Changes/fixes on top of v11 AMD patches for non-PSP case #26
+576
−125
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Just use grub_divmod64() explicitly like all other code does. Signed-off-by: Sergii Dmytruk <[email protected]>
Signed-off-by: Sergii Dmytruk <[email protected]>
The behaviour is implementation specific and in case of GCC 32-bit pointers are **sign-extended** on conversions to a larger integer type, thus producing invalid values. The opposite isn't dangerous, but still generates compiler warnings. Go through `grub_addr_t` in both cases. https://gcc.gnu.org/onlinedocs/gcc/Arrays-and-pointers-implementation.html Signed-off-by: Sergii Dmytruk <[email protected]>
Signed-off-by: Sergii Dmytruk <[email protected]>
Signed-off-by: Sergii Dmytruk <[email protected]>
Signed-off-by: Michał Żygowski <[email protected]> Signed-off-by: Krystian Hebel <[email protected]> Signed-off-by: Sergii Dmytruk <[email protected]>
Signed-off-by: Sergii Dmytruk <[email protected]>
Signed-off-by: Sergii Dmytruk <[email protected]>
Signed-off-by: Sergii Dmytruk <[email protected]>
Only the case of legacy boot has slparams->mle_start and slparams->mle_mem different. Other places are updated for consistency. Signed-off-by: Sergii Dmytruk <[email protected]>
Signed-off-by: Sergii Dmytruk <[email protected]>
Make them more comprehensive and remove the `skl_size < (8*GRUB_PAGE_SIZE)` one which doesn't make much sense. Signed-off-by: Sergii Dmytruk <[email protected]>
GRUB_MULTIBOOT(get_mbi_size) returns an upper bound on MBI's size instead of the actual size. It could also be used for measurements after zeroing unused parts of the buffer, but using an actual size seems like a better option as the same MBI will always have the same hash regardless of the amount of extra memory that follows it. Signed-off-by: Sergii Dmytruk <[email protected]>
Signed-off-by: Sergii Dmytruk <[email protected]>
Signed-off-by: Sergii Dmytruk <[email protected]>
Signed-off-by: Sergii Dmytruk <[email protected]>
Signed-off-by: Sergii Dmytruk <[email protected]>
Not all boot methods are Linux EFI boot methods. Signed-off-by: Sergii Dmytruk <[email protected]>
Signed-off-by: Sergii Dmytruk <[email protected]>
Signed-off-by: Sergii Dmytruk <[email protected]>
Signed-off-by: Sergii Dmytruk <[email protected]>
The code makes sure that MBI entry goes first in DRTM, so the payload can measure it first on launch. Then goes SLRT and other typical entries, while MB2 modules are added at the end. Signed-off-by: Michał Żygowski <[email protected]> Signed-off-by: Tomasz Żyjewski <[email protected]> Signed-off-by: Krystian Hebel <[email protected]> Signed-off-by: Sergii Dmytruk <[email protected]>
Just return bool. Signed-off-by: Sergii Dmytruk <[email protected]>
Signed-off-by: Sergii Dmytruk <[email protected]>
…_device() Signed-off-by: Sergii Dmytruk <[email protected]>
krystian-hebel
requested changes
Nov 28, 2024
| @@ -148,9 +167,57 @@ CONCAT(grub_multiboot_load_elf, XX) (mbi_load_data_t *mld) | |||
|
|
|||
| mld->load_base_addr = get_physical_target_address (ch); | |||
| source = get_virtual_current_address (ch); | |||
|
|
|||
| #ifdef GRUB_USE_MULTIBOOT2 | |||
| grub_memset (get_virtual_current_address (ch), 0, load_size); | |||
There was a problem hiding this comment.
Suggested change
| grub_memset (get_virtual_current_address (ch), 0, load_size); | |
| grub_memset (source, 0, load_size); |
There was a problem hiding this comment.
Doing this unconditionally also has performance implication for non-slaunch case, but lets leave it up for upstream to decide whether it should be moved to if below or not.
| /* It's OK to call this for AMD SKINIT because SKL erases the log before use. */ | ||
| if (slparams->platform_type == SLP_INTEL_TXT || slparams->platform_type == SLP_AMD_SKINIT) | ||
| grub_txt_init_tpm_event_log (get_virtual_current_address (ch), | ||
| slparams->tpm_evt_log_size); |
There was a problem hiding this comment.
This needs one more space of indentation.
Comment on lines
+1238
to
+1242
| /* | ||
| * AMD SKL final setup may relocate the SKL module. It is also what sets the SLRT and DCE | ||
| * values in slparams so this must be done before final setup and launch below. | ||
| */ | ||
| err = grub_skl_setup_module (slparams); |
There was a problem hiding this comment.
But it could be moved to else if (slparams->platform_type == SLP_AMD_SKINIT) below, or am I missing something?
| tmr_count = tmr_end / drtm_capability.tmr_alignment; | ||
| if (tmr_end % drtm_capability.tmr_alignment == 1) | ||
| tmr_count = grub_divmod64 (tmr_end, drtm_capability.tmr_alignment, &rem); | ||
| if (rem == 1) |
There was a problem hiding this comment.
I don't understand this part. Shouldn't it be != 0? Having a memory range that ends on 1 byte shouldn't be possible.
| info = (struct grub_skl_info *) ((grub_uint8_t *) skl_module + skl_module->skl_info_offset); | ||
| if (module->bootloader_data_offset > max_size) | ||
| { | ||
| grub_dprintf ("slaunch", "Possible SKL module has a gap before data: %u > %u\n", |
There was a problem hiding this comment.
This message doesn't convey the reason for failure. Offset to that data must be <= max_size because this is where SLRT is located. If it isn't, there is not enough space reserved for SLRT, and this is what the message should say.
It would be worth to also check if module->bootloader_data_offset < module->length. Bootloader data shouldn't be measured as part of SL by SKINIT.
| { | ||
| struct grub_txt_event_log_container *elog; | ||
|
|
||
| if (buf == NULL || size == 0) |
There was a problem hiding this comment.
Suggested change
| if (buf == NULL || size == 0) | |
| if (buf == NULL || size < sizeof (*elog)) |
| @@ -67,6 +71,14 @@ struct grub_slaunch_params | |||
| grub_uint32_t dce_size; | |||
| grub_uint64_t tpm_evt_log_base; | |||
| grub_uint32_t tpm_evt_log_size; | |||
|
|
|||
| /* | |||
| * Can be NULL. Called before at before starting and after adding standard | |||
There was a problem hiding this comment.
Suggested change
| * Can be NULL. Called before at before starting and after adding standard | |
| * Can be NULL. Called before starting and after adding standard |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Significant number commits are meant to be squashed into other commits on the base branch later on.