Change in ...coreboot[master]: nb/intel/nehalem: Prevent out of bounds read

List overview All Threads
Download

newer

older

Change in ...coreboot[master]:...

Change in coreboot[master]:...

Jacob Garber (Code Review)

11 Jun 2019 11 Jun '19

2:28 a.m.

Jacob Garber has uploaded this change for review. ( https://review.coreboot.org/c/coreboot/+/33383

Change subject: nb/intel/nehalem: Prevent out of bounds read ......................................................................

nb/intel/nehalem: Prevent out of bounds read

Check that clock_speed_index is non-zero before decrementing it, else we will get a very large out of bounds array access.

Change-Id: Ic8ed1293adfe0866781bd638323977abd110777e Signed-off-by: Jacob Garber jgarber1@ualberta.ca Found-by: Coverity CID 1229675 --- M src/northbridge/intel/nehalem/raminit.c 1 file changed, 2 insertions(+), 1 deletion(-)

git pull ssh://review.coreboot.org:29418/coreboot refs/changes/83/33383/1

diff --git a/src/northbridge/intel/nehalem/raminit.c b/src/northbridge/intel/nehalem/raminit.c index 15d6abb..72a2c57 100644 --- a/src/northbridge/intel/nehalem/raminit.c +++ b/src/northbridge/intel/nehalem/raminit.c @@ -598,7 +598,8 @@ for (clock_speed_index = 0; clock_speed_index < 3; clock_speed_index++) { if (cycletime == min_cycletime[clock_speed_index]) break; - if (cycletime > min_cycletime[clock_speed_index]) { + if (cycletime > min_cycletime[clock_speed_index] && + clock_speed_index != 0) { clock_speed_index--; cycletime = min_cycletime[clock_speed_index]; break;

Attachments:

attachment.htm (text/html — 2.7 KB)

Show replies by date

Arthur Heymans (Code Review)

11 Jun 11 Jun

9:50 a.m.

Arthur Heymans has posted comments on this change. ( https://review.coreboot.org/c/coreboot/+/33383 )

Change subject: nb/intel/nehalem: Prevent out of bounds read ......................................................................

Patch Set 1:

(1 comment)

Thx for finding this. Not sure if my suggestion makes the coverity happy. If you want to make that code a bit more readable you could also have a look at other raminit code. See for instance snb_normalize_tclk() in northbridge/intel/sandybridge/raminit_sandy.c

https://review.coreboot.org/#/c/33383/1/src/northbridge/intel/nehalem/ramini... File src/northbridge/intel/nehalem/raminit.c:

https://review.coreboot.org/#/c/33383/1/src/northbridge/intel/nehalem/ramini... PS1, Line 601: cycletime > min_cycletime[clock_speed_index] You want to die() if cycletime > min_cycletime[0], with a message like: "RAM init: Decoded SPD DRAM freq is slower than the controller minimum!"

You can add this before the loop.

-- To view, visit https://review.coreboot.org/c/coreboot/+/33383 To unsubscribe, or for help writing mail filters, visit https://review.coreboot.org/settings Gerrit-Project: coreboot Gerrit-Branch: master Gerrit-Change-Id: Ic8ed1293adfe0866781bd638323977abd110777e Gerrit-Change-Number: 33383 Gerrit-PatchSet: 1 Gerrit-Owner: Jacob Garber jgarber1@ualberta.ca Gerrit-Reviewer: Arthur Heymans arthur@aheymans.xyz Gerrit-Reviewer: David Hendricks david.hendricks@gmail.com Gerrit-Reviewer: Jacob Garber jgarber1@ualberta.ca Gerrit-Reviewer: Martin Roth martinroth@google.com Gerrit-Reviewer: Patrick Georgi pgeorgi@google.com Gerrit-Reviewer: build bot (Jenkins) no-reply@coreboot.org Gerrit-Comment-Date: Tue, 11 Jun 2019 07:50:43 +0000 Gerrit-HasComments: Yes Gerrit-Has-Labels: No Gerrit-MessageType: comment

Jacob Garber (Code Review)

6:48 p.m.

Jacob Garber has posted comments on this change. ( https://review.coreboot.org/c/coreboot/+/33383 )

Change subject: nb/intel/nehalem: Prevent out of bounds read ......................................................................

Patch Set 1:

(1 comment)

https://review.coreboot.org/#/c/33383/1/src/northbridge/intel/nehalem/ramini... File src/northbridge/intel/nehalem/raminit.c:

https://review.coreboot.org/#/c/33383/1/src/northbridge/intel/nehalem/ramini... PS1, Line 601: cycletime > min_cycletime[clock_speed_index]

...

