[coreboot-gerrit] Change in coreboot[master]: cpu/x86/smm: Add overflow check

7 Feb 2020

Hello Kyösti Mälkki, Aaron Durbin, Arthur Heymans, cedarhouse1@comcast.net,
I'd like you to do a code review. Please visit
https://review.coreboot.org/c/coreboot/+/38763
to review the following change.
Change subject: cpu/x86/smm: Add overflow check
......................................................................
cpu/x86/smm: Add overflow check
Rather bail out than run into undefined behavior.
Change-Id: Ife26a0abed0ce6bcafe1e7cd8f499618631c4df4
Signed-off-by: Nico Huber nico.h@gmx.de
---
M src/cpu/x86/smm/smm_module_loader.c
1 file changed, 2 insertions(+), 0 deletions(-)
git pull ssh://review.coreboot.org:29418/coreboot refs/changes/63/38763/1

diff --git a/src/cpu/x86/smm/smm_module_loader.c b/src/cpu/x86/smm/smm_module_loader.c
index a421436..81020a4 100644
--- a/src/cpu/x86/smm/smm_module_loader.c
+++ b/src/cpu/x86/smm/smm_module_loader.c
@@ -202,6 +202,8 @@
    /* Adjust remaining size to account for save state. */
    total_save_state_size = params->per_cpu_save_state_size *
    			params->num_concurrent_save_states;
+	if (total_save_state_size > size)
+		return -1;
    size -= total_save_state_size;
/* The save state size encroached over the first SMM entry point. */
-- 
To view, visit https://review.coreboot.org/c/coreboot/+/38763
To unsubscribe, or for help writing mail filters, visit https://review.coreboot.org/settings

Gerrit-Project: coreboot
Gerrit-Branch: master
Gerrit-Change-Id: Ife26a0abed0ce6bcafe1e7cd8f499618631c4df4
Gerrit-Change-Number: 38763
Gerrit-PatchSet: 1
Gerrit-Owner: Nico Huber nico.h@gmx.de
Gerrit-Reviewer: Aaron Durbin adurbin@chromium.org
Gerrit-Reviewer: Arthur Heymans arthur@aheymans.xyz
Gerrit-Reviewer: Kyösti Mälkki kyosti.malkki@gmail.com
Gerrit-Reviewer: cedarhouse1@comcast.net
Gerrit-MessageType: newchange



    

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

[coreboot-gerrit] Change in coreboot[master]: cpu/x86/smm: Add overflow check