coreboot-kgpe-d16/src/cpu/x86
Sven Schnelle 47b3fb403d SMM: flush caches after disabling caching
Fixes spurious SMI crashes i've seen, and ACPI/SMM interaction.
For reference, the mail i've sent to ML with the bugreport:

whenever i've docked/undocked the thinkpad from the docking station,
i had to do that twice to get the action actually to happen.

First i thought that would be some error in the ACPI code. Here's a
short explanation how docking/undocking works:

1) ACPI EC Event 0x37 Handler is executed (EC sends event 0x37 on dock)
2) _Q37 does a Trap(SMI_DOCK_CONNECT). Trap is declared as follows:

   a) Store(Arg0, SMIF) // SMIF is in the GNVS Memory Range
   b) Store(0, 0x808)   // Generates I/O Trap to SMM
   c) // SMM is executed
   d) Return (SMIF)    // Return Result in SMIF

I've verified that a) is really executed with ACPI debugging in the
Linux Kernel. It writes the correct value to GNVS Memory. After that,
i've logged the SMIF value in SMM, which contains some random (or
former) value of SMIF.

So i've added the GNVS area to /proc/mtrr which made things work.
I've also tried a wbinvd() in SMM code, with the same result.

After reading the src/cpu/x86/smm/smmhandler.S code, i've recognized
that it starts with:

        movw    $(smm_gdtptr16 - smm_handler_start +
        SMM_HANDLER_OFFSET), %bx
        data32  lgdt %cs:(%bx)

        movl    %cr0, %eax
        andl    $0x7FFAFFD1, %eax /* PG,AM,WP,NE,TS,EM,MP = 0 */
        orl     $0x60000001, %eax /* CD, NW, PE = 1 */
        movl    %eax, %cr0

        /* Enable protected mode */
        data32  ljmp    $0x08, $1f

...which disables caching in SMM code, but doesn't flush the cache.

So the problem is:

- the linux axpi write to the SMIF GNVS Area will be written to Cache,
  because GNVS is WB
- the SMM code runs with cache disabled, and fetches SMIF directly from
  Memory, which is some other value

Possible Solutions:

- enable cache in SMM (yeah, cache poisoning...)

- flush caches in SMM (really expensive)

- mark GNVS as UC in Memory Map (will only work if OS
  really marks that Area as UC. Checked various vendor BIOSes, none
  of them are marking NVS as UC. So this seems rather uncommon.)

- flush only the cache line which contains GNVS. Would fix this
  particular problem, but users/developers could see other Bugs like
  this. And not everyone likes to debug such problems. So i won't like
  this solution.

Change-Id: Ie60bf91c5fd1491bc3452d5d9b7fc8eae39fd77a
Signed-off-by: Sven Schnelle <svens@stackframe.org>
Reviewed-on: http://review.coreboot.org/39
Tested-by: build bot (Jenkins)
2011-06-18 10:02:22 +02:00
..
16bit drop incorrectly used CONFIG_ROM_IMAGE_SIZE and unused CONFIG_ARCH 2011-04-14 20:21:49 +00:00
32bit Unify use of post_code 2011-04-11 20:17:22 +00:00
cache Rename build system variables to be more intuitive, and 2010-09-30 16:55:02 +00:00
lapic This replaces the fixed shift values in the apic timer init with macros. 2011-05-10 21:47:57 +00:00
mtrr earlymtrr.c: wipe some dead code, use names instead of numbers and some 2011-04-14 20:39:49 +00:00
name Rename build system variables to be more intuitive, and 2010-09-30 16:55:02 +00:00
pae Now that no boards set RAMBASE < 1M, get rid of some dead code. Trivial. 2010-10-20 19:23:22 +00:00
smm SMM: flush caches after disabling caching 2011-06-18 10:02:22 +02:00
tsc Rename build system variables to be more intuitive, and 2010-09-30 16:55:02 +00:00
fpu_enable.inc Add a few missing license headers based on svn logs, and also add a 2010-09-27 17:53:17 +00:00
Kconfig - Fix shortcoming in Kconfig when handling multiple "choice"s 2010-12-16 23:37:17 +00:00
mmx_disable.inc Add a few missing license headers based on svn logs, and also add a 2010-09-27 17:53:17 +00:00
sse_disable.inc Add a few missing license headers based on svn logs, and also add a 2010-09-27 17:53:17 +00:00
sse_enable.inc Add a few missing license headers based on svn logs, and also add a 2010-09-27 17:53:17 +00:00