coconut-svsm · joergroedel · Jan 9, 2024 · Jan 5, 2024 · Jan 5, 2024 · Jan 5, 2024
diff --git a/bootlib/src/igvm_params.rs b/bootlib/src/igvm_params.rs
@@ -48,7 +48,11 @@ pub struct IgvmParamBlockFwInfo {
     /// no firmware is launched after initialization is complete.
     pub size: u32,
 
-    _reserved: u32,
+    /// Indicates that the initial location of firmware is at the base of
+    /// memory and will not be loaded into the ROM range.
+    pub in_low_memory: u8,
+
+    _reserved: [u8; 3],
 
     /// The guest physical address at which the firmware expects to find the
     /// secrets page.

diff --git a/igvmbld/igvmbld.h b/igvmbld/igvmbld.h
@@ -24,7 +24,8 @@ typedef struct {
 typedef struct {
     uint32_t start;
     uint32_t size;
-    uint32_t _reserved;
+    uint8_t in_low_memory;
+    uint8_t _reserved[3];
     uint32_t secrets_page;
     uint32_t caa_page;
     uint32_t cpuid_page;

diff --git a/src/config.rs b/src/config.rs
@@ -19,6 +19,44 @@ use crate::serial::SERIAL_PORT;
 use crate::utils::MemoryRegion;
 use alloc::vec::Vec;
 
+fn check_ovmf_regions(
+    flash_regions: &[MemoryRegion<PhysAddr>],
+    kernel_region: &MemoryRegion<PhysAddr>,
+) {
-fn check_ovmf_regions(
-    flash_regions: &[MemoryRegion<PhysAddr>],
-    kernel_region: &MemoryRegion<PhysAddr>,
-) {
+fn check_system_region(
+    fw_regions: &[MemoryRegion<PhysAddr>],
+    kernel_region: &MemoryRegion<PhysAddr>,
+) {
-fn check_ovmf_regions(
-    flash_regions: &[MemoryRegion<PhysAddr>],
-    kernel_region: &MemoryRegion<PhysAddr>,
-) {
+fn check_system_region(
+    fw_regions: &[MemoryRegion<PhysAddr>],
+    kernel_region: &MemoryRegion<PhysAddr>,
+) {
+    let flash_range = {
+        let one_gib = 1024 * 1024 * 1024usize;
+        let start = PhysAddr::from(3 * one_gib);
+        MemoryRegion::new(start, one_gib)
+    };
+
+    // Sanity-check flash regions.
+    for region in flash_regions.iter() {
+        // Make sure that the regions are between 3GiB and 4GiB.
+        if !region.overlap(&flash_range) {
+            panic!("flash region in unexpected region");
+        }
+
+        // Make sure that no regions overlap with the kernel.
+        if region.overlap(kernel_region) {
+            panic!("flash region overlaps with kernel");
+        }
+    }
+
+    // Make sure that regions don't overlap.
+    for (i, outer) in flash_regions.iter().enumerate() {
+        for inner in flash_regions[..i].iter() {
+            if outer.overlap(inner) {
+                panic!("flash regions overlap");
+            }
+        }
+        // Make sure that one regions ends at 4GiB.
+        let one_region_ends_at_4gib = flash_regions
+            .iter()
+            .any(|region| region.end() == flash_range.end());
+        assert!(one_region_ends_at_4gib);
+    }
+}
+
 #[derive(Debug)]
 pub enum SvsmConfig<'a> {
     FirmwareConfig(FwCfg<'a>),
@@ -93,12 +131,30 @@ impl<'a> SvsmConfig<'a> {
         }
     }
 
-    pub fn get_fw_regions(&self) -> Result<Vec<MemoryRegion<PhysAddr>>, SvsmError> {
+    pub fn get_fw_regions(
+        &self,
+        kernel_region: &MemoryRegion<PhysAddr>,
+    ) -> Vec<MemoryRegion<PhysAddr>> {
         match self {
             SvsmConfig::FirmwareConfig(fw_cfg) => {
-                Ok(fw_cfg.iter_flash_regions().collect::<Vec<_>>())
+                let flash_regions = fw_cfg.iter_flash_regions().collect::<Vec<_>>();
+                check_ovmf_regions(&flash_regions, kernel_region);
+                flash_regions
             }
-            SvsmConfig::IgvmConfig(igvm_params) => igvm_params.get_fw_regions(),
+            SvsmConfig::IgvmConfig(igvm_params) => {
+                let flash_regions = igvm_params.get_fw_regions();
+                if !igvm_params.fw_in_low_memory() {
+                    check_ovmf_regions(&flash_regions, kernel_region);
+                }
-                if !igvm_params.fw_in_low_memory() {
-                    check_ovmf_regions(&flash_regions, kernel_region);
-                }
+                if igvm_params.fw_in_system_region() {
+                    check_system_region(&fw_regions, kernel_region);
+                }
-                if !igvm_params.fw_in_low_memory() {
-                    check_ovmf_regions(&flash_regions, kernel_region);
-                }
+                if igvm_params.fw_in_system_region() {
+                    check_system_region(&fw_regions, kernel_region);
+                }
+                flash_regions
+            }
+        }
+    }
+
+    pub fn fw_in_low_memory(&self) -> bool {
+        match self {
+            SvsmConfig::FirmwareConfig(_) => false,
+            SvsmConfig::IgvmConfig(igvm_params) => igvm_params.fw_in_low_memory(),
         }
     }
 

diff --git a/src/igvm_params.rs b/src/igvm_params.rs
@@ -13,7 +13,6 @@ use crate::error::SvsmError::Firmware;
 use crate::fw_meta::SevFWMetaData;
 use crate::mm::PAGE_SIZE;
 use crate::utils::MemoryRegion;
-use alloc::vec;
 use alloc::vec::Vec;
 
 use bootlib::igvm_params::{IgvmParamBlock, IgvmParamPage};
@@ -22,6 +21,8 @@ use igvm_defs::{IgvmEnvironmentInfo, MemoryMapEntryType, IGVM_VHS_MEMORY_MAP_ENT
 
 const IGVM_MEMORY_ENTRIES_PER_PAGE: usize = PAGE_SIZE / size_of::<IGVM_VHS_MEMORY_MAP_ENTRY>();
 
