
157 | **/\r | |
158 | VOID *\r | |
159 | AllocatePageTableMemory (\r | |
160 | IN UINTN Pages\r | |
161 | )\r | |
162 | {\r | |
163 | VOID *Buffer;\r | |
164 | \r | |
165 | if (Pages == 0) {\r | |
166 | return NULL;\r | |
167 | }\r | |
168 | \r | |
169 | //\r | |
170 | // Renew the pool if necessary.\r | |
171 | //\r | |
172 | if ((mPageTablePool == NULL) ||\r | |
173 | (Pages > mPageTablePool->FreePages))\r | |
174 | {\r | |
175 | if (!InitializePageTablePool (Pages)) {\r | |
176 | return NULL;\r | |
177 | }\r | |
178 | }\r | |
179 | \r | |
180 | Buffer = (UINT8 *)mPageTablePool + mPageTablePool->Offset;\r | |
181 | \r | |
182 | mPageTablePool->Offset += EFI_PAGES_TO_SIZE (Pages);\r | |
183 | mPageTablePool->FreePages -= Pages;\r | |
184 | \r | |
185 | return Buffer;\r | |
186 | }\r | |
187 | \r | |
188 | /**\r | |
189 | Return length according to page attributes.\r | |
190 | \r | |
191 | @param[in] PageAttributes The page attribute of the page entry.\r | |
192 | \r | |
193 | @return The length of page entry.\r | |
194 | **/\r | |
195 | UINTN\r | |
196 | PageAttributeToLength (\r | |
197 | IN PAGE_ATTRIBUTE PageAttribute\r | |
198 | )\r | |
199 | {\r | |
200 | UINTN Index;\r | |
201 | \r | |
202 | for (Index = 0; Index < sizeof (mPageAttributeTable)/sizeof (mPageAttributeTable[0]); Index++) {\r | |
203 | if (PageAttribute == mPageAttributeTable[Index].Attribute) {\r | |
204 | return (UINTN)mPageAttributeTable[Index].Length;\r | |
205 | }\r | |
206 | }\r | |
207 | \r | |
208 | return 0;\r | |
209 | }\r | |
210 | \r | |
211 | /**\r | |
212 | Return address mask according to page attributes.\r | |
213 | \r | |
214 | @param[in] PageAttributes The page attribute of the page entry.\r | |
215 | \r | |
216 | @return The address mask of page entry.\r | |
217 | **/\r | |
218 | UINTN\r | |
219 | PageAttributeToMask (\r | |
220 | IN PAGE_ATTRIBUTE PageAttribute\r | |
221 | )\r | |
222 | {\r | |
223 | UINTN Index;\r | |
224 | \r | |
225 | for (Index = 0; Index < sizeof (mPageAttributeTable)/sizeof (mPageAttributeTable[0]); Index++) {\r | |
226 | if (PageAttribute == mPageAttributeTable[Index].Attribute) {\r | |
227 | return (UINTN)mPageAttributeTable[Index].AddressMask;\r | |
228 | }\r | |
229 | }\r | |
230 | \r | |
231 | return 0;\r | |
232 | }\r | |
233 | \r | |
234 | /**\r | |
235 | Return page table entry to match the address.\r | |
236 | \r | |
237 | @param[in] PageTableBase The page table base.\r | |
238 | @param[in] Enable5LevelPaging If PML5 paging is enabled.\r | |
239 | @param[in] Address The address to be checked.\r | |
240 | @param[out] PageAttributes The page attribute of the page entry.\r | |
241 | \r | |
242 | @return The page entry.\r | |
243 | **/\r | |
244 | VOID *\r | |
245 | GetPageTableEntry (\r | |
246 | IN UINTN PageTableBase,\r | |
247 | IN BOOLEAN Enable5LevelPaging,\r | |
248 | IN PHYSICAL_ADDRESS Address,\r | |
249 | OUT PAGE_ATTRIBUTE *PageAttribute\r | |
250 | )\r | |
251 | {\r | |
252 | UINTN Index1;\r | |
253 | UINTN Index2;\r | |
254 | UINTN Index3;\r | |
255 | UINTN Index4;\r | |
256 | UINTN Index5;\r | |
257 | UINT64 *L1PageTable;\r | |
258 | UINT64 *L2PageTable;\r | |
259 | UINT64 *L3PageTable;\r | |
260 | UINT64 *L4PageTable;\r | |
261 | UINT64 *L5PageTable;\r | |
262 | \r | |
263 | Index5 = ((UINTN)RShiftU64 (Address, 48)) & PAGING_PAE_INDEX_MASK;\r | |
264 | Index4 = ((UINTN)RShiftU64 (Address, 39)) & PAGING_PAE_INDEX_MASK;\r | |
265 | Index3 = ((UINTN)Address >> 30) & PAGING_PAE_INDEX_MASK;\r | |
266 | Index2 = ((UINTN)Address >> 21) & PAGING_PAE_INDEX_MASK;\r | |
267 | Index1 = ((UINTN)Address >> 12) & PAGING_PAE_INDEX_MASK;\r | |
268 | \r | |
269 | if (sizeof (UINTN) == sizeof (UINT64)) {\r | |
270 | if (Enable5LevelPaging) {\r | |
271 | L5PageTable = (UINT64 *)PageTableBase;\r | |
272 | if (L5PageTable[Index5] == 0) {\r | |
273 | *PageAttribute = PageNone;\r | |
274 | return NULL;\r | |
275 | }\r | |
276 | \r | |
277 | L4PageTable = (UINT64 *)(UINTN)(L5PageTable[Index5] & ~mAddressEncMask & PAGING_4K_ADDRESS_MASK_64);\r | |
278 | } else {\r | |
279 | L4PageTable = (UINT64 *)PageTableBase;\r | |
280 | }\r | |
281 | \r | |
282 | if (L4PageTable[Index4] == 0) {\r | |
283 | *PageAttribute = PageNone;\r | |
284 | return NULL;\r | |
285 | }\r | |
286 | \r | |
287 | L3PageTable = (UINT64 *)(UINTN)(L4PageTable[Index4] & ~mAddressEncMask & PAGING_4K_ADDRESS_MASK_64);\r | |
288 | } else {\r | |
289 | L3PageTable = (UINT64 *)PageTableBase;\r | |
290 | }\r | |
291 | \r | |
292 | if (L3PageTable[Index3] == 0) {\r | |
293 | *PageAttribute = PageNone;\r | |
294 | return NULL;\r | |
295 | }\r | |
296 | \r | |
297 | if ((L3PageTable[Index3] & IA32_PG_PS) != 0) {\r | |
298 | // 1G\r | |
299 | *PageAttribute = Page1G;\r | |
300 | return &L3PageTable[Index3];\r | |
301 | }\r | |
302 | \r | |
303 | L2PageTable = (UINT64 *)(UINTN)(L3PageTable[Index3] & ~mAddressEncMask & PAGING_4K_ADDRESS_MASK_64);\r | |
304 | if (L2PageTable[Index2] == 0) {\r | |
305 | *PageAttribute = PageNone;\r | |
306 | return NULL;\r | |
307 | }\r | |
308 | \r | |
309 | if ((L2PageTable[Index2] & IA32_PG_PS) != 0) {\r | |
310 | // 2M\r | |
311 | *PageAttribute = Page2M;\r | |
312 | return &L2PageTable[Index2];\r | |
313 | }\r | |
314 | \r | |
315 | // 4k\r | |
316 | L1PageTable = (UINT64 *)(UINTN)(L2PageTable[Index2] & ~mAddressEncMask & PAGING_4K_ADDRESS_MASK_64);\r | |
317 | if ((L1PageTable[Index1] == 0) && (Address != 0)) {\r | |
318 | *PageAttribute = PageNone;\r | |
319 | return NULL;\r | |
320 | }\r | |
321 | \r | |
322 | *PageAttribute = Page4K;\r | |
323 | return &L1PageTable[Index1];\r | |
324 | }\r | |
325 | \r | |
326 | /**\r | |
327 | Return memory attributes of page entry.\r | |
328 | \r | |
329 | @param[in] PageEntry The page entry.\r | |
330 | \r | |
331 | @return Memory attributes of page entry.\r | |
332 | **/\r | |
333 | UINT64\r | |
334 | GetAttributesFromPageEntry (\r | |
335 | IN UINT64 *PageEntry\r | |
336 | )\r | |
337 | {\r | |
338 | UINT64 Attributes;\r | |
339 | \r | |
340 | Attributes = 0;\r | |
341 | if ((*PageEntry & IA32_PG_P) == 0) {\r | |
342 | Attributes |= EFI_MEMORY_RP;\r | |
343 | }\r | |
344 | \r | |
345 | if ((*PageEntry & IA32_PG_RW) == 0) {\r | |
346 | Attributes |= EFI_MEMORY_RO;\r | |
347 | }\r | |
348 | \r | |
349 | if ((*PageEntry & IA32_PG_NX) != 0) {\r | |
350 | Attributes |= EFI_MEMORY_XP;\r | |
351 | }\r | |
352 | \r | |
353 | return Attributes;\r | |
354 | }\r | |
355 | \r | |
356 | /**\r | |
357 | Modify memory attributes of page entry.\r | |
358 | \r | |
359 | @param[in] PageEntry The page entry.\r | |
360 | @param[in] Attributes The bit mask of attributes to modify for the memory region.\r | |
361 | @param[in] IsSet TRUE means to set attributes. FALSE means to clear attributes.\r | |
362 | @param[out] IsModified TRUE means page table modified. FALSE means page table not modified.\r | |
363 | **/\r | |
364 | VOID\r | |
365 | ConvertPageEntryAttribute (\r | |
366 | IN UINT64 *PageEntry,\r | |
367 | IN UINT64 Attributes,\r | |
368 | IN BOOLEAN IsSet,\r | |
369 | OUT BOOLEAN *IsModified\r | |
370 | )\r | |
371 | {\r | |
372 | UINT64 CurrentPageEntry;\r | |
373 | UINT64 NewPageEntry;\r | |
374 | \r | |
375 | CurrentPageEntry = *PageEntry;\r | |
376 | NewPageEntry = CurrentPageEntry;\r | |
377 | if ((Attributes & EFI_MEMORY_RP) != 0) {\r | |
378 | if (IsSet) {\r | |
379 | NewPageEntry &= ~(UINT64)IA32_PG_P;\r | |
380 | } else {\r | |
381 | NewPageEntry |= IA32_PG_P;\r | |
382 | }\r | |
383 | }\r | |
384 | \r | |
385 | if ((Attributes & EFI_MEMORY_RO) != 0) {\r | |
386 | if (IsSet) {\r | |
387 | NewPageEntry &= ~(UINT64)IA32_PG_RW;\r | |
388 | if (mIsShadowStack) {\r | |
389 | // Environment setup\r | |
390 | // ReadOnly page need set Dirty bit for shadow stack\r | |
391 | NewPageEntry |= IA32_PG_D;\r | |
392 | // Clear user bit for supervisor shadow stack\r | |
393 | NewPageEntry &= ~(UINT64)IA32_PG_U;\r | |
394 | } else {\r | |
395 | // Runtime update\r | |
396 | // Clear dirty bit for non shadow stack, to protect RO page.\r | |
397 | NewPageEntry &= ~(UINT64)IA32_PG_D;\r | |
398 | }\r | |
399 | } else {\r | |
400 | NewPageEntry |= IA32_PG_RW;\r | |
401 | }\r | |
402 | }\r | |
403 | \r | |
404 | if ((Attributes & EFI_MEMORY_XP) != 0) {\r | |
405 | if (mXdSupported) {\r | |
406 | if (IsSet) {\r | |
407 | NewPageEntry |= IA32_PG_NX;\r | |
408 | } else {\r | |
409 | NewPageEntry &= ~IA32_PG_NX;\r | |
410 | }\r | |
411 | }\r | |
412 | }\r | |
413 | \r | |
414 | *PageEntry = NewPageEntry;\r | |
415 | if (CurrentPageEntry != NewPageEntry) {\r | |
