From patchwork Wed Mar  1 14:42:20 2017
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
X-Patchwork-Submitter: Ard Biesheuvel <ard.biesheuvel@linaro.org>
X-Patchwork-Id: 94703
Delivered-To: patch@linaro.org
Received: by 10.140.20.113 with SMTP id 104csp1825695qgi;
 Wed, 1 Mar 2017 06:42:32 -0800 (PST)
X-Received: by 10.98.50.66 with SMTP id y63mr9234157pfy.21.1488379352315;
 Wed, 01 Mar 2017 06:42:32 -0800 (PST)
Return-Path: <edk2-devel-bounces@lists.01.org>
Received: from ml01.01.org (ml01.01.org. [198.145.21.10])
 by mx.google.com with ESMTPS id
 q64si4747874pga.342.2017.03.01.06.42.32
 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128);
 Wed, 01 Mar 2017 06:42:32 -0800 (PST)
Received-SPF: pass (google.com: best guess record for domain of
 edk2-devel-bounces@lists.01.org designates 198.145.21.10 as
 permitted sender) client-ip=198.145.21.10; 
Authentication-Results: mx.google.com;
 dkim=neutral (body hash did not verify) header.i=@linaro.org;
 spf=pass (google.com: best guess record for domain of
 edk2-devel-bounces@lists.01.org designates 198.145.21.10 as
 permitted sender)
 smtp.mailfrom=edk2-devel-bounces@lists.01.org; 
 dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=linaro.org
Received: from [127.0.0.1] (localhost [IPv6:::1])
 by ml01.01.org (Postfix) with ESMTP id C2879821D1;
 Wed,  1 Mar 2017 06:42:31 -0800 (PST)
X-Original-To: edk2-devel@lists.01.org
Delivered-To: edk2-devel@lists.01.org
Received: from mail-wr0-x234.google.com (mail-wr0-x234.google.com
 [IPv6:2a00:1450:400c:c0c::234])
 (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128
 bits)) (No client certificate requested)
 by ml01.01.org (Postfix) with ESMTPS id 5B602821CF
 for <edk2-devel@lists.01.org>; Wed,  1 Mar 2017 06:42:30 -0800 (PST)
Received: by mail-wr0-x234.google.com with SMTP id g10so31668326wrg.2
 for <edk2-devel@lists.01.org>; Wed, 01 Mar 2017 06:42:30 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=linaro.org; s=google; 
 h=from:to:cc:subject:date:message-id;
 bh=VzRiQrom6xzI4ozJiKkjIs2o0mqglfzcbztGK01F3Wo=;
 b=Q6/EARSj+Tno2JovvtGjh2mygbbB8qLaKHSw2myaUuVKRKTxzQQfnlsGhgf8A58P23
 +5IJZuM9z86Rie3+nwHJtLoyhg7TQLSqoMR++KMrkOMhAZbDZOhwX6YchwVQR34RU0Dn
 InFVibEm7O4Vnzr0Fwb186a1z3KLW3Bgd8wqc=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=1e100.net; s=20161025;
 h=x-gm-message-state:from:to:cc:subject:date:message-id;
 bh=VzRiQrom6xzI4ozJiKkjIs2o0mqglfzcbztGK01F3Wo=;
 b=Vle07Ar3w18VHNC9gVFnrFq1R8d4/veVZJ8tmJpPu1/iF031HHF49hZufg0vrzig/7
 jiphUgsV3BJeQQKTZPABF7Qp9RWLWZpFUi7c63PYiysdP/37WOiT7dydud9DhbBKqx3S
 yFa2vBHsVndFWT3qMfWzFsBv+U0lEQEs2zk5ePe12lol8hGKeubA4ws5Bexged0UQC5/
 JgMZKPuhZUdGe9NEW4LOsKiql9+ur60+V5tpWCkr+OyV8mw0XiACQ0Yk0wiB0u2rpFQ0
 ADkQW61xQjJQ66xj5GUQxYMvAAvE/wdR3azHxcCW9WeUAQPg+5CcheolrFZ5YG+wJL1k
 tLGA==
X-Gm-Message-State: AMke39lNLhn9tgDiP4l7lTqGHosOZxAtzwOuaF3ax7jl9L8f3qVVZ9f2prqKP9xH/SWYOkK7
X-Received: by 10.223.133.5 with SMTP id 5mr7185118wrh.175.1488379348997;
 Wed, 01 Mar 2017 06:42:28 -0800 (PST)
Received: from localhost.localdomain ([105.147.1.203])
 by smtp.gmail.com with ESMTPSA id
 h75sm6867958wrh.37.2017.03.01.06.42.27
 (version=TLS1_2 cipher=ECDHE-RSA-AES128-SHA bits=128/128);
 Wed, 01 Mar 2017 06:42:28 -0800 (PST)
From: Ard Biesheuvel <ard.biesheuvel@linaro.org>
To: edk2-devel@lists.01.org, leif.lindholm@linaro.org, lersek@redhat.com
Date: Wed,  1 Mar 2017 14:42:20 +0000
Message-Id: <1488379344-16273-1-git-send-email-ard.biesheuvel@linaro.org>
X-Mailer: git-send-email 2.7.4
Subject: [edk2] [PATCH 0/4] ArmPkg,
 ArmVirtpkg ARM: enable strict memory protection
X-BeenThere: edk2-devel@lists.01.org
X-Mailman-Version: 2.1.21
Precedence: list
List-Id: EDK II Development  <edk2-devel.lists.01.org>
List-Unsubscribe: <https://lists.01.org/mailman/options/edk2-devel>,
 <mailto:edk2-devel-request@lists.01.org?subject=unsubscribe>
List-Archive: <http://lists.01.org/pipermail/edk2-devel/>
List-Post: <mailto:edk2-devel@lists.01.org>
List-Help: <mailto:edk2-devel-request@lists.01.org?subject=help>
List-Subscribe: <https://lists.01.org/mailman/listinfo/edk2-devel>,
 <mailto:edk2-devel-request@lists.01.org?subject=subscribe>
Cc: Ard Biesheuvel <ard.biesheuvel@linaro.org>
MIME-Version: 1.0
Errors-To: edk2-devel-bounces@lists.01.org
Sender: "edk2-devel" <edk2-devel-bounces@lists.01.org>

