[coreboot-gerrit] [S] Change in coreboot[main]: cpu/x86/smm: Pass full SMRAM region info to SMM runtime

Attention is currently required from: Angel Pons, Arthur Heymans, Benjamin Doron, Christian Walter, Felix Held, Fred Reitberger, Jason Glenesk, Jeff Daly, Johnny Lin, Lean Sheng Tan, Matt DeVillier, Tim Chu, Vanessa Eusebio.

Hello Angel Pons, Arthur Heymans, Christian Walter, Felix Held, Fred Reitberger, Jason Glenesk, Jeff Daly, Johnny Lin, Jérémy Compostella, Lean Sheng Tan, Matt DeVillier, Patrick Rudolph, Shuo Liu, Tim Chu, Vanessa Eusebio, build bot (Jenkins),

I'd like you to reexamine a change. Please visit

https://review.coreboot.org/c/coreboot/+/80703?usp=email

to look at the new patch set (#3).

Change subject: cpu/x86/smm: Pass full SMRAM region info to SMM runtime ......................................................................

cpu/x86/smm: Pass full SMRAM region info to SMM runtime

This data is used by smm_region_overlaps_handler(). Callers use this helper to determine if it's safe to read/write to memory buffers taken from untrusted input.

coreboot SMI handlers must not be confused into writing over any SMRAM subregion, not just the handlers.

If stage cache writes were permitted, this could compromise the integrity of the S3 resume path.

The consequences to overwriting the chipset-specific area are undefined.

Change-Id: Ibd9ed34fcfd77a4236b5cf122747a6718ce9c91f Signed-off-by: Benjamin Doron benjamin.doron@9elements.com --- M src/cpu/x86/smm/smm_module_loader.c 1 file changed, 8 insertions(+), 5 deletions(-)

git pull ssh://review.coreboot.org:29418/coreboot refs/changes/03/80703/3