You want to die() if cycletime > min_cycletime[0], with a message like: […]

I'll do that, thanks!

-- To view, visit https://review.coreboot.org/c/coreboot/+/33383 To unsubscribe, or for help writing mail filters, visit https://review.coreboot.org/settings Gerrit-Project: coreboot Gerrit-Branch: master Gerrit-Change-Id: Ic8ed1293adfe0866781bd638323977abd110777e Gerrit-Change-Number: 33383 Gerrit-PatchSet: 1 Gerrit-Owner: Jacob Garber jgarber1@ualberta.ca Gerrit-Reviewer: Arthur Heymans arthur@aheymans.xyz Gerrit-Reviewer: David Hendricks david.hendricks@gmail.com Gerrit-Reviewer: Jacob Garber jgarber1@ualberta.ca Gerrit-Reviewer: Martin Roth martinroth@google.com Gerrit-Reviewer: Patrick Georgi pgeorgi@google.com Gerrit-Reviewer: build bot (Jenkins) no-reply@coreboot.org Gerrit-Comment-Date: Tue, 11 Jun 2019 16:48:16 +0000 Gerrit-HasComments: Yes Gerrit-Has-Labels: No Comment-In-Reply-To: Arthur Heymans arthur@aheymans.xyz Gerrit-MessageType: comment

Jacob Garber (Code Review)

7:41 p.m.

Hello Arthur Heymans, David Hendricks, build bot (Jenkins), Patrick Georgi, Martin Roth,

I'd like you to reexamine a change. Please visit

https://review.coreboot.org/c/coreboot/+/33383

to look at the new patch set (#2).

Change subject: nb/intel/nehalem: Prevent out of bounds read ......................................................................

nb/intel/nehalem: Prevent out of bounds read

If the decoded SPD DRAM frequency is slower than the controller minimum, then there will be an unsigned integer underflow in the following loop, which will lead to a very large out of bounds array access. Ensure this does not happen.

git pull ssh://review.coreboot.org:29418/coreboot refs/changes/83/33383/2

build bot (Jenkins) (Code Review)

7:41 p.m.

build bot (Jenkins) has posted comments on this change. ( https://review.coreboot.org/c/coreboot/+/33383 )

Change subject: nb/intel/nehalem: Prevent out of bounds read ......................................................................

Patch Set 2:

(1 comment)

https://review.coreboot.org/#/c/33383/2/src/northbridge/intel/nehalem/ramini... File src/northbridge/intel/nehalem/raminit.c:

https://review.coreboot.org/#/c/33383/2/src/northbridge/intel/nehalem/ramini... PS2, Line 599: die("RAM init: Decoded SPD DRAM freq %u is slower than the controller minimum!", line over 80 characters

-- To view, visit https://review.coreboot.org/c/coreboot/+/33383 To unsubscribe, or for help writing mail filters, visit https://review.coreboot.org/settings Gerrit-Project: coreboot Gerrit-Branch: master Gerrit-Change-Id: Ic8ed1293adfe0866781bd638323977abd110777e Gerrit-Change-Number: 33383 Gerrit-PatchSet: 2 Gerrit-Owner: Jacob Garber jgarber1@ualberta.ca Gerrit-Reviewer: Arthur Heymans arthur@aheymans.xyz Gerrit-Reviewer: David Hendricks david.hendricks@gmail.com Gerrit-Reviewer: Jacob Garber jgarber1@ualberta.ca Gerrit-Reviewer: Martin Roth martinroth@google.com Gerrit-Reviewer: Patrick Georgi pgeorgi@google.com Gerrit-Reviewer: build bot (Jenkins) no-reply@coreboot.org Gerrit-Comment-Date: Tue, 11 Jun 2019 17:41:57 +0000 Gerrit-HasComments: Yes Gerrit-Has-Labels: No Gerrit-MessageType: comment

Jacob Garber (Code Review)

21 Jun 21 Jun

6:39 p.m.

Jacob Garber has posted comments on this change. ( https://review.coreboot.org/c/coreboot/+/33383 )

Change subject: nb/intel/nehalem: Prevent out of bounds read ......................................................................

