arch/x86: Unify GDT entries

Currently there are 3 GDTs (Global Descriptor Tables) being used on x86:
- preRAM (gdt_init.S)
- SMM (smm_stub.S)
- RAM (c_start.S)

They have different layouts and thus different offsets for the segments
being used in assembly code. Stop using different GDT segments and
ensure that for ROM (preRAM + SMM) and RAM (ramstage) the segments
match. RAM will have additional entries, not found in pre RAM GDT,
but the segments for protected mode and 64-bit mode now match in
all stages.

This allows to use the same defines in all stages. It also drops the
need to know in which stage the code is compiled and it's no longer
necessary to switch the code segment between stages.

While at it fix the comments in the ramstage GDT and drop unused
declarations from header files, always set the accessed bit and drop
GDT_CODE_ACPI_SEG.

Change-Id: I208496e6e4cc82833636f4f42503b44b0d702b9e
Signed-off-by: Patrick Rudolph <patrick.rudolph@9elements.com>
Reviewed-on: https://review.coreboot.org/c/coreboot/+/87255
Tested-by: build bot (Jenkins) <no-reply@coreboot.org>
Reviewed-by: Shuo Liu <shuo.liu@intel.com>
Reviewed-by: Maximilian Brune <maximilian.brune@9elements.com>

src/arch/x86/c_start.S

@@ -1,7 +1,7 @@
 /* SPDX-License-Identifier: GPL-2.0-only */
 
+#include <cpu/x86/gdt.h>
 #include <cpu/x86/post_code.h>
-#include <arch/ram_segs.h>
 
 /* Place the stack in the bss section. It's not necessary to define it in
  * the linker script. */
@@ -30,9 +30,9 @@ _start:
 	lgdt	(%rax)
 #else
 	lgdt	%cs:gdtaddr
-	ljmp	$RAM_CODE_SEG, $1f
+	ljmp	$GDT_CODE_SEG, $1f
 #endif
-1:	movl	$RAM_DATA_SEG, %eax
+1:	movl	$GDT_DATA_SEG, %eax
 	movl	%eax, %ds
 	movl	%eax, %es
 	movl	%eax, %ss
@@ -40,7 +40,7 @@ _start:
 	movl	%eax, %fs
 	movl	%eax, %gs /* Will be used for cpu_info */
 #if ENV_X86_64
-	mov	$RAM_CODE_SEG64, %ecx
+	mov	$GDT_CODE_SEG64, %ecx
 	call	SetCodeSelector
 #endif
 
@@ -152,46 +152,44 @@ gdtaddr:
 
 	.data
 
-	/* This is the gdt for GCC part of coreboot.
+	/*
+	 * This is the gdt for coreboot's ramstage.
 	 * It is different from the gdt in ASM part of coreboot
 	 * which is defined in gdt_init.S
 	 *
 	 * When the machine is initially started, we use a very simple
 	 * gdt from ROM (that in gdt_init.S) which only contains those
-	 * entries we need for protected mode.
+	 * entries we need for protected mode and long mode.
 	 *
 	 * When we're executing code from RAM, we want to do more complex
 	 * stuff, like initializing PCI option ROMs in real mode, or doing
-	 * a resume from a suspend to RAM.
+	 * a resume from a suspend to RAM, which happens in real mode.
+	 *
+	 * Keep in sync with 'cpu/x86/gdt.h'.
 	 */
 gdt:
 	/* selgdt 0, unused */
 	.word	0x0000, 0x0000		/* dummy */
 	.byte	0x00, 0x00, 0x00, 0x00
 
-	/* selgdt 8, unused */
-	.word	0x0000, 0x0000		/* dummy */
-	.byte	0x00, 0x00, 0x00, 0x00
-
-	/* selgdt 0x10, flat code segment */
+	/* selgdt 0x08, flat code segment */
 	.word	0xffff, 0x0000
-	.byte	0x00, 0x9b, 0xcf, 0x00 /* G=1 and 0x0f, So we get 4Gbytes for
-					* limit
-					*/
+	.byte	0x00, 0x9b, 0xcf, 0x00 /* G=1 and 0x0f, So we get 4Gbytes
+					  for limit */
 