416 | *IsModified = TRUE;\r | |
417 | DEBUG ((DEBUG_VERBOSE, "ConvertPageEntryAttribute 0x%lx", CurrentPageEntry));\r | |
418 | DEBUG ((DEBUG_VERBOSE, "->0x%lx\n", NewPageEntry));\r | |
419 | } else {\r | |
420 | *IsModified = FALSE;\r | |
421 | }\r | |
422 | }\r | |
423 | \r | |
424 | /**\r | |
425 | This function returns if there is need to split page entry.\r | |
426 | \r | |
427 | @param[in] BaseAddress The base address to be checked.\r | |
428 | @param[in] Length The length to be checked.\r | |
429 | @param[in] PageEntry The page entry to be checked.\r | |
430 | @param[in] PageAttribute The page attribute of the page entry.\r | |
431 | \r | |
432 | @retval SplitAttributes on if there is need to split page entry.\r | |
433 | **/\r | |
434 | PAGE_ATTRIBUTE\r | |
435 | NeedSplitPage (\r | |
436 | IN PHYSICAL_ADDRESS BaseAddress,\r | |
437 | IN UINT64 Length,\r | |
438 | IN UINT64 *PageEntry,\r | |
439 | IN PAGE_ATTRIBUTE PageAttribute\r | |
440 | )\r | |
441 | {\r | |
442 | UINT64 PageEntryLength;\r | |
443 | \r | |
444 | PageEntryLength = PageAttributeToLength (PageAttribute);\r | |
445 | \r | |
446 | if (((BaseAddress & (PageEntryLength - 1)) == 0) && (Length >= PageEntryLength)) {\r | |
447 | return PageNone;\r | |
448 | }\r | |
449 | \r | |
450 | if (((BaseAddress & PAGING_2M_MASK) != 0) || (Length < SIZE_2MB)) {\r | |
451 | return Page4K;\r | |
452 | }\r | |
453 | \r | |
454 | return Page2M;\r | |
455 | }\r | |
456 | \r | |
457 | /**\r | |
458 | This function splits one page entry to small page entries.\r | |
459 | \r | |
460 | @param[in] PageEntry The page entry to be splitted.\r | |
461 | @param[in] PageAttribute The page attribute of the page entry.\r | |
462 | @param[in] SplitAttribute How to split the page entry.\r | |
463 | \r | |
464 | @retval RETURN_SUCCESS The page entry is splitted.\r | |
465 | @retval RETURN_UNSUPPORTED The page entry does not support to be splitted.\r | |
466 | @retval RETURN_OUT_OF_RESOURCES No resource to split page entry.\r | |
467 | **/\r | |
468 | RETURN_STATUS\r | |
469 | SplitPage (\r | |
470 | IN UINT64 *PageEntry,\r | |
471 | IN PAGE_ATTRIBUTE PageAttribute,\r | |
472 | IN PAGE_ATTRIBUTE SplitAttribute\r | |
473 | )\r | |
474 | {\r | |
475 | UINT64 BaseAddress;\r | |
476 | UINT64 *NewPageEntry;\r | |
477 | UINTN Index;\r | |
478 | \r | |
479 | ASSERT (PageAttribute == Page2M || PageAttribute == Page1G);\r | |
480 | \r | |
481 | if (PageAttribute == Page2M) {\r | |
482 | //\r | |
483 | // Split 2M to 4K\r | |
484 | //\r | |
485 | ASSERT (SplitAttribute == Page4K);\r | |
486 | if (SplitAttribute == Page4K) {\r | |
487 | NewPageEntry = AllocatePageTableMemory (1);\r | |
488 | DEBUG ((DEBUG_VERBOSE, "Split - 0x%x\n", NewPageEntry));\r | |
489 | if (NewPageEntry == NULL) {\r | |
490 | return RETURN_OUT_OF_RESOURCES;\r | |
491 | }\r | |
492 | \r | |
493 | BaseAddress = *PageEntry & PAGING_2M_ADDRESS_MASK_64;\r | |
494 | for (Index = 0; Index < SIZE_4KB / sizeof (UINT64); Index++) {\r | |
495 | NewPageEntry[Index] = (BaseAddress + SIZE_4KB * Index) | mAddressEncMask | ((*PageEntry) & PAGE_PROGATE_BITS);\r | |
496 | }\r | |
497 | \r | |
498 | (*PageEntry) = (UINT64)(UINTN)NewPageEntry | mAddressEncMask | PAGE_ATTRIBUTE_BITS;\r | |
499 | return RETURN_SUCCESS;\r | |
500 | } else {\r | |
501 | return RETURN_UNSUPPORTED;\r | |
502 | }\r | |
503 | } else if (PageAttribute == Page1G) {\r | |
504 | //\r | |
505 | // Split 1G to 2M\r | |
506 | // No need support 1G->4K directly, we should use 1G->2M, then 2M->4K to get more compact page table.\r | |
507 | //\r | |
508 | ASSERT (SplitAttribute == Page2M || SplitAttribute == Page4K);\r | |
509 | if (((SplitAttribute == Page2M) || (SplitAttribute == Page4K))) {\r | |
510 | NewPageEntry = AllocatePageTableMemory (1);\r | |
511 | DEBUG ((DEBUG_VERBOSE, "Split - 0x%x\n", NewPageEntry));\r | |
512 | if (NewPageEntry == NULL) {\r | |
513 | return RETURN_OUT_OF_RESOURCES;\r | |
514 | }\r | |
515 | \r | |
516 | BaseAddress = *PageEntry & PAGING_1G_ADDRESS_MASK_64;\r | |
517 | for (Index = 0; Index < SIZE_4KB / sizeof (UINT64); Index++) {\r | |
518 | NewPageEntry[Index] = (BaseAddress + SIZE_2MB * Index) | mAddressEncMask | IA32_PG_PS | ((*PageEntry) & PAGE_PROGATE_BITS);\r | |
519 | }\r | |
520 | \r | |
521 | (*PageEntry) = (UINT64)(UINTN)NewPageEntry | mAddressEncMask | PAGE_ATTRIBUTE_BITS;\r | |
522 | return RETURN_SUCCESS;\r | |
523 | } else {\r | |
524 | return RETURN_UNSUPPORTED;\r | |
525 | }\r | |
526 | } else {\r | |
527 | return RETURN_UNSUPPORTED;\r | |
528 | }\r | |
529 | }\r | |
530 | \r | |
531 | /**\r | |
532 | This function modifies the page attributes for the memory region specified by BaseAddress and\r | |
533 | Length from their current attributes to the attributes specified by Attributes.\r | |
534 | \r | |
535 | Caller should make sure BaseAddress and Length is at page boundary.\r | |
536 | \r | |
537 | @param[in] PageTableBase The page table base.\r | |
538 | @param[in] EnablePML5Paging If PML5 paging is enabled.\r | |
539 | @param[in] BaseAddress The physical address that is the start address of a memory region.\r | |
540 | @param[in] Length The size in bytes of the memory region.\r | |
541 | @param[in] Attributes The bit mask of attributes to modify for the memory region.\r | |
542 | @param[in] IsSet TRUE means to set attributes. FALSE means to clear attributes.\r | |
543 | @param[out] IsSplitted TRUE means page table splitted. FALSE means page table not splitted.\r | |
544 | @param[out] IsModified TRUE means page table modified. FALSE means page table not modified.\r | |
545 | \r | |
546 | @retval RETURN_SUCCESS The attributes were modified for the memory region.\r | |
547 | @retval RETURN_ACCESS_DENIED The attributes for the memory resource range specified by\r | |
548 | BaseAddress and Length cannot be modified.\r | |
549 | @retval RETURN_INVALID_PARAMETER Length is zero.\r | |
550 | Attributes specified an illegal combination of attributes that\r | |
551 | cannot be set together.\r | |
552 | @retval RETURN_OUT_OF_RESOURCES There are not enough system resources to modify the attributes of\r | |
553 | the memory resource range.\r | |
554 | @retval RETURN_UNSUPPORTED The processor does not support one or more bytes of the memory\r | |
555 | resource range specified by BaseAddress and Length.\r | |
556 | The bit mask of attributes is not support for the memory resource\r | |
557 | range specified by BaseAddress and Length.\r | |
558 | **/\r | |
559 | RETURN_STATUS\r | |
560 | ConvertMemoryPageAttributes (\r | |
561 | IN UINTN PageTableBase,\r | |
562 | IN BOOLEAN EnablePML5Paging,\r | |
563 | IN PHYSICAL_ADDRESS BaseAddress,\r | |
564 | IN UINT64 Length,\r | |
565 | IN UINT64 Attributes,\r | |
566 | IN BOOLEAN IsSet,\r | |
567 | OUT BOOLEAN *IsSplitted OPTIONAL,\r | |
568 | OUT BOOLEAN *IsModified OPTIONAL\r | |
569 | )\r | |
570 | {\r | |
571 | UINT64 *PageEntry;\r | |
572 | PAGE_ATTRIBUTE PageAttribute;\r | |
573 | UINTN PageEntryLength;\r | |
574 | PAGE_ATTRIBUTE SplitAttribute;\r | |
575 | RETURN_STATUS Status;\r | |
576 | BOOLEAN IsEntryModified;\r | |
577 | EFI_PHYSICAL_ADDRESS MaximumSupportMemAddress;\r | |
578 | \r | |
579 | ASSERT (Attributes != 0);\r | |
580 | ASSERT ((Attributes & ~EFI_MEMORY_ATTRIBUTE_MASK) == 0);\r | |
581 | \r | |
582 | ASSERT ((BaseAddress & (SIZE_4KB - 1)) == 0);\r | |
583 | ASSERT ((Length & (SIZE_4KB - 1)) == 0);\r | |
584 | \r | |
585 | if (Length == 0) {\r | |
586 | return RETURN_INVALID_PARAMETER;\r | |
587 | }\r | |
588 | \r | |
589 | MaximumSupportMemAddress = (EFI_PHYSICAL_ADDRESS)(UINTN)(LShiftU64 (1, mPhysicalAddressBits) - 1);\r | |
590 | if (BaseAddress > MaximumSupportMemAddress) {\r | |
591 | return RETURN_UNSUPPORTED;\r | |
592 | }\r | |
593 | \r | |
594 | if (Length > MaximumSupportMemAddress) {\r | |
595 | return RETURN_UNSUPPORTED;\r | |
596 | }\r | |
597 | \r | |
598 | if ((Length != 0) && (BaseAddress > MaximumSupportMemAddress - (Length - 1))) {\r | |
599 | return RETURN_UNSUPPORTED;\r | |
600 | }\r | |
601 | \r | |
602 | // DEBUG ((DEBUG_ERROR, "ConvertMemoryPageAttributes(%x) - %016lx, %016lx, %02lx\n", IsSet, BaseAddress, Length, Attributes));\r | |
603 | \r | |
604 | if (IsSplitted != NULL) {\r | |
605 | *IsSplitted = FALSE;\r | |
606 | }\r | |
607 | \r | |
608 | if (IsModified != NULL) {\r | |
609 | *IsModified = FALSE;\r | |
610 | }\r | |
611 | \r | |
612 | //\r | |
613 | // Below logic is to check 2M/4K page to make sure we do not waste memory.\r | |
614 | //\r | |
615 | while (Length != 0) {\r | |