Patch Set 2:

(1 comment)

https://review.coreboot.org/#/c/33383/2/src/northbridge/intel/nehalem/ramini... File src/northbridge/intel/nehalem/raminit.c:

https://review.coreboot.org/#/c/33383/2/src/northbridge/intel/nehalem/ramini... PS2, Line 599: die("RAM init: Decoded SPD DRAM freq %u is slower than the controller minimum!",

...

line over 80 characters

Done

-- To view, visit https://review.coreboot.org/c/coreboot/+/33383 To unsubscribe, or for help writing mail filters, visit https://review.coreboot.org/settings Gerrit-Project: coreboot Gerrit-Branch: master Gerrit-Change-Id: Ic8ed1293adfe0866781bd638323977abd110777e Gerrit-Change-Number: 33383 Gerrit-PatchSet: 2 Gerrit-Owner: Jacob Garber jgarber1@ualberta.ca Gerrit-Reviewer: Arthur Heymans arthur@aheymans.xyz Gerrit-Reviewer: David Hendricks david.hendricks@gmail.com Gerrit-Reviewer: Jacob Garber jgarber1@ualberta.ca Gerrit-Reviewer: Martin Roth martinroth@google.com Gerrit-Reviewer: Patrick Georgi pgeorgi@google.com Gerrit-Reviewer: build bot (Jenkins) no-reply@coreboot.org Gerrit-Comment-Date: Fri, 21 Jun 2019 16:39:11 +0000 Gerrit-HasComments: Yes Gerrit-Has-Labels: No Comment-In-Reply-To: build bot (Jenkins) no-reply@coreboot.org Gerrit-MessageType: comment

HAOUAS Elyes (Code Review)

22 Jun 22 Jun

6:56 a.m.

HAOUAS Elyes has posted comments on this change. ( https://review.coreboot.org/c/coreboot/+/33383 )

Change subject: nb/intel/nehalem: Prevent out of bounds read ......................................................................

Patch Set 2: Code-Review+1

-- To view, visit https://review.coreboot.org/c/coreboot/+/33383 To unsubscribe, or for help writing mail filters, visit https://review.coreboot.org/settings Gerrit-Project: coreboot Gerrit-Branch: master Gerrit-Change-Id: Ic8ed1293adfe0866781bd638323977abd110777e Gerrit-Change-Number: 33383 Gerrit-PatchSet: 2 Gerrit-Owner: Jacob Garber jgarber1@ualberta.ca Gerrit-Reviewer: Arthur Heymans arthur@aheymans.xyz Gerrit-Reviewer: David Hendricks david.hendricks@gmail.com Gerrit-Reviewer: HAOUAS Elyes ehaouas@noos.fr Gerrit-Reviewer: Jacob Garber jgarber1@ualberta.ca Gerrit-Reviewer: Martin Roth martinroth@google.com Gerrit-Reviewer: Patrick Georgi pgeorgi@google.com Gerrit-Reviewer: build bot (Jenkins) no-reply@coreboot.org Gerrit-Comment-Date: Sat, 22 Jun 2019 04:56:32 +0000 Gerrit-HasComments: No Gerrit-Has-Labels: Yes Gerrit-MessageType: comment

Arthur Heymans (Code Review)

1:37 p.m.

Arthur Heymans has posted comments on this change. ( https://review.coreboot.org/c/coreboot/+/33383 )

Change subject: nb/intel/nehalem: Prevent out of bounds read ......................................................................

Patch Set 2:

(1 comment)

https://review.coreboot.org/#/c/33383/2/src/northbridge/intel/nehalem/ramini... File src/northbridge/intel/nehalem/raminit.c:

https://review.coreboot.org/#/c/33383/2/src/northbridge/intel/nehalem/ramini... PS2, Line 599: freq %u freq = 1 / cycletime.

-- To view, visit https://review.coreboot.org/c/coreboot/+/33383 To unsubscribe, or for help writing mail filters, visit https://review.coreboot.org/settings Gerrit-Project: coreboot Gerrit-Branch: master Gerrit-Change-Id: Ic8ed1293adfe0866781bd638323977abd110777e Gerrit-Change-Number: 33383 Gerrit-PatchSet: 2 Gerrit-Owner: Jacob Garber jgarber1@ualberta.ca Gerrit-Reviewer: Arthur Heymans arthur@aheymans.xyz Gerrit-Reviewer: David Hendricks david.hendricks@gmail.com Gerrit-Reviewer: HAOUAS Elyes ehaouas@noos.fr Gerrit-Reviewer: Jacob Garber jgarber1@ualberta.ca Gerrit-Reviewer: Martin Roth martinroth@google.com Gerrit-Reviewer: Patrick Georgi pgeorgi@google.com Gerrit-Reviewer: build bot (Jenkins) no-reply@coreboot.org Gerrit-Comment-Date: Sat, 22 Jun 2019 11:37:34 +0000 Gerrit-HasComments: Yes Gerrit-Has-Labels: No Gerrit-MessageType: comment

Jacob Garber (Code Review)

24 Jun 24 Jun

7:05 p.m.