-	/* selgdt 0x18, flat data segment */
+	/* selgdt 0x10, flat data segment */
 	.word	0xffff, 0x0000
-#if ENV_X86_64
-	.byte	0x00, 0x92, 0xcf, 0x00
-#else
 	.byte	0x00, 0x93, 0xcf, 0x00
-#endif
 
-	/* selgdt 0x20, unused */
-	.word	0x0000, 0x0000		/* dummy */
-	.byte	0x00, 0x00, 0x00, 0x00
+	/* selgdt 0x18, flat code segment (64-bit) */
+	.word   0xffff, 0x0000
+	.byte   0x00, 0x9b, 0xaf, 0x00
 
-	/* The next two entries are used for executing VGA option ROMs */
+	/* gdt selector 0x20 tss segment, used by STM */
+	.word   0xffff, 0x0000
+	.byte   0x00, 0x8b, 0x80, 0x00
+
+	/* The next two entries are used for executing ACPI S3 RESUME and VGA option ROMs */
 
 	/* selgdt 0x28 16 bit 64k code at 0x00000000 */
 	.word	0xffff, 0x0000
@@ -201,34 +199,25 @@ gdt:
 	.word	0xffff, 0x0000
 	.byte	0, 0x92, 0, 0
 
-	/* The next two entries are used for ACPI S3 RESUME */
+	/* The next entry is used for VGA option ROMs. See x86_asm.S */
 
-	/* selgdt 0x38, flat data segment 16 bit */
-	.word	0x0000, 0x0000		/* dummy */
-	.byte	0x00, 0x93, 0x8f, 0x00 /* G=1 and 0x0f, So we get 4Gbytes for
-					* limit
-					*/
-
-	/* selgdt 0x40, flat code segment 16 bit */
+	/*
+	 * selgdt 0x38, flat code segment 16 bits
+	 *
+	 * FIXME: It's only used in %ds (therefore used like a data segment).
+	 *        The PCI Specification doesn't enforce this.
+	 *        Is this a workaround for broken Option ROMs?
+	 */
 	.word	0xffff, 0x0000
 	.byte	0x00, 0x9b, 0x8f, 0x00 /* G=1 and 0x0f, So we get 4Gbytes for
 					* limit
 					*/
 
-#if ENV_X86_64
-	/* selgdt 0x48, flat x64 code segment */
-	.word	0xffff, 0x0000
-	.byte	0x00, 0x9b, 0xaf, 0x00
-#endif
 per_cpu_segment_descriptors:
 	.rept CONFIG_MAX_CPUS
 	/* flat data segment */
 	.word	0xffff, 0x0000
-#if ENV_X86_64
-	.byte	0x00, 0x92, 0xcf, 0x00
-#else
 	.byte	0x00, 0x93, 0xcf, 0x00
-#endif
 	.endr
 gdt_end:
 

src/arch/x86/include/arch/ram_segs.h

@@ -1,14 +0,0 @@
-/* SPDX-License-Identifier: GPL-2.0-only */
-
-#ifndef RAM_SEGS_H
-#define RAM_SEGS_H
-
-#define RAM_CODE_SEG            0x10
-#define RAM_DATA_SEG            0x18
-#define RAM_CODE16_SEG          0x28
-#define RAM_DATA16_SEG          0x30
-#define RAM_CODE_ACPI_SEG       0x38
-#define RAM_DATA_ACPI_SEG       0x40
-#define RAM_CODE_SEG64          0x48
-
-#endif /* RAM_SEGS_H */

src/arch/x86/include/arch/rom_segs.h

@@ -1,17 +0,0 @@
-/* SPDX-License-Identifier: GPL-2.0-only */
-
-#ifndef ROM_SEGS_H
-#define ROM_SEGS_H
-
-#define ROM_CODE_SEG 0x08
-#define ROM_DATA_SEG 0x10
-#define ROM_CODE_SEG64 0x18
-
-/*
- * This define is placed here to make sure future romstage programmers
- * know about it.
- * It is used for STM setup code.
- */
-#define SMM_TASK_STATE_SEG 0x20
-
-#endif /* ROM_SEGS_H */

