Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

OvmfPkg: Use the OvmfPkg version of CcProbeLib #10597

Merged
merged 2 commits into from
Jan 13, 2025
Merged

OvmfPkg: Use the OvmfPkg version of CcProbeLib #10597

merged 2 commits into from
Jan 13, 2025

Conversation

tlendacky
Copy link
Contributor

Description

Currently, multiple dsc files within the OvmfPkg directory use the NULL version of the CcProbeLib library. However, these packages have support for confidential guests (usage of CcExitLib, MemEncrypt{Sev,Tdx}Lib, etc.) and should be using the OvmfPkg version of the CcProbeLib.

The use of the NULL library causes the PCI option ROM to be enabled, which can't be trusted as it originates from the hypervisor. The use of the NULL library also causes a KVM hypervisor error when attempting to map/back the option ROM region when running an SEV-SNP guest.

Update the various dsc files to reference the OvmfPkg version of the CcProbeLib library and prevent usage of PCI option ROMs.

  • Breaking change?
    • Breaking change - Does this PR cause a break in build or boot behavior?
    • Examples: Does it add a new library class or move a module to a different repo.
  • Impacts security?
    • Security - Does this PR have a direct security impact?
    • Examples: Crypto algorithm change or buffer overflow fix.
  • Includes tests?
    • Tests - Does this PR include any explicit test code?
    • Examples: Unit tests or integration tests.

How This Was Tested

This was tested by launching SEV, SEV-ES and SEV-SNP guest using the AmdSev package. I have not tested the changes to the CloudHv or the Microvm packages.

Integration Instructions

N/A

@tlendacky
OvmfPkg: Use the OvmfPkg version of CcProbeLib
b53c65c 
Currently, multiple dsc files within the OvmfPkg directory use the NULL
version of the CcProbeLib library. However, these packages have support
for confidential guests (usage of CcExitLib, MemEncrypt{Sev,Tdx}Lib, etc.)
and should be using the OvmfPkg version of the CcProbeLib.

The use of the NULL library causes the PCI option ROM to be enabled, which
can't be trusted as it originates from the hypervisor. The use of the NULL
library also causes a KVM hypervisor error when attempting to map/back the
option ROM region when running an SEV-SNP guest.

Update the various dsc files to reference the OvmfPkg version of the
CcProbeLib library and prevent usage of PCI option ROMs.

Signed-off-by: Tom Lendacky <thomas.lendacky@amd.com>
@github-actions github-actions bot added the impact:security This change has a direct security impact such as changing a crypto algorithm. label Jan 8, 2025
@tlendacky tlendacky marked this pull request as ready for review January 8, 2025 21:15
@tlendacky tlendacky requested a review from kraxel January 8, 2025 21:15
@tlendacky
Copy link
Contributor Author

@fitzthum , I can't add you as a reviewer (should you get added for the AmdSev package?), but wanted you to take a look at the change.

@kraxel, do you know who could test the CloudHv and Microvm changes?

mxu9
mxu9 approved these changes Jan 9, 2025
View reviewed changes
Copy link
Contributor

@mxu9 mxu9 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It looks good to me.

@kraxel
Copy link
Member

kraxel commented Jan 9, 2025

I can test microvm tomorrow. Not sure about cloudhw, I'd suggest to check the commit log.

@tlendacky
Copy link
Contributor Author

I can test microvm tomorrow. Not sure about cloudhw, I'd suggest to check the commit log.

Ok, I was able to boot an image using Cloud Hypervisor.

@tlendacky tlendacky requested review from weltling and jongwu January 9, 2025 17:13
fitzthum
fitzthum approved these changes Jan 9, 2025
View reviewed changes
Copy link
Contributor

@fitzthum fitzthum left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM. Surprising that we didn't notice this regression earlier.

@kraxel
Copy link
Member

kraxel commented Jan 10, 2025

microvm is broken in master, looking ...
I don't expect this causing additional problems, so merging this without microvm testing is fine with me.

@ardbiesheuvel ardbiesheuvel added the push Auto push patch series in PR if all checks pass label Jan 13, 2025
@mergify mergify bot merged commit 8b87eb9 into tianocore:master Jan 13, 2025
126 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@kraxel kraxel kraxel approved these changes

@fitzthum fitzthum fitzthum approved these changes

@ardbiesheuvel ardbiesheuvel ardbiesheuvel approved these changes

@jyao1 jyao1 jyao1 approved these changes

@mxu9 mxu9 mxu9 approved these changes

@weltling weltling Awaiting requested review from weltling

@jongwu jongwu Awaiting requested review from jongwu

@mdroth mdroth Awaiting requested review from mdroth

@ruleof2 ruleof2 Awaiting requested review from ruleof2

Assignees
No one assigned
Labels
impact:security This change has a direct security impact such as changing a crypto algorithm. push Auto push patch series in PR if all checks pass
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
6 participants
@tlendacky @kraxel @fitzthum @ardbiesheuvel @jyao1 @mxu9