[S] Change in coreboot[master]: commonlib/fsp_relocate: Fix Coverity Issues - coreboot-gerrit

14 Nov 2022


      Attention is currently required from: Jonathan Zhang, Johnny Lin, Paul Menzel, Martin Roth.
Ed Sharma has posted comments on this change. ( https://review.coreboot.org/c/coreboot/+/68637 )
Change subject: commonlib/fsp_relocate: Fix Coverity Issues
......................................................................
Patch Set 4:
(3 comments)
Commit Message:
https://review.coreboot.org/c/coreboot/+/68637/comment/3dbf07d6_0833cba2 
PS3, Line 18: on my own to test my changes against coverity tests.
...
Check [CB:69408], I am able to do so.
Done
File src/commonlib/fsp_relocate.c:
https://review.coreboot.org/c/coreboot/+/68637/comment/56813738_1484d084 
PS4, Line 230: 	offset_limit = roffset + rsize;
Fixes issue reported as below:
Coverity issue:
*** CID 1498391: (TAINTED_SCALAR)
/src/commonlib/fsp_relocate.c: 229 in pe_relocate()
223 rsize = read_le32(&ophdr->DataDirectory[EFI_IMAGE_DIRECTORY_ENTRY_BASERELOC].Size);
224 roffset = read_le32(&ophdr->DataDirectory[EFI_IMAGE_DIRECTORY_ENTRY_BASERELOC].VirtualAddress);
225 printk(FSP_DBG_LVL, "relocation table at offset-%x,size=%x\n", roffset, rsize);
226 // TODO - add support for PE32+ also
227
228 offset = roffset;
CID 1498391: (TAINTED_SCALAR)
            Using tainted variable "roffset + rsize" as a loop boundary.
229 while (offset < (roffset + rsize)) {
230 uint32_t vaddr;
231 uint32_t rlen, rnum;
232 uint16_t *rdata;
233 uint32_t i;
234 EFI_IMAGE_DATA_DIRECTORY *relocd;
https://review.coreboot.org/c/coreboot/+/68637/comment/1dc1dcdf_2dbcbc5c 
PS4, Line 258: 				ptr = &pe_base[aoff];
Fixes the below reported Coverity issue.
Coverity Issue:
*** CID 1498391: (TAINTED_SCALAR)
250 printk(FSP_DBG_LVL, "\t\treloc type %x offset %x aoff %x, base-0x%x\n",
251 rtype, roff, aoff, img_base_off);
252 switch (rtype) {
253 case EFI_IMAGE_REL_BASED_ABSOLUTE:
254 continue;
255 case EFI_IMAGE_REL_BASED_HIGHLOW:
CID 1498391: (TAINTED_SCALAR)
            Using tainted variable "aoff" as an index to pointer "pe_base".
256 val = read_le32(&pe_base[aoff]);
257 printk(FSP_DBG_LVL, "Adjusting %p %x -> %x\n",
258 &pe_base[aoff], val, val + delta);
259 write_le32(&pe_base[aoff], val + delta);
260 break;
261 case EFI_IMAGE_REL_BASED_DIR64:
-- 
To view, visit https://review.coreboot.org/c/coreboot/+/68637
To unsubscribe, or for help writing mail filters, visit https://review.coreboot.org/settings

Gerrit-Project: coreboot
Gerrit-Branch: master
Gerrit-Change-Id: I635c62929e8be9a474a91a62c29c3b5ee9b0ee64
Gerrit-Change-Number: 68637
Gerrit-PatchSet: 4
Gerrit-Owner: Ed Sharma aeddiesharma@fb.com
Gerrit-Reviewer: Johnny Lin Johnny_Lin@wiwynn.com
Gerrit-Reviewer: Jonathan Zhang jonzhang@fb.com
Gerrit-Reviewer: Martin Roth martin.roth@amd.corp-partner.google.com
Gerrit-Reviewer: build bot (Jenkins) no-reply@coreboot.org
Gerrit-CC: Paul Menzel paulepanter@mailbox.org
Gerrit-Attention: Jonathan Zhang jonzhang@fb.com
Gerrit-Attention: Johnny Lin Johnny_Lin@wiwynn.com
Gerrit-Attention: Paul Menzel paulepanter@mailbox.org
Gerrit-Attention: Martin Roth martin.roth@amd.corp-partner.google.com
Gerrit-Comment-Date: Mon, 14 Nov 2022 04:42:09 +0000
Gerrit-HasComments: Yes
Gerrit-Has-Labels: No
Comment-In-Reply-To: Jonathan Zhang jonzhang@fb.com
Comment-In-Reply-To: Ed Sharma aeddiesharma@fb.com
Gerrit-MessageType: comment