616 | PageEntry = GetPageTableEntry (PageTableBase, EnablePML5Paging, BaseAddress, &PageAttribute);\r | |
617 | if (PageEntry == NULL) {\r | |
618 | return RETURN_UNSUPPORTED;\r | |
619 | }\r | |
620 | \r | |
621 | PageEntryLength = PageAttributeToLength (PageAttribute);\r | |
622 | SplitAttribute = NeedSplitPage (BaseAddress, Length, PageEntry, PageAttribute);\r | |
623 | if (SplitAttribute == PageNone) {\r | |
624 | ConvertPageEntryAttribute (PageEntry, Attributes, IsSet, &IsEntryModified);\r | |
625 | if (IsEntryModified) {\r | |
626 | if (IsModified != NULL) {\r | |
627 | *IsModified = TRUE;\r | |
628 | }\r | |
629 | }\r | |
630 | \r | |
631 | //\r | |
632 | // Convert success, move to next\r | |
633 | //\r | |
634 | BaseAddress += PageEntryLength;\r | |
635 | Length -= PageEntryLength;\r | |
636 | } else {\r | |
637 | Status = SplitPage (PageEntry, PageAttribute, SplitAttribute);\r | |
638 | if (RETURN_ERROR (Status)) {\r | |
639 | return RETURN_UNSUPPORTED;\r | |
640 | }\r | |
641 | \r | |
642 | if (IsSplitted != NULL) {\r | |
643 | *IsSplitted = TRUE;\r | |
644 | }\r | |
645 | \r | |
646 | if (IsModified != NULL) {\r | |
647 | *IsModified = TRUE;\r | |
648 | }\r | |
649 | \r | |
650 | //\r | |
651 | // Just split current page\r | |
652 | // Convert success in next around\r | |
653 | //\r | |
654 | }\r | |
655 | }\r | |
656 | \r | |
657 | return RETURN_SUCCESS;\r | |
658 | }\r | |
659 | \r | |
660 | /**\r | |
661 | FlushTlb on current processor.\r | |
662 | \r | |
663 | @param[in,out] Buffer Pointer to private data buffer.\r | |
664 | **/\r | |
665 | VOID\r | |
666 | EFIAPI\r | |
667 | FlushTlbOnCurrentProcessor (\r | |
668 | IN OUT VOID *Buffer\r | |
669 | )\r | |
670 | {\r | |
671 | CpuFlushTlb ();\r | |
672 | }\r | |
673 | \r | |
674 | /**\r | |
675 | FlushTlb for all processors.\r | |
676 | **/\r | |
677 | VOID\r | |
678 | FlushTlbForAll (\r | |
679 | VOID\r | |
680 | )\r | |
681 | {\r | |
682 | UINTN Index;\r | |
683 | \r | |
684 | FlushTlbOnCurrentProcessor (NULL);\r | |
685 | \r | |
686 | for (Index = 0; Index < gSmst->NumberOfCpus; Index++) {\r | |
687 | if (Index != gSmst->CurrentlyExecutingCpu) {\r | |
688 | // Force to start up AP in blocking mode,\r | |
689 | SmmBlockingStartupThisAp (FlushTlbOnCurrentProcessor, Index, NULL);\r | |
690 | // Do not check return status, because AP might not be present in some corner cases.\r | |
691 | }\r | |
692 | }\r | |
693 | }\r | |
694 | \r | |
695 | /**\r | |
696 | This function sets the attributes for the memory region specified by BaseAddress and\r | |
697 | Length from their current attributes to the attributes specified by Attributes.\r | |
698 | \r | |
699 | @param[in] PageTableBase The page table base.\r | |
700 | @param[in] EnablePML5Paging If PML5 paging is enabled.\r | |
701 | @param[in] BaseAddress The physical address that is the start address of a memory region.\r | |
702 | @param[in] Length The size in bytes of the memory region.\r | |
703 | @param[in] Attributes The bit mask of attributes to set for the memory region.\r | |
704 | @param[out] IsSplitted TRUE means page table splitted. FALSE means page table not splitted.\r | |
705 | \r | |
706 | @retval EFI_SUCCESS The attributes were set for the memory region.\r | |
707 | @retval EFI_ACCESS_DENIED The attributes for the memory resource range specified by\r | |
708 | BaseAddress and Length cannot be modified.\r | |
709 | @retval EFI_INVALID_PARAMETER Length is zero.\r | |
710 | Attributes specified an illegal combination of attributes that\r | |
711 | cannot be set together.\r | |
712 | @retval EFI_OUT_OF_RESOURCES There are not enough system resources to modify the attributes of\r | |
713 | the memory resource range.\r | |
714 | @retval EFI_UNSUPPORTED The processor does not support one or more bytes of the memory\r | |
715 | resource range specified by BaseAddress and Length.\r | |
716 | The bit mask of attributes is not support for the memory resource\r | |
717 | range specified by BaseAddress and Length.\r | |
718 | \r | |
719 | **/\r | |
720 | EFI_STATUS\r | |
721 | SmmSetMemoryAttributesEx (\r | |
722 | IN UINTN PageTableBase,\r | |
723 | IN BOOLEAN EnablePML5Paging,\r | |
724 | IN EFI_PHYSICAL_ADDRESS BaseAddress,\r | |
725 | IN UINT64 Length,\r | |
726 | IN UINT64 Attributes,\r | |
727 | OUT BOOLEAN *IsSplitted OPTIONAL\r | |
728 | )\r | |
729 | {\r | |
730 | EFI_STATUS Status;\r | |
731 | BOOLEAN IsModified;\r | |
732 | \r | |
733 | Status = ConvertMemoryPageAttributes (PageTableBase, EnablePML5Paging, BaseAddress, Length, Attributes, TRUE, IsSplitted, &IsModified);\r | |
734 | if (!EFI_ERROR (Status)) {\r | |
735 | if (IsModified) {\r | |
736 | //\r | |
737 | // Flush TLB as last step\r | |
738 | //\r | |
739 | FlushTlbForAll ();\r | |
740 | }\r | |
741 | }\r | |
742 | \r | |
743 | return Status;\r | |
744 | }\r | |
745 | \r | |
746 | /**\r | |
747 | This function clears the attributes for the memory region specified by BaseAddress and\r | |
748 | Length from their current attributes to the attributes specified by Attributes.\r | |
749 | \r | |
750 | @param[in] PageTableBase The page table base.\r | |
751 | @param[in] EnablePML5Paging If PML5 paging is enabled.\r | |
752 | @param[in] BaseAddress The physical address that is the start address of a memory region.\r | |
753 | @param[in] Length The size in bytes of the memory region.\r | |
754 | @param[in] Attributes The bit mask of attributes to clear for the memory region.\r | |
755 | @param[out] IsSplitted TRUE means page table splitted. FALSE means page table not splitted.\r | |
756 | \r | |
757 | @retval EFI_SUCCESS The attributes were cleared for the memory region.\r | |
758 | @retval EFI_ACCESS_DENIED The attributes for the memory resource range specified by\r | |
759 | BaseAddress and Length cannot be modified.\r | |
760 | @retval EFI_INVALID_PARAMETER Length is zero.\r | |
761 | Attributes specified an illegal combination of attributes that\r | |
762 | cannot be cleared together.\r | |
763 | @retval EFI_OUT_OF_RESOURCES There are not enough system resources to modify the attributes of\r | |
764 | the memory resource range.\r | |
765 | @retval EFI_UNSUPPORTED The processor does not support one or more bytes of the memory\r | |
766 | resource range specified by BaseAddress and Length.\r | |
767 | The bit mask of attributes is not supported for the memory resource\r | |
768 | range specified by BaseAddress and Length.\r | |
769 | \r | |
770 | **/\r | |
771 | EFI_STATUS\r | |
772 | SmmClearMemoryAttributesEx (\r | |
773 | IN UINTN PageTableBase,\r | |
774 | IN BOOLEAN EnablePML5Paging,\r | |
775 | IN EFI_PHYSICAL_ADDRESS BaseAddress,\r | |
776 | IN UINT64 Length,\r | |
777 | IN UINT64 Attributes,\r | |
778 | OUT BOOLEAN *IsSplitted OPTIONAL\r | |
779 | )\r | |
780 | {\r | |
781 | EFI_STATUS Status;\r | |
782 | BOOLEAN IsModified;\r | |
783 | \r | |
784 | Status = ConvertMemoryPageAttributes (PageTableBase, EnablePML5Paging, BaseAddress, Length, Attributes, FALSE, IsSplitted, &IsModified);\r | |
785 | if (!EFI_ERROR (Status)) {\r | |
786 | if (IsModified) {\r | |
787 | //\r | |
788 | // Flush TLB as last step\r | |
789 | //\r | |
790 | FlushTlbForAll ();\r | |
791 | }\r | |
792 | }\r | |
793 | \r | |
794 | return Status;\r | |
795 | }\r | |
796 | \r | |
797 | /**\r | |
798 | This function sets the attributes for the memory region specified by BaseAddress and\r | |
799 | Length from their current attributes to the attributes specified by Attributes.\r | |
800 | \r | |
801 | @param[in] BaseAddress The physical address that is the start address of a memory region.\r | |
802 | @param[in] Length The size in bytes of the memory region.\r | |
803 | @param[in] Attributes The bit mask of attributes to set for the memory region.\r | |
804 | \r | |
805 | @retval EFI_SUCCESS The attributes were set for the memory region.\r | |
806 | @retval EFI_ACCESS_DENIED The attributes for the memory resource range specified by\r | |
807 | BaseAddress and Length cannot be modified.\r | |
808 | @retval EFI_INVALID_PARAMETER Length is zero.\r | |
809 | Attributes specified an illegal combination of attributes that\r | |
810 | cannot be set together.\r | |
811 | @retval EFI_OUT_OF_RESOURCES There are not enough system resources to modify the attributes of\r | |
812 | the memory resource range.\r | |
813 | @retval EFI_UNSUPPORTED The processor does not support one or more bytes of the memory\r | |
814 | resource range specified by BaseAddress and Length.\r | |
815 | The bit mask of attributes is not supported for the memory resource\r | |