src/arch/x86/wakeup.S

@@ -1,6 +1,6 @@
 /* SPDX-License-Identifier: GPL-2.0-only */
 
-#include <arch/ram_segs.h>
+#include <cpu/x86/gdt.h>
 
 #define WAKEUP_BASE		0x600
 #define RELOCATED(x)	(x - __wakeup + WAKEUP_BASE)
@@ -31,7 +31,7 @@ __wakeup:
 	add	$8, %rax
 	push	%rax
 	pushfq
-	push	$RAM_CODE_SEG
+	push	$GDT_CODE_SEG
 	lea	3(%rip), %rax
 	push	%rax
 	iretq
@@ -60,7 +60,7 @@ __wakeup:
 	movw	%ax, (__wakeup_segment)
 
 	/* Activate the right segment descriptor real mode. */
-	ljmp	$RAM_CODE16_SEG, $RELOCATED(1f)
+	ljmp	$GDT_CODE16_SEG, $RELOCATED(1f)
 1:
 .code16
 	/* 16 bit code from here on... */
@@ -70,7 +70,7 @@ __wakeup:
 	 * configurations (limits, writability, etc.) once
 	 * protected mode is turned off.
 	 */
-	mov	$RAM_DATA16_SEG, %ax
+	mov	$GDT_DATA16_SEG, %ax
 	mov	%ax, %ds
 	mov	%ax, %es
 	mov	%ax, %fs

src/cpu/x86/64bit/entry64.inc

@@ -17,12 +17,8 @@
 #endif
 #endif
 
+#include <cpu/x86/gdt.h>
 #include <cpu/x86/msr.h>
-#if defined(__RAMSTAGE__)
-#include <arch/ram_segs.h>
-#else
-#include <arch/rom_segs.h>
-#endif
 
 .macro setup_longmode page_table
 	/* Get page table address */
@@ -48,12 +44,8 @@
 	movl	%eax, %cr0
 
 	/* use long jump to switch to 64-bit code segment */
-#if defined(__RAMSTAGE__)
-	ljmp $RAM_CODE_SEG64, $jmp_addr\@
-#else
-	ljmp $ROM_CODE_SEG64, $jmp_addr\@
+	ljmp $GDT_CODE_SEG64, $jmp_addr\@
 
-#endif
 .code64
 jmp_addr\@:
 .endm

src/cpu/x86/64bit/exit32.inc

@@ -10,17 +10,9 @@
  */
 .code64
 
+#include <cpu/x86/gdt.h>
 #include <cpu/x86/msr.h>
 #include <cpu/x86/cr.h>
-#if defined(__RAMSTAGE__)
-#include <arch/ram_segs.h>
-#define CODE_SEG RAM_CODE_SEG
-#define DATA_SEG RAM_DATA_SEG
-#else
-#include <arch/rom_segs.h>
-#define CODE_SEG ROM_CODE_SEG
-#define DATA_SEG ROM_DATA_SEG
-#endif
 
 drop_longmode:
 #if !ENV_CACHE_AS_RAM
@@ -28,7 +20,7 @@ drop_longmode:
 	wbinvd
 #endif
 	/* Set  32-bit code segment and ss */
-	mov	$CODE_SEG, %rcx
+	mov	$GDT_CODE_SEG, %rcx
 	/* SetCodeSelector32 will drop us to protected mode on return */
 	call	SetCodeSelector32
 
@@ -63,7 +55,7 @@ __longmode_compatibility:
 	/* Running in 32-bit compatibility mode */
 
 	/* Use flat data segment */
-	movl	$DATA_SEG, %eax
+	movl	$GDT_DATA_SEG, %eax
 	movl	%eax, %ds
 	movl	%eax, %es
 	movl	%eax, %ss

src/cpu/x86/entry16.S

@@ -27,7 +27,7 @@
 /* Start code to put an i386 or later processor into 32-bit protected mode.
  */
 