This series makes the prerequisite modifications to the ARM version of
the CpuDxe driver so we can enable PE/COFF image and NX memory protection
for ARM platforms, including ArmVirtPkg (#4)

Patch #1 refactors CpuSetMemoryAttributes() so it no longer splits section
mappings into page mappings unnecessarily.

Patch #2 removes some unnecessary cache/TLB maintenance, which becomes very
costly when CpuSetMemoryAttributes() is used in anger as is the case with
memory protections enabled.

Patch #3 wires up the EFI_MEMORY_RO/EFI_MEMORY_XP attributes, which were
ignored before.

Patch #4 enables the protection features for ArmVirtPkg platforms when 
built for 32-bit ARM.

Ard Biesheuvel (4):
  ArmPkg/CpuDxe ARM: avoid splitting page table sections unnecessarily
  ArmPkg/CpuDxe ARM: avoid unnecessary cache/TLB maintenance
  ArmPkg/CpuDxe ARM: honour RO/XP attributes in SetMemoryAttributes()
  ArmVirtPkg: enable PE/COFF image and memory protection for ARM
    platforms

 ArmPkg/Drivers/CpuDxe/Arm/Mmu.c | 209 ++++++++++----------
 ArmVirtPkg/ArmVirt.dsc.inc      |   9 +-
 2 files changed, 109 insertions(+), 109 deletions(-)

-- 
2.7.4

_______________________________________________
edk2-devel mailing list
edk2-devel@lists.01.org
https://lists.01.org/mailman/listinfo/edk2-devel