OvmfPkg: Introduce XenPlatformPei

Introduce XenPlatformPei, a copy of OvmfPkg/PlatformPei without some
of QEMU specific initialization, Xen does not support QemuFwCfg.

This new module will be adjusted to accommodate Xen PVH.

fw_cfg dependents that have been removed, which are dynamically skipped
when running PlatformPei on Xen:
- GetFirstNonAddress(): controlling the 64-bit PCI MMIO aperture via the
(experimental) "opt/ovmf/X-PciMmio64Mb" file
- GetFirstNonAddress(): honoring the hotplug DIMM area
("etc/reserved-memory-end") in the placement of the 64-bit PCI MMIO
aperture
- NoexecDxeInitialization() is removed, so PcdPropertiesTableEnable and
PcdSetNxForStack are left constant FALSE (not set dynamically from
fw_cfg "opt/ovmf/PcdXxxx")
- MaxCpuCountInitialization(), PublishPeiMemory(): the max CPU count is
not taken from the QemuFwCfgItemSmpCpuCount fw_cfg key;
PcdCpuMaxLogicalProcessorNumber is used intact and
PcdCpuApInitTimeOutInMicroSeconds is never changed or used.
- InitializeXenPlatform(), S3Verification(): S3 is assumed disabled (not
consulting "etc/system-states" via QemuFwCfgS3Enabled()).
- InstallFeatureControlCallback(): the feature control MSR is not set
from "etc/msr_feature_control"
(also removed FeatureControl.c as there is nothing been executed)

Also removed:
- SMRAM/TSEG-related low mem size adjusting (PcdSmmSmramRequire is
assumed FALSE) in PublishPeiMemory(),
- QemuInitializeRam() entirely,

Xen related changes:
- Have removed the module variable mXen, as it should be always true.
- Have the platform PEI initialization fails if Xen has not been
  detected.

Ref: https://bugzilla.tianocore.org/show_bug.cgi?id=1689
Signed-off-by: Anthony PERARD <anthony.perard@citrix.com>
Reviewed-by: Laszlo Ersek <lersek@redhat.com>
Message-Id: <20190813113119.14804-5-anthony.perard@citrix.com>

1 files changed, 64 insertions, 0 deletions

diff --git a/OvmfPkg/XenPlatformPei/AmdSev.c b/OvmfPkg/XenPlatformPei/AmdSev.c
new file mode 100644
index 0000000000..7ebbb5cc1f
--- /dev/null
+++ b/OvmfPkg/XenPlatformPei/AmdSev.c
@@ -0,0 +1,64 @@
+/**@file

+  Initialize Secure Encrypted Virtualization (SEV) support

+

+  Copyright (c) 2017, Advanced Micro Devices. All rights reserved.<BR>

+  Copyright (c) 2019, Citrix Systems, Inc.

+

+  SPDX-License-Identifier: BSD-2-Clause-Patent

+

+**/

+//

+// The package level header files this module uses

+//

+#include <Library/DebugLib.h>

+#include <Library/MemEncryptSevLib.h>

+#include <Library/PcdLib.h>

+#include <PiPei.h>

+#include <Register/Amd/Cpuid.h>

+#include <Register/Cpuid.h>

+

+#include "Platform.h"

+

+/**

+

+  Function checks if SEV support is available, if present then it sets

+  the dynamic PcdPteMemoryEncryptionAddressOrMask with memory encryption mask.

+

+  **/

+VOID

+AmdSevInitialize (

+  VOID

+  )

+{

+  CPUID_MEMORY_ENCRYPTION_INFO_EBX  Ebx;

+  UINT64                            EncryptionMask;

+  RETURN_STATUS                     PcdStatus;

+

+  //

+  // Check if SEV is enabled

+  //

+  if (!MemEncryptSevIsEnabled ()) {

+    return;

+  }

+

+  //

+  // CPUID Fn8000_001F[EBX] Bit 0:5 (memory encryption bit position)

+  //

+  AsmCpuid (CPUID_MEMORY_ENCRYPTION_INFO, NULL, &Ebx.Uint32, NULL, NULL);

+  EncryptionMask = LShiftU64 (1, Ebx.Bits.PtePosBits);

+

+  //

+  // Set Memory Encryption Mask PCD

+  //

+  PcdStatus = PcdSet64S (PcdPteMemoryEncryptionAddressOrMask, EncryptionMask);

+  ASSERT_RETURN_ERROR (PcdStatus);

+

+  DEBUG ((DEBUG_INFO, "SEV is enabled (mask 0x%lx)\n", EncryptionMask));

+

+  //

+  // Set Pcd to Deny the execution of option ROM when security

+  // violation.

+  //

+  PcdStatus = PcdSet32S (PcdOptionRomImageVerificationPolicy, 0x4);

+  ASSERT_RETURN_ERROR (PcdStatus);

+}