816 | range specified by BaseAddress and Length.\r | |
817 | \r | |
818 | **/\r | |
819 | EFI_STATUS\r | |
820 | SmmSetMemoryAttributes (\r | |
821 | IN EFI_PHYSICAL_ADDRESS BaseAddress,\r | |
822 | IN UINT64 Length,\r | |
823 | IN UINT64 Attributes\r | |
824 | )\r | |
825 | {\r | |
826 | IA32_CR4 Cr4;\r | |
827 | UINTN PageTableBase;\r | |
828 | BOOLEAN Enable5LevelPaging;\r | |
829 | \r | |
830 | PageTableBase = AsmReadCr3 () & PAGING_4K_ADDRESS_MASK_64;\r | |
831 | Cr4.UintN = AsmReadCr4 ();\r | |
832 | Enable5LevelPaging = (BOOLEAN)(Cr4.Bits.LA57 == 1);\r | |
833 | return SmmSetMemoryAttributesEx (PageTableBase, Enable5LevelPaging, BaseAddress, Length, Attributes, NULL);\r | |
834 | }\r | |
835 | \r | |
836 | /**\r | |
837 | This function clears the attributes for the memory region specified by BaseAddress and\r | |
838 | Length from their current attributes to the attributes specified by Attributes.\r | |
839 | \r | |
840 | @param[in] BaseAddress The physical address that is the start address of a memory region.\r | |
841 | @param[in] Length The size in bytes of the memory region.\r | |
842 | @param[in] Attributes The bit mask of attributes to clear for the memory region.\r | |
843 | \r | |
844 | @retval EFI_SUCCESS The attributes were cleared for the memory region.\r | |
845 | @retval EFI_ACCESS_DENIED The attributes for the memory resource range specified by\r | |
846 | BaseAddress and Length cannot be modified.\r | |
847 | @retval EFI_INVALID_PARAMETER Length is zero.\r | |
848 | Attributes specified an illegal combination of attributes that\r | |
849 | cannot be cleared together.\r | |
850 | @retval EFI_OUT_OF_RESOURCES There are not enough system resources to modify the attributes of\r | |
851 | the memory resource range.\r | |
852 | @retval EFI_UNSUPPORTED The processor does not support one or more bytes of the memory\r | |
853 | resource range specified by BaseAddress and Length.\r | |
854 | The bit mask of attributes is not supported for the memory resource\r | |
855 | range specified by BaseAddress and Length.\r | |
856 | \r | |
857 | **/\r | |
858 | EFI_STATUS\r | |
859 | SmmClearMemoryAttributes (\r | |
860 | IN EFI_PHYSICAL_ADDRESS BaseAddress,\r | |
861 | IN UINT64 Length,\r | |
862 | IN UINT64 Attributes\r | |
863 | )\r | |
864 | {\r | |
865 | IA32_CR4 Cr4;\r | |
866 | UINTN PageTableBase;\r | |
867 | BOOLEAN Enable5LevelPaging;\r | |
868 | \r | |
869 | PageTableBase = AsmReadCr3 () & PAGING_4K_ADDRESS_MASK_64;\r | |
870 | Cr4.UintN = AsmReadCr4 ();\r | |
871 | Enable5LevelPaging = (BOOLEAN)(Cr4.Bits.LA57 == 1);\r | |
872 | return SmmClearMemoryAttributesEx (PageTableBase, Enable5LevelPaging, BaseAddress, Length, Attributes, NULL);\r | |
873 | }\r | |
874 | \r | |
875 | /**\r | |
876 | Set ShadowStack memory.\r | |
877 | \r | |
878 | @param[in] Cr3 The page table base address.\r | |
879 | @param[in] BaseAddress The physical address that is the start address of a memory region.\r | |
880 | @param[in] Length The size in bytes of the memory region.\r | |
881 | \r | |
882 | @retval EFI_SUCCESS The shadow stack memory is set.\r | |
883 | **/\r | |
884 | EFI_STATUS\r | |
885 | SetShadowStack (\r | |
886 | IN UINTN Cr3,\r | |
887 | IN EFI_PHYSICAL_ADDRESS BaseAddress,\r | |
888 | IN UINT64 Length\r | |
889 | )\r | |
890 | {\r | |
891 | EFI_STATUS Status;\r | |
892 | \r | |
893 | mIsShadowStack = TRUE;\r | |
894 | Status = SmmSetMemoryAttributesEx (Cr3, m5LevelPagingNeeded, BaseAddress, Length, EFI_MEMORY_RO, NULL);\r | |
895 | mIsShadowStack = FALSE;\r | |
896 | \r | |
897 | return Status;\r | |
898 | }\r | |
899 | \r | |
900 | /**\r | |
901 | Set not present memory.\r | |
902 | \r | |
903 | @param[in] Cr3 The page table base address.\r | |
904 | @param[in] BaseAddress The physical address that is the start address of a memory region.\r | |
905 | @param[in] Length The size in bytes of the memory region.\r | |
906 | \r | |
907 | @retval EFI_SUCCESS The not present memory is set.\r | |
908 | **/\r | |
909 | EFI_STATUS\r | |
910 | SetNotPresentPage (\r | |
911 | IN UINTN Cr3,\r | |
912 | IN EFI_PHYSICAL_ADDRESS BaseAddress,\r | |
913 | IN UINT64 Length\r | |
914 | )\r | |
915 | {\r | |
916 | EFI_STATUS Status;\r | |
917 | \r | |
918 | Status = SmmSetMemoryAttributesEx (Cr3, m5LevelPagingNeeded, BaseAddress, Length, EFI_MEMORY_RP, NULL);\r | |
919 | return Status;\r | |
920 | }\r | |
921 | \r | |
922 | /**\r | |
923 | Retrieves a pointer to the system configuration table from the SMM System Table\r | |
924 | based on a specified GUID.\r | |
925 | \r | |
926 | @param[in] TableGuid The pointer to table's GUID type.\r | |
927 | @param[out] Table The pointer to the table associated with TableGuid in the EFI System Table.\r | |
928 | \r | |
929 | @retval EFI_SUCCESS A configuration table matching TableGuid was found.\r | |
930 | @retval EFI_NOT_FOUND A configuration table matching TableGuid could not be found.\r | |
931 | \r | |
932 | **/\r | |
933 | EFI_STATUS\r | |
934 | EFIAPI\r | |
935 | SmmGetSystemConfigurationTable (\r | |
936 | IN EFI_GUID *TableGuid,\r | |
937 | OUT VOID **Table\r | |
938 | )\r | |
939 | {\r | |
940 | UINTN Index;\r | |
941 | \r | |
942 | ASSERT (TableGuid != NULL);\r | |
943 | ASSERT (Table != NULL);\r | |
944 | \r | |
945 | *Table = NULL;\r | |
946 | for (Index = 0; Index < gSmst->NumberOfTableEntries; Index++) {\r | |
947 | if (CompareGuid (TableGuid, &(gSmst->SmmConfigurationTable[Index].VendorGuid))) {\r | |
948 | *Table = gSmst->SmmConfigurationTable[Index].VendorTable;\r | |
949 | return EFI_SUCCESS;\r | |
950 | }\r | |
951 | }\r | |
952 | \r | |
953 | return EFI_NOT_FOUND;\r | |
954 | }\r | |
955 | \r | |
956 | /**\r | |
957 | This function sets SMM save state buffer to be RW and XP.\r | |
958 | **/\r | |
959 | VOID\r | |
960 | PatchSmmSaveStateMap (\r | |
961 | VOID\r | |
962 | )\r | |
963 | {\r | |
964 | UINTN Index;\r | |
965 | UINTN TileCodeSize;\r | |
966 | UINTN TileDataSize;\r | |
967 | UINTN TileSize;\r | |
968 | \r | |
969 | TileCodeSize = GetSmiHandlerSize ();\r | |
970 | TileCodeSize = ALIGN_VALUE (TileCodeSize, SIZE_4KB);\r | |
971 | TileDataSize = (SMRAM_SAVE_STATE_MAP_OFFSET - SMM_PSD_OFFSET) + sizeof (SMRAM_SAVE_STATE_MAP);\r | |
972 | TileDataSize = ALIGN_VALUE (TileDataSize, SIZE_4KB);\r | |
973 | TileSize = TileDataSize + TileCodeSize - 1;\r | |
974 | TileSize = 2 * GetPowerOfTwo32 ((UINT32)TileSize);\r | |
975 | \r | |
976 | DEBUG ((DEBUG_INFO, "PatchSmmSaveStateMap:\n"));\r | |
977 | for (Index = 0; Index < mMaxNumberOfCpus - 1; Index++) {\r | |
978 | //\r | |
979 | // Code\r | |
980 | //\r | |
981 | SmmSetMemoryAttributes (\r | |
982 | mCpuHotPlugData.SmBase[Index] + SMM_HANDLER_OFFSET,\r | |
983 | TileCodeSize,\r | |
984 | EFI_MEMORY_RO\r | |
985 | );\r | |
986 | SmmClearMemoryAttributes (\r | |
987 | mCpuHotPlugData.SmBase[Index] + SMM_HANDLER_OFFSET,\r | |
988 | TileCodeSize,\r | |
989 | EFI_MEMORY_XP\r | |
990 | );\r | |
991 | \r | |
992 | //\r | |
993 | // Data\r | |
994 | //\r | |
995 | SmmClearMemoryAttributes (\r | |
996 | mCpuHotPlugData.SmBase[Index] + SMM_HANDLER_OFFSET + TileCodeSize,\r | |
997 | TileSize - TileCodeSize,\r | |
998 | EFI_MEMORY_RO\r | |
999 | );\r | |
1000 | SmmSetMemoryAttributes (\r | |
1001 | mCpuHotPlugData.SmBase[Index] + SMM_HANDLER_OFFSET + TileCodeSize,\r | |
1002 | TileSize - TileCodeSize,\r | |
1003 | EFI_MEMORY_XP\r | |
1004 | );\r | |
1005 | }\r | |
1006 | \r | |
1007 | //\r | |
1008 | // Code\r | |
1009 | //\r | |
1010 | SmmSetMemoryAttributes (\r | |
1011 | mCpuHotPlugData.SmBase[mMaxNumberOfCpus - 1] + SMM_HANDLER_OFFSET,\r | |
1012 | TileCodeSize,\r | |
1013 | EFI_MEMORY_RO\r | |
1014 | );\r | |
1015 | SmmClearMemoryAttributes (\r | |
1016 | mCpuHotPlugData.SmBase[mMaxNumberOfCpus - 1] + SMM_HANDLER_OFFSET,\r | |
1017 | TileCodeSize,\r | |
1018 | EFI_MEMORY_XP\r | |
1019 | );\r | |
1020 | \r | |
1021 | //\r | |
1022 | // Data\r | |
1023 | //\r | |
1024 | SmmClearMemoryAttributes (\r | |
1025 | mCpuHotPlugData.SmBase[mMaxNumberOfCpus - 1] + SMM_HANDLER_OFFSET + TileCodeSize,\r | |
1026 | SIZE_32KB - TileCodeSize,\r | |
1027 | EFI_MEMORY_RO\r | |
1028 | );\r | |
1029 | SmmSetMemoryAttributes (\r | |
1030 | mCpuHotPlugData.SmBase[mMaxNumberOfCpus - 1] + SMM_HANDLER_OFFSET + TileCodeSize,\r | |
1031 | SIZE_32KB - TileCodeSize,\r | |
1032 | EFI_MEMORY_XP\r | |
1033 | );\r | |
1034 | }\r | |
1035 | \r | |
1036 | /**\r | |
1037 | This function sets GDT/IDT buffer to be RO and XP.\r | |
1038 | **/\r | |
1039 | VOID\r | |
1040 | PatchGdtIdtMap (\r | |