-#include <arch/rom_segs.h>
+#include <cpu/x86/gdt.h>
 #include <cpu/x86/post_code.h>
 
 .section .init._start, "ax", @progbits
@@ -136,7 +136,7 @@ _start16bit:
 	movl	%ebp, %eax
 
 	/* Now that we are in protected mode jump to a 32 bit code segment. */
-	ljmpl	$ROM_CODE_SEG, $bootblock_protected_mode_entry
+	ljmpl	$GDT_CODE_SEG, $bootblock_protected_mode_entry
 
 	/**
 	 * The gdt is defined in gdt_init.S, it has a 4 Gb code segment

src/cpu/x86/entry32.S

@@ -11,7 +11,7 @@
  *
  */
 
-#include <arch/rom_segs.h>
+#include <cpu/x86/gdt.h>
 #include <cpu/x86/cr.h>
 #include <cpu/x86/post_code.h>
 
@@ -33,7 +33,7 @@ bootblock_protected_mode_entry:
 
 	post_code(POSTCODE_ENTER_PROTECTED_MODE)
 
-	movw	$ROM_DATA_SEG, %ax
+	movw	$GDT_DATA_SEG, %ax
 	movw	%ax, %ds
 	movw	%ax, %es
 	movw	%ax, %ss

src/cpu/x86/sipi_vector.S

@@ -1,9 +1,9 @@
 /* SPDX-License-Identifier: GPL-2.0-only */
 
 #include <cpu/x86/cr.h>
+#include <cpu/x86/gdt.h>
 #include <cpu/amd/mtrr.h>
 #include <cpu/x86/msr.h>
-#include <arch/ram_segs.h>
 
 #define __RAMSTAGE__
 #include <cpu/x86/64bit/entry64.inc>
@@ -77,10 +77,10 @@ _start:
 	orl	$CR0_SET_FLAGS, %eax
 	movl	%eax, %cr0
 
-	ljmpl	$RAM_CODE_SEG, $1f
+	ljmpl	$GDT_CODE_SEG, $1f
 1:
 	.code32
-	movw	$RAM_DATA_SEG, %ax
+	movw	$GDT_DATA_SEG, %ax
 	movw	%ax, %ds
 	movw	%ax, %es
 	movw	%ax, %ss

src/cpu/x86/smm/smm_stub.S

@@ -9,8 +9,8 @@
  * found in smm.h.
  */
 
-#include <arch/rom_segs.h>
 #include <cpu/x86/cr.h>
+#include <cpu/x86/gdt.h>
 #include <cpu/x86/msr.h>
 #include <cpu/x86/lapic_def.h>
 #include <cpu/x86/64bit/entry64.inc>
@@ -94,7 +94,7 @@ untampered_lapic:
 	movl	%eax, %cr0
 
 	/* Enable protected mode */
-	ljmpl	$ROM_CODE_SEG, $smm_trampoline32
+	ljmpl	$GDT_CODE_SEG, $smm_trampoline32
 
 .align 4
 smm_relocate_gdt:
@@ -125,7 +125,7 @@ smm_relocate_gdt_end:
 .global smm_trampoline32
 smm_trampoline32:
 	/* Use flat data segment */
-	movw	$ROM_DATA_SEG, %ax
+	movw	$GDT_DATA_SEG, %ax
 	movw	%ax, %ds
 	movw	%ax, %es
 	movw	%ax, %ss

src/device/oprom/realmode/x86_asm.S

@@ -3,7 +3,7 @@
 #define REALMODE_BASE		0x600
 #define RELOCATED(x)	(x - __realmode_code + REALMODE_BASE)
 
-#include <arch/ram_segs.h>
+#include <cpu/x86/gdt.h>
 
 /* CR0 bits */
 #define PE		(1 << 0)
@@ -97,7 +97,7 @@ __realmode_call:
 	movl	%eax, __registers + 20 /* edi */
 
