Felix Held has posted comments on this change. ( https://review.coreboot.org/c/coreboot/+/33251 )
Change subject: security/tpm/tss/tcg-2.0: Use tlcl_get_hash_size_from_algo() for hash size
......................................................................
Patch Set 4:
(1 comment)
oh, just found a possible problem right after merging this patch... it shouldn't hit that code path at the moment, but I'd really appreciate this being fixed before it will cause problems (only out of bounds read and not an out of bounds write; if it was the latter, I'd have reverted this patch)
https://review.coreboot.org/c/coreboot/+/33251/4/src/security/tpm/tss/tcg-2....
File src/security/tpm/tss/tcg-2.0/tss_marshaling.c:
https://review.coreboot.org/c/coreboot/+/33251/4/src/security/tpm/tss/tcg-2....
PS4, Line 86: tpmtha->digest.sha256
this should also be replaced, so you don't get an out-of-bounds access when selecting e.q. sha512
--
To view, visit
https://review.coreboot.org/c/coreboot/+/33251
To unsubscribe, or for help writing mail filters, visit
https://review.coreboot.org/settings
Gerrit-Project: coreboot
Gerrit-Branch: master
Gerrit-Change-Id: I739260e13e9cd10a61d52e13e8741b12ec868d7f
Gerrit-Change-Number: 33251
Gerrit-PatchSet: 4
Gerrit-Owner: Frans Hendriks
fhendriks@eltan.com
Gerrit-Reviewer: David Hendricks
david.hendricks@gmail.com
Gerrit-Reviewer: Felix Held
felix-coreboot@felixheld.de
Gerrit-Reviewer: Frans Hendriks
fhendriks@eltan.com
Gerrit-Reviewer: Julius Werner
jwerner@chromium.org
Gerrit-Reviewer: Lance Zhao
lance.zhao@gmail.com
Gerrit-Reviewer: Patrick Georgi
pgeorgi@google.com
Gerrit-Reviewer: Patrick Rudolph
siro@das-labor.org
Gerrit-Reviewer: Philipp Deppenwiese
zaolin.daisuki@gmail.com
Gerrit-Reviewer: build bot (Jenkins)
no-reply@coreboot.org
Gerrit-CC: Paul Menzel
paulepanter@users.sourceforge.net
Gerrit-Comment-Date: Wed, 04 Sep 2019 00:06:33 +0000
Gerrit-HasComments: Yes
Gerrit-Has-Labels: No
Gerrit-MessageType: comment