1041 | VOID\r | |
1042 | )\r | |
1043 | {\r | |
1044 | EFI_PHYSICAL_ADDRESS BaseAddress;\r | |
1045 | UINTN Size;\r | |
1046 | \r | |
1047 | //\r | |
1048 | // GDT\r | |
1049 | //\r | |
1050 | DEBUG ((DEBUG_INFO, "PatchGdtIdtMap - GDT:\n"));\r | |
1051 | \r | |
1052 | BaseAddress = mGdtBuffer;\r | |
1053 | Size = ALIGN_VALUE (mGdtBufferSize, SIZE_4KB);\r | |
1054 | //\r | |
1055 | // The range should have been set to RO\r | |
1056 | // if it is allocated with EfiRuntimeServicesCode.\r | |
1057 | //\r | |
1058 | SmmSetMemoryAttributes (\r | |
1059 | BaseAddress,\r | |
1060 | Size,\r | |
1061 | EFI_MEMORY_XP\r | |
1062 | );\r | |
1063 | \r | |
1064 | //\r | |
1065 | // IDT\r | |
1066 | //\r | |
1067 | DEBUG ((DEBUG_INFO, "PatchGdtIdtMap - IDT:\n"));\r | |
1068 | \r | |
1069 | BaseAddress = gcSmiIdtr.Base;\r | |
1070 | Size = ALIGN_VALUE (gcSmiIdtr.Limit + 1, SIZE_4KB);\r | |
1071 | //\r | |
1072 | // The range should have been set to RO\r | |
1073 | // if it is allocated with EfiRuntimeServicesCode.\r | |
1074 | //\r | |
1075 | SmmSetMemoryAttributes (\r | |
1076 | BaseAddress,\r | |
1077 | Size,\r | |
1078 | EFI_MEMORY_XP\r | |
1079 | );\r | |
1080 | }\r | |
1081 | \r | |
1082 | /**\r | |
1083 | This function sets memory attribute according to MemoryAttributesTable.\r | |
1084 | **/\r | |
1085 | VOID\r | |
1086 | SetMemMapAttributes (\r | |
1087 | VOID\r | |
1088 | )\r | |
1089 | {\r | |
1090 | EFI_MEMORY_DESCRIPTOR *MemoryMap;\r | |
1091 | EFI_MEMORY_DESCRIPTOR *MemoryMapStart;\r | |
1092 | UINTN MemoryMapEntryCount;\r | |
1093 | UINTN DescriptorSize;\r | |
1094 | UINTN Index;\r | |
1095 | EDKII_PI_SMM_MEMORY_ATTRIBUTES_TABLE *MemoryAttributesTable;\r | |
1096 | \r | |
1097 | SmmGetSystemConfigurationTable (&gEdkiiPiSmmMemoryAttributesTableGuid, (VOID **)&MemoryAttributesTable);\r | |
1098 | if (MemoryAttributesTable == NULL) {\r | |
1099 | DEBUG ((DEBUG_INFO, "MemoryAttributesTable - NULL\n"));\r | |
1100 | return;\r | |
1101 | }\r | |
1102 | \r | |
1103 | DEBUG ((DEBUG_INFO, "MemoryAttributesTable:\n"));\r | |
1104 | DEBUG ((DEBUG_INFO, " Version - 0x%08x\n", MemoryAttributesTable->Version));\r | |
1105 | DEBUG ((DEBUG_INFO, " NumberOfEntries - 0x%08x\n", MemoryAttributesTable->NumberOfEntries));\r | |
1106 | DEBUG ((DEBUG_INFO, " DescriptorSize - 0x%08x\n", MemoryAttributesTable->DescriptorSize));\r | |
1107 | \r | |
1108 | MemoryMapEntryCount = MemoryAttributesTable->NumberOfEntries;\r | |
1109 | DescriptorSize = MemoryAttributesTable->DescriptorSize;\r | |
1110 | MemoryMapStart = (EFI_MEMORY_DESCRIPTOR *)(MemoryAttributesTable + 1);\r | |
1111 | MemoryMap = MemoryMapStart;\r | |
1112 | for (Index = 0; Index < MemoryMapEntryCount; Index++) {\r | |
1113 | DEBUG ((DEBUG_INFO, "Entry (0x%x)\n", MemoryMap));\r | |
1114 | DEBUG ((DEBUG_INFO, " Type - 0x%x\n", MemoryMap->Type));\r | |
1115 | DEBUG ((DEBUG_INFO, " PhysicalStart - 0x%016lx\n", MemoryMap->PhysicalStart));\r | |
1116 | DEBUG ((DEBUG_INFO, " VirtualStart - 0x%016lx\n", MemoryMap->VirtualStart));\r | |
1117 | DEBUG ((DEBUG_INFO, " NumberOfPages - 0x%016lx\n", MemoryMap->NumberOfPages));\r | |
1118 | DEBUG ((DEBUG_INFO, " Attribute - 0x%016lx\n", MemoryMap->Attribute));\r | |
1119 | MemoryMap = NEXT_MEMORY_DESCRIPTOR (MemoryMap, DescriptorSize);\r | |
1120 | }\r | |
1121 | \r | |
1122 | MemoryMap = MemoryMapStart;\r | |
1123 | for (Index = 0; Index < MemoryMapEntryCount; Index++) {\r | |
1124 | DEBUG ((DEBUG_VERBOSE, "SetAttribute: Memory Entry - 0x%lx, 0x%x\n", MemoryMap->PhysicalStart, MemoryMap->NumberOfPages));\r | |
1125 | switch (MemoryMap->Type) {\r | |
1126 | case EfiRuntimeServicesCode:\r | |
1127 | SmmSetMemoryAttributes (\r | |
1128 | MemoryMap->PhysicalStart,\r | |
1129 | EFI_PAGES_TO_SIZE ((UINTN)MemoryMap->NumberOfPages),\r | |
1130 | EFI_MEMORY_RO\r | |
1131 | );\r | |
1132 | break;\r | |
1133 | case EfiRuntimeServicesData:\r | |
1134 | SmmSetMemoryAttributes (\r | |
1135 | MemoryMap->PhysicalStart,\r | |
1136 | EFI_PAGES_TO_SIZE ((UINTN)MemoryMap->NumberOfPages),\r | |
1137 | EFI_MEMORY_XP\r | |
1138 | );\r | |
1139 | break;\r | |
1140 | default:\r | |
1141 | SmmSetMemoryAttributes (\r | |
1142 | MemoryMap->PhysicalStart,\r | |
1143 | EFI_PAGES_TO_SIZE ((UINTN)MemoryMap->NumberOfPages),\r | |
1144 | EFI_MEMORY_XP\r | |
1145 | );\r | |
1146 | break;\r | |
1147 | }\r | |
1148 | \r | |
1149 | MemoryMap = NEXT_MEMORY_DESCRIPTOR (MemoryMap, DescriptorSize);\r | |
1150 | }\r | |
1151 | \r | |
1152 | PatchSmmSaveStateMap ();\r | |
1153 | PatchGdtIdtMap ();\r | |
1154 | \r | |
1155 | return;\r | |
1156 | }\r | |
1157 | \r | |
1158 | /**\r | |
1159 | Sort memory map entries based upon PhysicalStart, from low to high.\r | |
1160 | \r | |
1161 | @param MemoryMap A pointer to the buffer in which firmware places\r | |
1162 | the current memory map.\r | |
1163 | @param MemoryMapSize Size, in bytes, of the MemoryMap buffer.\r | |
1164 | @param DescriptorSize Size, in bytes, of an individual EFI_MEMORY_DESCRIPTOR.\r | |
1165 | **/\r | |
1166 | STATIC\r | |
1167 | VOID\r | |
1168 | SortMemoryMap (\r | |
1169 | IN OUT EFI_MEMORY_DESCRIPTOR *MemoryMap,\r | |
1170 | IN UINTN MemoryMapSize,\r | |
1171 | IN UINTN DescriptorSize\r | |
1172 | )\r | |
1173 | {\r | |
1174 | EFI_MEMORY_DESCRIPTOR *MemoryMapEntry;\r | |
1175 | EFI_MEMORY_DESCRIPTOR *NextMemoryMapEntry;\r | |
1176 | EFI_MEMORY_DESCRIPTOR *MemoryMapEnd;\r | |
1177 | EFI_MEMORY_DESCRIPTOR TempMemoryMap;\r | |
1178 | \r | |
1179 | MemoryMapEntry = MemoryMap;\r | |
1180 | NextMemoryMapEntry = NEXT_MEMORY_DESCRIPTOR (MemoryMapEntry, DescriptorSize);\r | |
1181 | MemoryMapEnd = (EFI_MEMORY_DESCRIPTOR *)((UINT8 *)MemoryMap + MemoryMapSize);\r | |
1182 | while (MemoryMapEntry < MemoryMapEnd) {\r | |
1183 | while (NextMemoryMapEntry < MemoryMapEnd) {\r | |
1184 | if (MemoryMapEntry->PhysicalStart > NextMemoryMapEntry->PhysicalStart) {\r | |
1185 | CopyMem (&TempMemoryMap, MemoryMapEntry, sizeof (EFI_MEMORY_DESCRIPTOR));\r | |
1186 | CopyMem (MemoryMapEntry, NextMemoryMapEntry, sizeof (EFI_MEMORY_DESCRIPTOR));\r | |
1187 | CopyMem (NextMemoryMapEntry, &TempMemoryMap, sizeof (EFI_MEMORY_DESCRIPTOR));\r | |
1188 | }\r | |
1189 | \r | |
1190 | NextMemoryMapEntry = NEXT_MEMORY_DESCRIPTOR (NextMemoryMapEntry, DescriptorSize);\r | |
1191 | }\r | |
1192 | \r | |
1193 | MemoryMapEntry = NEXT_MEMORY_DESCRIPTOR (MemoryMapEntry, DescriptorSize);\r | |
1194 | NextMemoryMapEntry = NEXT_MEMORY_DESCRIPTOR (MemoryMapEntry, DescriptorSize);\r | |
1195 | }\r | |
1196 | }\r | |
1197 | \r | |
1198 | /**\r | |
1199 | Return if a UEFI memory page should be marked as not present in SMM page table.\r | |
1200 | If the memory map entries type is\r | |
1201 | EfiLoaderCode/Data, EfiBootServicesCode/Data, EfiConventionalMemory,\r | |
1202 | EfiUnusableMemory, EfiACPIReclaimMemory, return TRUE.\r | |
1203 | Or return FALSE.\r | |
1204 | \r | |
1205 | @param[in] MemoryMap A pointer to the memory descriptor.\r | |
1206 | \r | |
1207 | @return TRUE The memory described will be marked as not present in SMM page table.\r | |
1208 | @return FALSE The memory described will not be marked as not present in SMM page table.\r | |
1209 | **/\r | |
1210 | BOOLEAN\r | |
1211 | IsUefiPageNotPresent (\r | |
1212 | IN EFI_MEMORY_DESCRIPTOR *MemoryMap\r | |
1213 | )\r | |
1214 | {\r | |
1215 | switch (MemoryMap->Type) {\r | |
1216 | case EfiLoaderCode:\r | |
1217 | case EfiLoaderData:\r | |
1218 | case EfiBootServicesCode:\r | |
1219 | case EfiBootServicesData:\r | |
1220 | case EfiConventionalMemory:\r | |
1221 | case EfiUnusableMemory:\r | |
1222 | case EfiACPIReclaimMemory:\r | |
1223 | return TRUE;\r | |
1224 | default:\r | |
1225 | return FALSE;\r | |
1226 | }\r | |
1227 | }\r | |
1228 | \r | |
1229 | /**\r | |
1230 | Merge continuous memory map entries whose type is\r | |
1231 | EfiLoaderCode/Data, EfiBootServicesCode/Data, EfiConventionalMemory,\r | |
1232 | EfiUnusableMemory, EfiACPIReclaimMemory, because the memory described by\r | |
1233 | these entries will be set as NOT present in SMM page table.\r | |
1234 | \r | |
1235 | @param[in, out] MemoryMap A pointer to the buffer in which firmware places\r | |
1236 | the current memory map.\r | |
1237 | @param[in, out] MemoryMapSize A pointer to the size, in bytes, of the\r | |
1238 | MemoryMap buffer. On input, this is the size of\r | |
1239 | the current memory map. On output,\r | |
1240 | it is the size of new memory map after merge.\r | |
1241 | @param[in] DescriptorSize Size, in bytes, of an individual EFI_MEMORY_DESCRIPTOR.\r | |