 	/* Activate the right segment descriptor real mode. */
-	ljmp	$RAM_CODE16_SEG, $RELOCATED(1f)
+	ljmp	$GDT_CODE16_SEG, $RELOCATED(1f)
 1:
 .code16
 	/* 16 bit code from here on... */
@@ -107,7 +107,7 @@ __realmode_call:
 	 * configurations (limits, writability, etc.) once
 	 * protected mode is turned off.
 	 */
-	mov	$RAM_DATA16_SEG, %ax
+	mov	$GDT_DATA16_SEG, %ax
 	mov	%ax, %ds
 	mov	%ax, %es
 	mov	%ax, %fs
@@ -144,13 +144,13 @@ __realmode_call:
 	movl	__registers + 16, %esi
 	movl	__registers + 20, %edi
 
-	/* Set all segments to 0x0000, ds to 0x0040 */
+	/* Set all segments to 0x0000, ds to 0x0038 */
 	push	%ax
 	xor	%ax, %ax
 	mov	%ax, %es
 	mov	%ax, %fs
 	mov	%ax, %gs
-	mov	$RAM_DATA_ACPI_SEG, %ax
+	mov	$GDT_DATA_ACPI_SEG, %ax
 	mov	%ax, %ds
 	pop	%ax
 
@@ -177,10 +177,10 @@ __lcall_instr = RELOCATED(.)
 	/* Now that we are in protected mode
 	 * jump to a 32 bit code segment.
 	 */
-	ljmpl	$RAM_CODE_SEG, $RELOCATED(1f)
+	ljmpl	$GDT_CODE_SEG, $RELOCATED(1f)
 1:
 	.code32
-	mov	$RAM_DATA_SEG, %ax
+	mov	$GDT_DATA_SEG, %ax
 	mov	%ax, %ds
 	mov	%ax, %es
 	mov	%ax, %fs
@@ -233,7 +233,7 @@ __realmode_interrupt:
 	movl	%eax, __registers + 20 /* edi */
 
 	/*  This configures CS properly for real mode. */
-	ljmp 	$RAM_CODE16_SEG, $RELOCATED(1f)
+	ljmp 	$GDT_CODE16_SEG, $RELOCATED(1f)
 1:
 	.code16 /* 16 bit code from here on... */
 
@@ -241,7 +241,7 @@ __realmode_interrupt:
 	 * descriptors.  They will retain these configurations (limits,
 	 * writability, etc.) once protected mode is turned off.
 	 */
-	mov	$RAM_DATA16_SEG, %ax
+	mov	$GDT_DATA16_SEG, %ax
 	mov	%ax, %ds
 	mov	%ax, %es
 	mov	%ax, %fs
@@ -305,10 +305,10 @@ __intXX_instr = RELOCATED(.)
 	movl	%eax, %cr0
 
 	/* Now that we are in protected mode jump to a 32-bit code segment. */
-	ljmpl	$RAM_CODE_SEG, $RELOCATED(1f)
+	ljmpl	$GDT_CODE_SEG, $RELOCATED(1f)
 1:
 	.code32
-	mov	$RAM_DATA_SEG, %ax
+	mov	$GDT_DATA_SEG, %ax
 	mov	%ax, %ds
 	mov	%ax, %es
 	mov	%ax, %fs
@@ -354,10 +354,10 @@ __interrupt_handler_16bit = RELOCATED(.)
 	movl	%eax, %cr0
 
 	/* ... and jump to a 32 bit code segment. */
-	ljmpl	$RAM_CODE_SEG, $RELOCATED(1f)
+	ljmpl	$GDT_CODE_SEG, $RELOCATED(1f)
 1:
 	.code32
-	mov	$RAM_DATA_SEG, %ax
+	mov	$GDT_DATA_SEG, %ax
 	mov	%ax, %ds
 	mov	%ax, %es
 	mov	%ax, %fs
@@ -371,14 +371,14 @@ __interrupt_handler_16bit = RELOCATED(.)
 	call	*%eax
 
