UefiCpuPkg: Backup and Restore MSR IA32_U_CET in SMI handler.

OS may enable CET-IBT feature by set MSR IA32_U_CET.bit2.
If IA32_U_CET.bit2 is set, CPU is in WAIT_FOR_ENDBRANCH state and
 the next assemble code is not ENDBR, it will trigger #CP exception
 when set CR4.CET bit.
SMI handler needs to backup MSR IA32_U_CET and clear MSR IA32_U_CET
 before set CR4.CET bit,
And SMI handler needs to restore MSR IA32_U_CET when exit SMI handler.

Signed-off-by: Sheng Wei <w.sheng@intel.com>
Cc: Eric Dong <eric.dong@intel.com>
Cc: Ray Ni <ray.ni@intel.com>
Cc: Laszlo Ersek <lersek@redhat.com>
Cc: Wu Jiaxin <jiaxin.wu@intel.com>
Cc: Tan Dun <dun.tan@intel.com>
Reviewed-by: Ray Ni <ray.ni@intel.com>

1 files changed, 15 insertions, 0 deletions

diff --git a/UefiCpuPkg/PiSmmCpuDxeSmm/Ia32/SmiEntry.nasm b/UefiCpuPkg/PiSmmCpuDxeSmm/Ia32/SmiEntry.nasm
index 87a31b71a9..d84e81505e 100644
--- a/UefiCpuPkg/PiSmmCpuDxeSmm/Ia32/SmiEntry.nasm
+++ b/UefiCpuPkg/PiSmmCpuDxeSmm/Ia32/SmiEntry.nasm
@@ -202,11 +202,21 @@ ASM_PFX(mPatchCetSupported):
     push    edx

     push    eax

 

+    mov     ecx, MSR_IA32_U_CET

+    rdmsr

+    push    edx

+    push    eax

+

     mov     ecx, MSR_IA32_PL0_SSP

     rdmsr

     push    edx

     push    eax

 

+    mov     ecx, MSR_IA32_U_CET

+    xor     eax, eax

+    xor     edx, edx

+    wrmsr

+

     mov     ecx, MSR_IA32_S_CET

     mov     eax, MSR_IA32_CET_SH_STK_EN

     xor     edx, edx

@@ -276,6 +286,11 @@ CetDone:
     pop     edx

     wrmsr

 

+    mov     ecx, MSR_IA32_U_CET

+    pop     eax

+    pop     edx

+    wrmsr

+

     mov     ecx, MSR_IA32_S_CET

     pop     eax

     pop     edx