1242 | **/\r | |
1243 | STATIC\r | |
1244 | VOID\r | |
1245 | MergeMemoryMapForNotPresentEntry (\r | |
1246 | IN OUT EFI_MEMORY_DESCRIPTOR *MemoryMap,\r | |
1247 | IN OUT UINTN *MemoryMapSize,\r | |
1248 | IN UINTN DescriptorSize\r | |
1249 | )\r | |
1250 | {\r | |
1251 | EFI_MEMORY_DESCRIPTOR *MemoryMapEntry;\r | |
1252 | EFI_MEMORY_DESCRIPTOR *MemoryMapEnd;\r | |
1253 | UINT64 MemoryBlockLength;\r | |
1254 | EFI_MEMORY_DESCRIPTOR *NewMemoryMapEntry;\r | |
1255 | EFI_MEMORY_DESCRIPTOR *NextMemoryMapEntry;\r | |
1256 | \r | |
1257 | MemoryMapEntry = MemoryMap;\r | |
1258 | NewMemoryMapEntry = MemoryMap;\r | |
1259 | MemoryMapEnd = (EFI_MEMORY_DESCRIPTOR *)((UINT8 *)MemoryMap + *MemoryMapSize);\r | |
1260 | while ((UINTN)MemoryMapEntry < (UINTN)MemoryMapEnd) {\r | |
1261 | CopyMem (NewMemoryMapEntry, MemoryMapEntry, sizeof (EFI_MEMORY_DESCRIPTOR));\r | |
1262 | NextMemoryMapEntry = NEXT_MEMORY_DESCRIPTOR (MemoryMapEntry, DescriptorSize);\r | |
1263 | \r | |
1264 | do {\r | |
1265 | MemoryBlockLength = (UINT64)(EFI_PAGES_TO_SIZE ((UINTN)MemoryMapEntry->NumberOfPages));\r | |
1266 | if (((UINTN)NextMemoryMapEntry < (UINTN)MemoryMapEnd) &&\r | |
1267 | IsUefiPageNotPresent (MemoryMapEntry) && IsUefiPageNotPresent (NextMemoryMapEntry) &&\r | |
1268 | ((MemoryMapEntry->PhysicalStart + MemoryBlockLength) == NextMemoryMapEntry->PhysicalStart))\r | |
1269 | {\r | |
1270 | MemoryMapEntry->NumberOfPages += NextMemoryMapEntry->NumberOfPages;\r | |
1271 | if (NewMemoryMapEntry != MemoryMapEntry) {\r | |
1272 | NewMemoryMapEntry->NumberOfPages += NextMemoryMapEntry->NumberOfPages;\r | |
1273 | }\r | |
1274 | \r | |
1275 | NextMemoryMapEntry = NEXT_MEMORY_DESCRIPTOR (NextMemoryMapEntry, DescriptorSize);\r | |
1276 | continue;\r | |
1277 | } else {\r | |
1278 | MemoryMapEntry = PREVIOUS_MEMORY_DESCRIPTOR (NextMemoryMapEntry, DescriptorSize);\r | |
1279 | break;\r | |
1280 | }\r | |
1281 | } while (TRUE);\r | |
1282 | \r | |
1283 | MemoryMapEntry = NEXT_MEMORY_DESCRIPTOR (MemoryMapEntry, DescriptorSize);\r | |
1284 | NewMemoryMapEntry = NEXT_MEMORY_DESCRIPTOR (NewMemoryMapEntry, DescriptorSize);\r | |
1285 | }\r | |
1286 | \r | |
1287 | *MemoryMapSize = (UINTN)NewMemoryMapEntry - (UINTN)MemoryMap;\r | |
1288 | \r | |
1289 | return;\r | |
1290 | }\r | |
1291 | \r | |
1292 | /**\r | |
1293 | This function caches the GCD memory map information.\r | |
1294 | **/\r | |
1295 | VOID\r | |
1296 | GetGcdMemoryMap (\r | |
1297 | VOID\r | |
1298 | )\r | |
1299 | {\r | |
1300 | UINTN NumberOfDescriptors;\r | |
1301 | EFI_GCD_MEMORY_SPACE_DESCRIPTOR *MemSpaceMap;\r | |
1302 | EFI_STATUS Status;\r | |
1303 | UINTN Index;\r | |
1304 | \r | |
1305 | Status = gDS->GetMemorySpaceMap (&NumberOfDescriptors, &MemSpaceMap);\r | |
1306 | if (EFI_ERROR (Status)) {\r | |
1307 | return;\r | |
1308 | }\r | |
1309 | \r | |
1310 | mGcdMemNumberOfDesc = 0;\r | |
1311 | for (Index = 0; Index < NumberOfDescriptors; Index++) {\r | |
1312 | if ((MemSpaceMap[Index].GcdMemoryType == EfiGcdMemoryTypeReserved) &&\r | |
1313 | ((MemSpaceMap[Index].Capabilities & (EFI_MEMORY_PRESENT | EFI_MEMORY_INITIALIZED | EFI_MEMORY_TESTED)) ==\r | |
1314 | (EFI_MEMORY_PRESENT | EFI_MEMORY_INITIALIZED))\r | |
1315 | )\r | |
1316 | {\r | |
1317 | mGcdMemNumberOfDesc++;\r | |
1318 | }\r | |
1319 | }\r | |
1320 | \r | |
1321 | mGcdMemSpace = AllocateZeroPool (mGcdMemNumberOfDesc * sizeof (EFI_GCD_MEMORY_SPACE_DESCRIPTOR));\r | |
1322 | ASSERT (mGcdMemSpace != NULL);\r | |
1323 | if (mGcdMemSpace == NULL) {\r | |
1324 | mGcdMemNumberOfDesc = 0;\r | |
1325 | gBS->FreePool (MemSpaceMap);\r | |
1326 | return;\r | |
1327 | }\r | |
1328 | \r | |
1329 | mGcdMemNumberOfDesc = 0;\r | |
1330 | for (Index = 0; Index < NumberOfDescriptors; Index++) {\r | |
1331 | if ((MemSpaceMap[Index].GcdMemoryType == EfiGcdMemoryTypeReserved) &&\r | |
1332 | ((MemSpaceMap[Index].Capabilities & (EFI_MEMORY_PRESENT | EFI_MEMORY_INITIALIZED | EFI_MEMORY_TESTED)) ==\r | |
1333 | (EFI_MEMORY_PRESENT | EFI_MEMORY_INITIALIZED))\r | |
1334 | )\r | |
1335 | {\r | |
1336 | CopyMem (\r | |
1337 | &mGcdMemSpace[mGcdMemNumberOfDesc],\r | |
1338 | &MemSpaceMap[Index],\r | |
1339 | sizeof (EFI_GCD_MEMORY_SPACE_DESCRIPTOR)\r | |
1340 | );\r | |
1341 | mGcdMemNumberOfDesc++;\r | |
1342 | }\r | |
1343 | }\r | |
1344 | \r | |
1345 | gBS->FreePool (MemSpaceMap);\r | |
1346 | }\r | |
1347 | \r | |
1348 | /**\r | |
1349 | Get UEFI MemoryAttributesTable.\r | |
1350 | **/\r | |
1351 | VOID\r | |
1352 | GetUefiMemoryAttributesTable (\r | |
1353 | VOID\r | |
1354 | )\r | |
1355 | {\r | |
1356 | EFI_STATUS Status;\r | |
1357 | EFI_MEMORY_ATTRIBUTES_TABLE *MemoryAttributesTable;\r | |
1358 | UINTN MemoryAttributesTableSize;\r | |
1359 | \r | |
1360 | Status = EfiGetSystemConfigurationTable (&gEfiMemoryAttributesTableGuid, (VOID **)&MemoryAttributesTable);\r | |
1361 | if (!EFI_ERROR (Status) && (MemoryAttributesTable != NULL)) {\r | |
1362 | MemoryAttributesTableSize = sizeof (EFI_MEMORY_ATTRIBUTES_TABLE) + MemoryAttributesTable->DescriptorSize * MemoryAttributesTable->NumberOfEntries;\r | |
1363 | mUefiMemoryAttributesTable = AllocateCopyPool (MemoryAttributesTableSize, MemoryAttributesTable);\r | |
1364 | ASSERT (mUefiMemoryAttributesTable != NULL);\r | |
1365 | }\r | |
1366 | }\r | |
1367 | \r | |
1368 | /**\r | |
1369 | This function caches the UEFI memory map information.\r | |
1370 | **/\r | |
1371 | VOID\r | |
1372 | GetUefiMemoryMap (\r | |
1373 | VOID\r | |
1374 | )\r | |
1375 | {\r | |
1376 | EFI_STATUS Status;\r | |
1377 | UINTN MapKey;\r | |
1378 | UINT32 DescriptorVersion;\r | |
1379 | EFI_MEMORY_DESCRIPTOR *MemoryMap;\r | |
1380 | UINTN UefiMemoryMapSize;\r | |
1381 | \r | |
1382 | DEBUG ((DEBUG_INFO, "GetUefiMemoryMap\n"));\r | |
1383 | \r | |
1384 | UefiMemoryMapSize = 0;\r | |
1385 | MemoryMap = NULL;\r | |
1386 | Status = gBS->GetMemoryMap (\r | |
1387 | &UefiMemoryMapSize,\r | |
1388 | MemoryMap,\r | |
1389 | &MapKey,\r | |
1390 | &mUefiDescriptorSize,\r | |
1391 | &DescriptorVersion\r | |
1392 | );\r | |
1393 | ASSERT (Status == EFI_BUFFER_TOO_SMALL);\r | |
1394 | \r | |
1395 | do {\r | |
1396 | Status = gBS->AllocatePool (EfiBootServicesData, UefiMemoryMapSize, (VOID **)&MemoryMap);\r | |
1397 | ASSERT (MemoryMap != NULL);\r | |
1398 | if (MemoryMap == NULL) {\r | |
1399 | return;\r | |
1400 | }\r | |
1401 | \r | |
1402 | Status = gBS->GetMemoryMap (\r | |
1403 | &UefiMemoryMapSize,\r | |
1404 | MemoryMap,\r | |
1405 | &MapKey,\r | |
1406 | &mUefiDescriptorSize,\r | |
1407 | &DescriptorVersion\r | |
1408 | );\r | |
1409 | if (EFI_ERROR (Status)) {\r | |
1410 | gBS->FreePool (MemoryMap);\r | |
1411 | MemoryMap = NULL;\r | |
1412 | }\r | |
1413 | } while (Status == EFI_BUFFER_TOO_SMALL);\r | |
1414 | \r | |
1415 | if (MemoryMap == NULL) {\r | |
1416 | return;\r | |
1417 | }\r | |
1418 | \r | |
1419 | SortMemoryMap (MemoryMap, UefiMemoryMapSize, mUefiDescriptorSize);\r | |
1420 | MergeMemoryMapForNotPresentEntry (MemoryMap, &UefiMemoryMapSize, mUefiDescriptorSize);\r | |
1421 | \r | |
1422 | mUefiMemoryMapSize = UefiMemoryMapSize;\r | |
1423 | mUefiMemoryMap = AllocateCopyPool (UefiMemoryMapSize, MemoryMap);\r | |
1424 | ASSERT (mUefiMemoryMap != NULL);\r | |
1425 | \r | |
1426 | gBS->FreePool (MemoryMap);\r | |
1427 | \r | |
1428 | //\r | |
1429 | // Get additional information from GCD memory map.\r | |
1430 | //\r | |
1431 | GetGcdMemoryMap ();\r | |
1432 | \r | |
1433 | //\r | |
1434 | // Get UEFI memory attributes table.\r | |
1435 | //\r | |
1436 | GetUefiMemoryAttributesTable ();\r | |
1437 | }\r | |
1438 | \r | |
1439 | /**\r | |
1440 | This function sets UEFI memory attribute according to UEFI memory map.\r | |
1441 | \r | |
1442 | The normal memory region is marked as not present, such as\r | |
1443 | EfiLoaderCode/Data, EfiBootServicesCode/Data, EfiConventionalMemory,\r | |
1444 | EfiUnusableMemory, EfiACPIReclaimMemory.\r | |
1445 | **/\r | |
1446 | VOID\r | |
1447 | SetUefiMemMapAttributes (\r | |
1448 | VOID\r | |
1449 | )\r | |
1450 | {\r | |
1451 | EFI_STATUS Status;\r | |
1452 | EFI_MEMORY_DESCRIPTOR *MemoryMap;\r | |
1453 | UINTN MemoryMapEntryCount;\r | |
1454 | UINTN Index;\r | |
1455 | EFI_MEMORY_DESCRIPTOR *Entry;\r | |
1456 | \r | |
1457 | DEBUG ((DEBUG_INFO, "SetUefiMemMapAttributes\n"));\r | |
1458 | \r | |
1459 | if (mUefiMemoryMap != NULL) {\r | |
1460 | MemoryMapEntryCount = mUefiMemoryMapSize/mUefiDescriptorSize;\r | |
1461 | MemoryMap = mUefiMemoryMap;\r | |
1462 | for (Index = 0; Index < MemoryMapEntryCount; Index++) {\r | |
