Re: [PATCH] x86/efistub: Don't try to print after ExitBootService()

From: Ard Biesheuvel
Date: Thu Oct 12 2023 - 07:26:58 EST

Next message: Nikolay Borisov: "Re: [PATCH] x86/efistub: Don't try to print after ExitBootService()"
Previous message: Zhihao Cheng: "Re: [PATCH RFC] ubi: gluebi: Fix NULL pointer dereference caused by ftl notifier"
In reply to: kirill . shutemov: "Re: [PATCH] x86/efistub: Don't try to print after ExitBootService()"
Next in thread: Nikolay Borisov: "Re: [PATCH] x86/efistub: Don't try to print after ExitBootService()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, 12 Oct 2023 at 13:25, <kirill.shutemov@xxxxxxxxxxxxxxx> wrote:
>
> On Thu, Oct 12, 2023 at 01:51:13PM +0300, Nikolay Borisov wrote:
> >
> >
> > On 12.10.23 г. 13:14 ч., kirill.shutemov@xxxxxxxxxxxxxxx wrote:
> > > On Wed, Oct 11, 2023 at 10:25:28PM +0300, Nikolay Borisov wrote:
> > > > setup_e820() is executed after UEFI's ExitBootService has been called.
> > > > This causes the firmware to throw an exception because Console IO
> > > > protocol handler is supposed to work only during boot service
> > > > environment. As per UEFI 2.9, section 12.1:
> > > >
> > > > "This protocol isused to handle input and output of text-based
> > > > information intended for the system user during the operation of code
> > > > in the boot services environment."
> > > >
> > > > Running a TDX guest with TDVF with unaccepted memory disabled results in
> > > > the following output:
> > >
> > > Oh. My bad.
> > >
> > > But there's other codepath that does the same. If setup_e820() fails with
> > > EFI_BUFFER_TOO_SMALL, efi_stub_entry() would try to print "exit_boot()
> > > failed\n".
> > >
> > > I wouldner if it is feasible to hook up earlyprintk console into
> > > efi_printk() machinery for after ExitBootService() case? Silent boot
> > > failure is not the best UX.
> > >
> >
> >
> > In my testing I was able to transpose setup_e820 and efi exit_boot_service
> > by calling exit_boot_func before setup_e820 which ensures the various memory
> > variables are populated. Is there any specific reason why ExitBootServices
> > is called before setting up the e820 table? AFAIU this is an arbitrary
> > choice?
>
> Because if you allocate memory with EFI service it can alter EFI memory
> map and we need the last version to convert it to e820.
>

Indeed, and note that the memory map may change due to asynchronous
events, which only get shut down when ExitBootServices() is called.
This is the reason for this complicated dance around
ExitBootServices() with the callback etc

Next message: Nikolay Borisov: "Re: [PATCH] x86/efistub: Don't try to print after ExitBootService()"
Previous message: Zhihao Cheng: "Re: [PATCH RFC] ubi: gluebi: Fix NULL pointer dereference caused by ftl notifier"
In reply to: kirill . shutemov: "Re: [PATCH] x86/efistub: Don't try to print after ExitBootService()"
Next in thread: Nikolay Borisov: "Re: [PATCH] x86/efistub: Don't try to print after ExitBootService()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]