+const STAGE2_END_ADDR: usize = 0xA0000;
+
 #[derive(Clone, Debug)]
 #[repr(C, align(64))]
 pub struct IgvmMemoryMap {
@@ -199,14 +200,26 @@ impl IgvmParams<'_> {
         }
     }
 
-    pub fn get_fw_regions(&self) -> Result<Vec<MemoryRegion<PhysAddr>>, SvsmError> {
-        if !self.should_launch_fw() {
-            Err(Firmware)
-        } else {
-            Ok(vec![MemoryRegion::new(
-                PhysAddr::new(self.igvm_param_block.firmware.start as usize),
-                self.igvm_param_block.firmware.size as usize,
-            )])
+    pub fn get_fw_regions(&self) -> Vec<MemoryRegion<PhysAddr>> {
+        assert!(self.should_launch_fw());
+
+        let mut regions = Vec::new();
+
+        if self.igvm_param_block.firmware.in_low_memory != 0 {
+            // Add the stage 2 region to the firmware region list so
+            // permissions can be granted to the guest VMPL for that range.
+            regions.push(MemoryRegion::new(PhysAddr::new(0), STAGE2_END_ADDR));
         }
+
+        regions.push(MemoryRegion::new(
+            PhysAddr::new(self.igvm_param_block.firmware.start as usize),
+            self.igvm_param_block.firmware.size as usize,
+        ));
+
+        regions
+    }
+
+    pub fn fw_in_low_memory(&self) -> bool {
+        self.igvm_param_block.firmware.in_low_memory != 0
     }
 }
diff --git a/src/svsm.rs b/src/svsm.rs
@@ -50,7 +50,7 @@ use svsm::svsm_console::SVSMIOPort;
 use svsm::svsm_paging::{init_page_table, invalidate_early_boot_memory};
 use svsm::task::{create_task, TASK_FLAG_SHARE_PT};
 use svsm::types::{PageSize, GUEST_VMPL, PAGE_SIZE};
-use svsm::utils::{halt, immut_after_init::ImmutAfterInitCell, zero_mem_region, MemoryRegion};
+use svsm::utils::{halt, immut_after_init::ImmutAfterInitCell, zero_mem_region};
 
 use svsm::mm::validate::{init_valid_bitmap_ptr, migrate_valid_bitmap};
 
@@ -221,39 +221,8 @@ fn launch_fw() -> Result<(), SvsmError> {
 }
 
 fn validate_fw(config: &SvsmConfig, launch_info: &KernelLaunchInfo) -> Result<(), SvsmError> {
-    let flash_regions = config.get_fw_regions()?;
     let kernel_region = new_kernel_region(launch_info);
-    let flash_range = {
-        let one_gib = 1024 * 1024 * 1024usize;
-        let start = PhysAddr::from(3 * one_gib);
-        MemoryRegion::new(start, one_gib)
-    };
-
-    // Sanity-check flash regions.
-    for region in flash_regions.iter() {
-        // Make sure that the regions are between 3GiB and 4GiB.
-        if !region.overlap(&flash_range) {
-            panic!("flash region in unexpected region");
-        }
-
-        // Make sure that no regions overlap with the kernel.
-        if region.overlap(&kernel_region) {
-            panic!("flash region overlaps with kernel");
-        }
-    }
-    // Make sure that regions don't overlap.
-    for (i, outer) in flash_regions.iter().enumerate() {
-        for inner in flash_regions[..i].iter() {
-            if outer.overlap(inner) {
-                panic!("flash regions overlap");
-            }
-        }
-    }
-    // Make sure that one regions ends at 4GiB.
-    let one_region_ends_at_4gib = flash_regions
-        .iter()
-        .any(|region| region.end() == flash_range.end());
-    assert!(one_region_ends_at_4gib);
+    let flash_regions = config.get_fw_regions(&kernel_region);
 
     for (i, region) in flash_regions.into_iter().enumerate() {
         log::info!(

diff --git a/src/svsm_paging.rs b/src/svsm_paging.rs
@@ -133,9 +133,12 @@ pub fn invalidate_early_boot_memory(
 ) -> Result<(), SvsmError> {
     // Early boot memory must be invalidated after changing to the SVSM page
     // page table to avoid invalidating page tables currently in use.  Always
-    // invalidate stage 2 memory, and invalidate the boot data if required.
-    let stage2_region = MemoryRegion::new(PhysAddr::null(), 640 * 1024);
-    invalidate_boot_memory_region(config, stage2_region)?;
+    // invalidate stage 2 memory, unless firmware is loaded into low memory.
+    // Also invalidate the boot data if required.
+    if !config.fw_in_low_memory() {
+        let stage2_region = MemoryRegion::new(PhysAddr::null(), 640 * 1024);
+        invalidate_boot_memory_region(config, stage2_region)?;
+    }
 
     if config.invalidate_boot_data() {
         let kernel_elf_size =