1463 | if (IsUefiPageNotPresent (MemoryMap)) {\r | |
1464 | Status = SmmSetMemoryAttributes (\r | |
1465 | MemoryMap->PhysicalStart,\r | |
1466 | EFI_PAGES_TO_SIZE ((UINTN)MemoryMap->NumberOfPages),\r | |
1467 | EFI_MEMORY_RP\r | |
1468 | );\r | |
1469 | DEBUG ((\r | |
1470 | DEBUG_INFO,\r | |
1471 | "UefiMemory protection: 0x%lx - 0x%lx %r\n",\r | |
1472 | MemoryMap->PhysicalStart,\r | |
1473 | MemoryMap->PhysicalStart + (UINT64)EFI_PAGES_TO_SIZE ((UINTN)MemoryMap->NumberOfPages),\r | |
1474 | Status\r | |
1475 | ));\r | |
1476 | }\r | |
1477 | \r | |
1478 | MemoryMap = NEXT_MEMORY_DESCRIPTOR (MemoryMap, mUefiDescriptorSize);\r | |
1479 | }\r | |
1480 | }\r | |
1481 | \r | |
1482 | //\r | |
1483 | // Do not free mUefiMemoryMap, it will be checked in IsSmmCommBufferForbiddenAddress().\r | |
1484 | //\r | |
1485 | \r | |
1486 | //\r | |
1487 | // Set untested memory as not present.\r | |
1488 | //\r | |
1489 | if (mGcdMemSpace != NULL) {\r | |
1490 | for (Index = 0; Index < mGcdMemNumberOfDesc; Index++) {\r | |
1491 | Status = SmmSetMemoryAttributes (\r | |
1492 | mGcdMemSpace[Index].BaseAddress,\r | |
1493 | mGcdMemSpace[Index].Length,\r | |
1494 | EFI_MEMORY_RP\r | |
1495 | );\r | |
1496 | DEBUG ((\r | |
1497 | DEBUG_INFO,\r | |
1498 | "GcdMemory protection: 0x%lx - 0x%lx %r\n",\r | |
1499 | mGcdMemSpace[Index].BaseAddress,\r | |
1500 | mGcdMemSpace[Index].BaseAddress + mGcdMemSpace[Index].Length,\r | |
1501 | Status\r | |
1502 | ));\r | |
1503 | }\r | |
1504 | }\r | |
1505 | \r | |
1506 | //\r | |
1507 | // Do not free mGcdMemSpace, it will be checked in IsSmmCommBufferForbiddenAddress().\r | |
1508 | //\r | |
1509 | \r | |
1510 | //\r | |
1511 | // Set UEFI runtime memory with EFI_MEMORY_RO as not present.\r | |
1512 | //\r | |
1513 | if (mUefiMemoryAttributesTable != NULL) {\r | |
1514 | Entry = (EFI_MEMORY_DESCRIPTOR *)(mUefiMemoryAttributesTable + 1);\r | |
1515 | for (Index = 0; Index < mUefiMemoryAttributesTable->NumberOfEntries; Index++) {\r | |
1516 | if ((Entry->Type == EfiRuntimeServicesCode) || (Entry->Type == EfiRuntimeServicesData)) {\r | |
1517 | if ((Entry->Attribute & EFI_MEMORY_RO) != 0) {\r | |
1518 | Status = SmmSetMemoryAttributes (\r | |
1519 | Entry->PhysicalStart,\r | |
1520 | EFI_PAGES_TO_SIZE ((UINTN)Entry->NumberOfPages),\r | |
1521 | EFI_MEMORY_RP\r | |
1522 | );\r | |
1523 | DEBUG ((\r | |
1524 | DEBUG_INFO,\r | |
1525 | "UefiMemoryAttribute protection: 0x%lx - 0x%lx %r\n",\r | |
1526 | Entry->PhysicalStart,\r | |
1527 | Entry->PhysicalStart + (UINT64)EFI_PAGES_TO_SIZE ((UINTN)Entry->NumberOfPages),\r | |
1528 | Status\r | |
1529 | ));\r | |
1530 | }\r | |
1531 | }\r | |
1532 | \r | |
1533 | Entry = NEXT_MEMORY_DESCRIPTOR (Entry, mUefiMemoryAttributesTable->DescriptorSize);\r | |
1534 | }\r | |
1535 | }\r | |
1536 | \r | |
1537 | //\r | |
1538 | // Do not free mUefiMemoryAttributesTable, it will be checked in IsSmmCommBufferForbiddenAddress().\r | |
1539 | //\r | |
1540 | }\r | |
1541 | \r | |
1542 | /**\r | |
1543 | Return if the Address is forbidden as SMM communication buffer.\r | |
1544 | \r | |
1545 | @param[in] Address the address to be checked\r | |
1546 | \r | |
1547 | @return TRUE The address is forbidden as SMM communication buffer.\r | |
1548 | @return FALSE The address is allowed as SMM communication buffer.\r | |
1549 | **/\r | |
1550 | BOOLEAN\r | |
1551 | IsSmmCommBufferForbiddenAddress (\r | |
1552 | IN UINT64 Address\r | |
1553 | )\r | |
1554 | {\r | |
1555 | EFI_MEMORY_DESCRIPTOR *MemoryMap;\r | |
1556 | UINTN MemoryMapEntryCount;\r | |
1557 | UINTN Index;\r | |
1558 | EFI_MEMORY_DESCRIPTOR *Entry;\r | |
1559 | \r | |
1560 | if (mUefiMemoryMap != NULL) {\r | |
1561 | MemoryMap = mUefiMemoryMap;\r | |
1562 | MemoryMapEntryCount = mUefiMemoryMapSize/mUefiDescriptorSize;\r | |
1563 | for (Index = 0; Index < MemoryMapEntryCount; Index++) {\r | |
1564 | if (IsUefiPageNotPresent (MemoryMap)) {\r | |
1565 | if ((Address >= MemoryMap->PhysicalStart) &&\r | |
1566 | (Address < MemoryMap->PhysicalStart + EFI_PAGES_TO_SIZE ((UINTN)MemoryMap->NumberOfPages)))\r | |
1567 | {\r | |
1568 | return TRUE;\r | |
1569 | }\r | |
1570 | }\r | |
1571 | \r | |
1572 | MemoryMap = NEXT_MEMORY_DESCRIPTOR (MemoryMap, mUefiDescriptorSize);\r | |
1573 | }\r | |
1574 | }\r | |
1575 | \r | |
1576 | if (mGcdMemSpace != NULL) {\r | |
1577 | for (Index = 0; Index < mGcdMemNumberOfDesc; Index++) {\r | |
1578 | if ((Address >= mGcdMemSpace[Index].BaseAddress) &&\r | |
1579 | (Address < mGcdMemSpace[Index].BaseAddress + mGcdMemSpace[Index].Length))\r | |
1580 | {\r | |
1581 | return TRUE;\r | |
1582 | }\r | |
1583 | }\r | |
1584 | }\r | |
1585 | \r | |
1586 | if (mUefiMemoryAttributesTable != NULL) {\r | |
1587 | Entry = (EFI_MEMORY_DESCRIPTOR *)(mUefiMemoryAttributesTable + 1);\r | |
1588 | for (Index = 0; Index < mUefiMemoryAttributesTable->NumberOfEntries; Index++) {\r | |
1589 | if ((Entry->Type == EfiRuntimeServicesCode) || (Entry->Type == EfiRuntimeServicesData)) {\r | |
1590 | if ((Entry->Attribute & EFI_MEMORY_RO) != 0) {\r | |
1591 | if ((Address >= Entry->PhysicalStart) &&\r | |
1592 | (Address < Entry->PhysicalStart + LShiftU64 (Entry->NumberOfPages, EFI_PAGE_SHIFT)))\r | |
1593 | {\r | |
1594 | return TRUE;\r | |
1595 | }\r | |
1596 | \r | |
1597 | Entry = NEXT_MEMORY_DESCRIPTOR (Entry, mUefiMemoryAttributesTable->DescriptorSize);\r | |
1598 | }\r | |
1599 | }\r | |
1600 | }\r | |
1601 | }\r | |
1602 | \r | |
1603 | return FALSE;\r | |
1604 | }\r | |
1605 | \r | |
1606 | /**\r | |
1607 | This function set given attributes of the memory region specified by\r | |
1608 | BaseAddress and Length.\r | |
1609 | \r | |
1610 | @param This The EDKII_SMM_MEMORY_ATTRIBUTE_PROTOCOL instance.\r | |
1611 | @param BaseAddress The physical address that is the start address of\r | |
1612 | a memory region.\r | |
1613 | @param Length The size in bytes of the memory region.\r | |
1614 | @param Attributes The bit mask of attributes to set for the memory\r | |
1615 | region.\r | |
1616 | \r | |
1617 | @retval EFI_SUCCESS The attributes were set for the memory region.\r | |
1618 | @retval EFI_INVALID_PARAMETER Length is zero.\r | |
1619 | Attributes specified an illegal combination of\r | |
1620 | attributes that cannot be set together.\r | |
1621 | @retval EFI_UNSUPPORTED The processor does not support one or more\r | |
1622 | bytes of the memory resource range specified\r | |
1623 | by BaseAddress and Length.\r | |
1624 | The bit mask of attributes is not supported for\r | |
1625 | the memory resource range specified by\r | |
1626 | BaseAddress and Length.\r | |
1627 | \r | |
1628 | **/\r | |
1629 | EFI_STATUS\r | |
1630 | EFIAPI\r | |
1631 | EdkiiSmmSetMemoryAttributes (\r | |
1632 | IN EDKII_SMM_MEMORY_ATTRIBUTE_PROTOCOL *This,\r | |
1633 | IN EFI_PHYSICAL_ADDRESS BaseAddress,\r | |
1634 | IN UINT64 Length,\r | |
1635 | IN UINT64 Attributes\r | |
1636 | )\r | |
1637 | {\r | |
1638 | return SmmSetMemoryAttributes (BaseAddress, Length, Attributes);\r | |
1639 | }\r | |
1640 | \r | |
1641 | /**\r | |
1642 | This function clears given attributes of the memory region specified by\r | |
1643 | BaseAddress and Length.\r | |
1644 | \r | |
1645 | @param This The EDKII_SMM_MEMORY_ATTRIBUTE_PROTOCOL instance.\r | |
1646 | @param BaseAddress The physical address that is the start address of\r | |
1647 | a memory region.\r | |
1648 | @param Length The size in bytes of the memory region.\r | |
1649 | @param Attributes The bit mask of attributes to clear for the memory\r | |
1650 | region.\r | |
1651 | \r | |
1652 | @retval EFI_SUCCESS The attributes were cleared for the memory region.\r | |
1653 | @retval EFI_INVALID_PARAMETER Length is zero.\r | |
1654 | Attributes specified an illegal combination of\r | |
1655 | attributes that cannot be cleared together.\r | |
1656 | @retval EFI_UNSUPPORTED The processor does not support one or more\r | |
1657 | bytes of the memory resource range specified\r | |
1658 | by BaseAddress and Length.\r | |
1659 | The bit mask of attributes is not supported for\r | |
1660 | the memory resource range specified by\r | |
1661 | BaseAddress and Length.\r | |
1662 | \r | |
1663 | **/\r | |
1664 | EFI_STATUS\r | |
1665 | EFIAPI\r | |
1666 | EdkiiSmmClearMemoryAttributes (\r | |
1667 | IN EDKII_SMM_MEMORY_ATTRIBUTE_PROTOCOL *This,\r | |
1668 | IN EFI_PHYSICAL_ADDRESS BaseAddress,\r | |
1669 | IN UINT64 Length,\r | |
1670 | IN UINT64 Attributes\r | |
1671 | )\r | |
1672 | {\r | |
1673 | return SmmClearMemoryAttributes (BaseAddress, Length, Attributes);\r | |
