[edk2-devel] [PATCH v9 18/32] OvmfPkg/SecMain: validate the memory used for decompressing Fv
Gerd Hoffmann
kraxel at redhat.com
Thu Oct 14 08:33:29 UTC 2021
On Wed, Oct 13, 2021 at 11:56:59AM -0500, Brijesh Singh wrote:
> BZ: https://bugzilla.tianocore.org/show_bug.cgi?id=3275
>
> The VMM launch sequence should have pre-validated all the data pages used
> in the Reset vector. The range does not cover the data pages used during
> the SEC phase (mainly PEI and DXE firmware volume decompression memory).
>
> When SEV-SNP is active, the memory must be pre-validated before the access.
> Add support to pre-validate the memory range from SnpSecPreValidatedStart
> to SnpSecPreValidatedEnd. This should be sufficent to enter into the PEI
> phase.
Acked-by: Gerd Hoffmann <kraxel at redhat.com>
take care,
Gerd
-=-=-=-=-=-=-=-=-=-=-=-
Groups.io Links: You receive all messages sent to this group.
View/Reply Online (#81991): https://edk2.groups.io/g/devel/message/81991
Mute This Topic: https://groups.io/mt/86292906/1813853
Group Owner: devel+owner at edk2.groups.io
Unsubscribe: https://edk2.groups.io/g/devel/unsub [edk2-devel-archive at redhat.com]
-=-=-=-=-=-=-=-=-=-=-=-
More information about the edk2-devel-archive
mailing list