 	/* Now return to real mode ... */
-	ljmp	$RAM_CODE16_SEG, $RELOCATED(1f)
+	ljmp	$GDT_CODE16_SEG, $RELOCATED(1f)
 1:
 	.code16
 	/* Load the segment registers with properly configured segment
 	 * descriptors.  They will retain these configurations (limits,
 	 * writability, etc.) once protected mode is turned off.
 	 */
-	mov	$RAM_DATA16_SEG, %ax
+	mov	$GDT_DATA16_SEG, %ax
 	mov	%ax, %ds
 	mov	%ax, %es
 	mov	%ax, %fs

src/include/cpu/x86/gdt.h

@@ -3,16 +3,28 @@
 #ifndef CPU_X86_GDT
 #define CPU_X86_GDT
 
+#ifndef __ASSEMBLER__
 /* These symbols are defined in c_start.S. */
 extern char gdt[];
 extern char per_cpu_segment_descriptors[];
 extern uint32_t per_cpu_segment_selector;
 extern char gdt_end[];
 extern char idtarg[];
+#endif
 
-/* These symbols are defined in secondary.S. */
-extern char _secondary_gdt_addr[];
-extern char _secondary_start[];
-extern char _secondary_start_end[];
+/* Offset to GDT's segment descriptors: */
+#define GDT_CODE_SEG            0x08
+#define GDT_DATA_SEG            0x10
+#define GDT_CODE_SEG64          0x18
+/*
+ * This define is placed here to make sure future romstage programmers
+ * know about it.
+ * It is used only in SMM for STM setup code.
+ */
+#define GDT_TASK_STATE_SEG      0x20
+
+#define GDT_CODE16_SEG          0x28
+#define GDT_DATA16_SEG          0x30
+#define GDT_DATA_ACPI_SEG       0x38
 
 #endif /* CPU_X86_GDT */

src/security/intel/stm/StmPlatformSmm.c

@@ -4,6 +4,7 @@
 #include <security/intel/stm/SmmStm.h>
 #include <security/intel/stm/StmPlatformResource.h>
 #include <security/tpm/tspi.h>
+#include <cpu/x86/gdt.h>
 #include <cpu/x86/smm.h>
 #include <cpu/x86/msr.h>
 
@@ -11,7 +12,6 @@
 #include <console/console.h>
 #include <stdbool.h>
 #include <stdint.h>
-#include <arch/rom_segs.h>
 
 /*
  * Load STM image to MSEG
@@ -109,11 +109,11 @@ void setup_smm_descriptor(void *smbase, int32_t apic_id, int32_t entry32_off)
 	psd->acpi_rsdp = 0;
 	psd->bios_hw_resource_requirements_ptr =
 		(uint64_t)((uintptr_t)get_stm_resource());
-	psd->smm_cs = ROM_CODE_SEG;
-	psd->smm_ds = ROM_DATA_SEG;
-	psd->smm_ss = ROM_DATA_SEG;
-	psd->smm_other_segment = ROM_DATA_SEG;
-	psd->smm_tr = SMM_TASK_STATE_SEG;
+	psd->smm_cs = GDT_CODE_SEG;
+	psd->smm_ds = GDT_DATA_SEG;
+	psd->smm_ss = GDT_DATA_SEG;
+	psd->smm_other_segment = GDT_DATA_SEG;
+	psd->smm_tr = GDT_TASK_STATE_SEG;
 
 	// At this point the coreboot smm_stub is relative to the default
 	// smbase and not the one for the smi handler in tseg.  So we have

src/security/intel/txt/getsec_enteraccs.S

@@ -3,7 +3,7 @@
 #include <cpu/x86/mtrr.h>
 #include <cpu/x86/cr.h>
 #include <cpu/x86/msr.h>
-#include <arch/ram_segs.h>
+#include <cpu/x86/gdt.h>
 
 #include "getsec_mtrr_setup.inc"
 
@@ -257,10 +257,10 @@ cond_clear_var_mtrrs:
 	lgdt	-48(%ebp)
 
 	/* Set cs */
-	ljmp	$RAM_CODE_SEG, $1f
+	ljmp	$GDT_CODE_SEG, $1f
 1:
 	/* Fix segment registers */
-	movl	$RAM_DATA_SEG, %eax
+	movl	$GDT_DATA_SEG, %eax
 	movl	%eax, %ds
 	movl	%eax, %es
 	movl	%eax, %ss