1674 | }\r | |
1675 | \r | |
1676 | /**\r | |
1677 | This function retrieves the attributes of the memory region specified by\r | |
1678 | BaseAddress and Length. If different attributes are got from different part\r | |
1679 | of the memory region, EFI_NO_MAPPING will be returned.\r | |
1680 | \r | |
1681 | @param This The EDKII_SMM_MEMORY_ATTRIBUTE_PROTOCOL instance.\r | |
1682 | @param BaseAddress The physical address that is the start address of\r | |
1683 | a memory region.\r | |
1684 | @param Length The size in bytes of the memory region.\r | |
1685 | @param Attributes Pointer to attributes returned.\r | |
1686 | \r | |
1687 | @retval EFI_SUCCESS The attributes got for the memory region.\r | |
1688 | @retval EFI_INVALID_PARAMETER Length is zero.\r | |
1689 | Attributes is NULL.\r | |
1690 | @retval EFI_NO_MAPPING Attributes are not consistent cross the memory\r | |
1691 | region.\r | |
1692 | @retval EFI_UNSUPPORTED The processor does not support one or more\r | |
1693 | bytes of the memory resource range specified\r | |
1694 | by BaseAddress and Length.\r | |
1695 | \r | |
1696 | **/\r | |
1697 | EFI_STATUS\r | |
1698 | EFIAPI\r | |
1699 | EdkiiSmmGetMemoryAttributes (\r | |
1700 | IN EDKII_SMM_MEMORY_ATTRIBUTE_PROTOCOL *This,\r | |
1701 | IN EFI_PHYSICAL_ADDRESS BaseAddress,\r | |
1702 | IN UINT64 Length,\r | |
1703 | OUT UINT64 *Attributes\r | |
1704 | )\r | |
1705 | {\r | |
1706 | EFI_PHYSICAL_ADDRESS Address;\r | |
1707 | UINT64 *PageEntry;\r | |
1708 | UINT64 MemAttr;\r | |
1709 | PAGE_ATTRIBUTE PageAttr;\r | |
1710 | INT64 Size;\r | |
1711 | UINTN PageTableBase;\r | |
1712 | BOOLEAN EnablePML5Paging;\r | |
1713 | IA32_CR4 Cr4;\r | |
1714 | \r | |
1715 | if ((Length < SIZE_4KB) || (Attributes == NULL)) {\r | |
1716 | return EFI_INVALID_PARAMETER;\r | |
1717 | }\r | |
1718 | \r | |
1719 | Size = (INT64)Length;\r | |
1720 | MemAttr = (UINT64)-1;\r | |
1721 | \r | |
1722 | PageTableBase = AsmReadCr3 () & PAGING_4K_ADDRESS_MASK_64;\r | |
1723 | Cr4.UintN = AsmReadCr4 ();\r | |
1724 | EnablePML5Paging = (BOOLEAN)(Cr4.Bits.LA57 == 1);\r | |
1725 | \r | |
1726 | do {\r | |
1727 | PageEntry = GetPageTableEntry (PageTableBase, EnablePML5Paging, BaseAddress, &PageAttr);\r | |
1728 | if ((PageEntry == NULL) || (PageAttr == PageNone)) {\r | |
1729 | return EFI_UNSUPPORTED;\r | |
1730 | }\r | |
1731 | \r | |
1732 | //\r | |
1733 | // If the memory range is cross page table boundary, make sure they\r | |
1734 | // share the same attribute. Return EFI_NO_MAPPING if not.\r | |
1735 | //\r | |
1736 | *Attributes = GetAttributesFromPageEntry (PageEntry);\r | |
1737 | if ((MemAttr != (UINT64)-1) && (*Attributes != MemAttr)) {\r | |
1738 | return EFI_NO_MAPPING;\r | |
1739 | }\r | |
1740 | \r | |
1741 | switch (PageAttr) {\r | |
1742 | case Page4K:\r | |
1743 | Address = *PageEntry & ~mAddressEncMask & PAGING_4K_ADDRESS_MASK_64;\r | |
1744 | Size -= (SIZE_4KB - (BaseAddress - Address));\r | |
1745 | BaseAddress += (SIZE_4KB - (BaseAddress - Address));\r | |
1746 | break;\r | |
1747 | \r | |
1748 | case Page2M:\r | |
1749 | Address = *PageEntry & ~mAddressEncMask & PAGING_2M_ADDRESS_MASK_64;\r | |
1750 | Size -= SIZE_2MB - (BaseAddress - Address);\r | |
1751 | BaseAddress += SIZE_2MB - (BaseAddress - Address);\r | |
1752 | break;\r | |
1753 | \r | |
1754 | case Page1G:\r | |
1755 | Address = *PageEntry & ~mAddressEncMask & PAGING_1G_ADDRESS_MASK_64;\r | |
1756 | Size -= SIZE_1GB - (BaseAddress - Address);\r | |
1757 | BaseAddress += SIZE_1GB - (BaseAddress - Address);\r | |
1758 | break;\r | |
1759 | \r | |
1760 | default:\r | |
1761 | return EFI_UNSUPPORTED;\r | |
1762 | }\r | |
1763 | \r | |
1764 | MemAttr = *Attributes;\r | |
1765 | } while (Size > 0);\r | |
1766 | \r | |
1767 | return EFI_SUCCESS;\r | |
1768 | }\r | |
1769 | \r | |
1770 | /**\r | |
1771 | Prevent the memory pages used for SMM page table from been overwritten.\r | |
1772 | **/\r | |
1773 | VOID\r | |
1774 | EnablePageTableProtection (\r | |
1775 | VOID\r | |
1776 | )\r | |
1777 | {\r | |
1778 | PAGE_TABLE_POOL *HeadPool;\r | |
1779 | PAGE_TABLE_POOL *Pool;\r | |
1780 | UINT64 PoolSize;\r | |
1781 | EFI_PHYSICAL_ADDRESS Address;\r | |
1782 | UINTN PageTableBase;\r | |
1783 | \r | |
1784 | if (mPageTablePool == NULL) {\r | |
1785 | return;\r | |
1786 | }\r | |
1787 | \r | |
1788 | PageTableBase = AsmReadCr3 () & PAGING_4K_ADDRESS_MASK_64;\r | |
1789 | \r | |
1790 | //\r | |
1791 | // ConvertMemoryPageAttributes might update mPageTablePool. It's safer to\r | |
1792 | // remember original one in advance.\r | |
1793 | //\r | |
1794 | HeadPool = mPageTablePool;\r | |
1795 | Pool = HeadPool;\r | |
1796 | do {\r | |
1797 | Address = (EFI_PHYSICAL_ADDRESS)(UINTN)Pool;\r | |
1798 | PoolSize = Pool->Offset + EFI_PAGES_TO_SIZE (Pool->FreePages);\r | |
1799 | //\r | |
1800 | // Set entire pool including header, used-memory and left free-memory as ReadOnly in SMM page table.\r | |
1801 | //\r | |
1802 | ConvertMemoryPageAttributes (PageTableBase, m5LevelPagingNeeded, Address, PoolSize, EFI_MEMORY_RO, TRUE, NULL, NULL);\r | |
1803 | Pool = Pool->NextPool;\r | |
1804 | } while (Pool != HeadPool);\r | |
1805 | }\r | |
1806 | \r | |
1807 | /**\r | |
1808 | Return whether memory used by SMM page table need to be set as Read Only.\r | |
1809 | \r | |
1810 | @retval TRUE Need to set SMM page table as Read Only.\r | |
1811 | @retval FALSE Do not set SMM page table as Read Only.\r | |
1812 | **/\r | |
1813 | BOOLEAN\r | |
1814 | IfReadOnlyPageTableNeeded (\r | |
1815 | VOID\r | |
1816 | )\r | |
1817 | {\r | |
1818 | //\r | |
1819 | // Don't mark page table memory as read-only if\r | |
1820 | // - no restriction on access to non-SMRAM memory; or\r | |
1821 | // - SMM heap guard feature enabled; or\r | |
1822 | // BIT2: SMM page guard enabled\r | |
1823 | // BIT3: SMM pool guard enabled\r | |
1824 | // - SMM profile feature enabled\r | |
1825 | //\r | |
1826 | if (!IsRestrictedMemoryAccess () ||\r | |
1827 | ((PcdGet8 (PcdHeapGuardPropertyMask) & (BIT3 | BIT2)) != 0) ||\r | |
1828 | FeaturePcdGet (PcdCpuSmmProfileEnable))\r | |
1829 | {\r | |
1830 | if (sizeof (UINTN) == sizeof (UINT64)) {\r | |
1831 | //\r | |
1832 | // Restriction on access to non-SMRAM memory and heap guard could not be enabled at the same time.\r | |
1833 | //\r | |
1834 | ASSERT (\r | |
1835 | !(IsRestrictedMemoryAccess () &&\r | |
1836 | (PcdGet8 (PcdHeapGuardPropertyMask) & (BIT3 | BIT2)) != 0)\r | |
1837 | );\r | |
1838 | \r | |
1839 | //\r | |
1840 | // Restriction on access to non-SMRAM memory and SMM profile could not be enabled at the same time.\r | |
1841 | //\r | |
1842 | ASSERT (!(IsRestrictedMemoryAccess () && FeaturePcdGet (PcdCpuSmmProfileEnable)));\r | |
1843 | }\r | |
1844 | \r | |
1845 | return FALSE;\r | |
1846 | }\r | |
1847 | \r | |
1848 | return TRUE;\r | |
1849 | }\r | |
1850 | \r | |
1851 | /**\r | |
1852 | This function sets memory attribute for page table.\r | |
1853 | **/\r | |
1854 | VOID\r | |
1855 | SetPageTableAttributes (\r | |
1856 | VOID\r | |
1857 | )\r | |
1858 | {\r | |
1859 | BOOLEAN CetEnabled;\r | |
1860 | \r | |
1861 | if (!IfReadOnlyPageTableNeeded ()) {\r | |
1862 | return;\r | |
1863 | }\r | |
1864 | \r | |
1865 | DEBUG ((DEBUG_INFO, "SetPageTableAttributes\n"));\r | |
1866 | \r | |
1867 | //\r | |
1868 | // Disable write protection, because we need mark page table to be write protected.\r | |
1869 | // We need *write* page table memory, to mark itself to be *read only*.\r | |
1870 | //\r | |
1871 | CetEnabled = ((AsmReadCr4 () & CR4_CET_ENABLE) != 0) ? TRUE : FALSE;\r | |
1872 | if (CetEnabled) {\r | |
1873 | //\r | |
1874 | // CET must be disabled if WP is disabled.\r | |
1875 | //\r | |
1876 | DisableCet ();\r | |
1877 | }\r | |
1878 | \r | |
1879 | AsmWriteCr0 (AsmReadCr0 () & ~CR0_WP);\r | |
1880 | \r | |
1881 | // Set memory used by page table as Read Only.\r | |
1882 | DEBUG ((DEBUG_INFO, "Start...\n"));\r | |
1883 | EnablePageTableProtection ();\r | |
1884 | \r | |
1885 | //\r | |
1886 | // Enable write protection, after page table attribute updated.\r | |
1887 | //\r | |
1888 | AsmWriteCr0 (AsmReadCr0 () | CR0_WP);\r | |
1889 | mIsReadOnlyPageTable = TRUE;\r | |
1890 | \r | |
1891 | //\r | |
1892 | // Flush TLB after mark all page table pool as read only.\r | |
1893 | //\r | |
1894 | FlushTlbForAll ();\r | |
1895 | \r | |
1896 | if (CetEnabled) {\r | |
1897 | //\r | |
1898 | // re-enable CET.\r | |
1899 | //\r | |
1900 | EnableCet ();\r | |
1901 | }\r | |
1902 | \r | |
1903 | return;\r | |
1904 | }\r |