Hello HAOUAS Elyes, Arthur Heymans, David Hendricks, build bot (Jenkins), Patrick Georgi, Martin Roth,

I'd like you to reexamine a change. Please visit

https://review.coreboot.org/c/coreboot/+/33383

to look at the new patch set (#3).

Change subject: nb/intel/nehalem: Prevent out of bounds read ......................................................................

nb/intel/nehalem: Prevent out of bounds read

git pull ssh://review.coreboot.org:29418/coreboot refs/changes/83/33383/3

-- To view, visit https://review.coreboot.org/c/coreboot/+/33383 To unsubscribe, or for help writing mail filters, visit https://review.coreboot.org/settings Gerrit-Project: coreboot Gerrit-Branch: master Gerrit-Change-Id: Ic8ed1293adfe0866781bd638323977abd110777e Gerrit-Change-Number: 33383 Gerrit-PatchSet: 3 Gerrit-Owner: Jacob Garber jgarber1@ualberta.ca Gerrit-Reviewer: Arthur Heymans arthur@aheymans.xyz Gerrit-Reviewer: David Hendricks david.hendricks@gmail.com Gerrit-Reviewer: HAOUAS Elyes ehaouas@noos.fr Gerrit-Reviewer: Jacob Garber jgarber1@ualberta.ca Gerrit-Reviewer: Martin Roth martinroth@google.com Gerrit-Reviewer: Patrick Georgi pgeorgi@google.com Gerrit-Reviewer: build bot (Jenkins) no-reply@coreboot.org Gerrit-CC: Paul Menzel paulepanter@users.sourceforge.net Gerrit-MessageType: newpatchset

build bot (Jenkins) (Code Review)

7:06 p.m.

build bot (Jenkins) has posted comments on this change. ( https://review.coreboot.org/c/coreboot/+/33383 )

Change subject: nb/intel/nehalem: Prevent out of bounds read ......................................................................

Patch Set 3:

(1 comment)

https://review.coreboot.org/#/c/33383/3/src/northbridge/intel/nehalem/ramini... File src/northbridge/intel/nehalem/raminit.c:

https://review.coreboot.org/#/c/33383/3/src/northbridge/intel/nehalem/ramini... PS3, Line 599: die("RAM init: Decoded SPD DRAM freq is slower than the controller minimum!"); line over 80 characters

-- To view, visit https://review.coreboot.org/c/coreboot/+/33383 To unsubscribe, or for help writing mail filters, visit https://review.coreboot.org/settings Gerrit-Project: coreboot Gerrit-Branch: master Gerrit-Change-Id: Ic8ed1293adfe0866781bd638323977abd110777e Gerrit-Change-Number: 33383 Gerrit-PatchSet: 3 Gerrit-Owner: Jacob Garber jgarber1@ualberta.ca Gerrit-Reviewer: Arthur Heymans arthur@aheymans.xyz Gerrit-Reviewer: David Hendricks david.hendricks@gmail.com Gerrit-Reviewer: HAOUAS Elyes ehaouas@noos.fr Gerrit-Reviewer: Jacob Garber jgarber1@ualberta.ca Gerrit-Reviewer: Martin Roth martinroth@google.com Gerrit-Reviewer: Patrick Georgi pgeorgi@google.com Gerrit-Reviewer: build bot (Jenkins) no-reply@coreboot.org Gerrit-CC: Paul Menzel paulepanter@users.sourceforge.net Gerrit-Comment-Date: Mon, 24 Jun 2019 17:06:06 +0000 Gerrit-HasComments: Yes Gerrit-Has-Labels: No Gerrit-MessageType: comment

HAOUAS Elyes (Code Review)

7:47 p.m.

HAOUAS Elyes has posted comments on this change. ( https://review.coreboot.org/c/coreboot/+/33383 )

Change subject: nb/intel/nehalem: Prevent out of bounds read ......................................................................

Patch Set 3: Code-Review+1

-- To view, visit https://review.coreboot.org/c/coreboot/+/33383 To unsubscribe, or for help writing mail filters, visit https://review.coreboot.org/settings Gerrit-Project: coreboot Gerrit-Branch: master Gerrit-Change-Id: Ic8ed1293adfe0866781bd638323977abd110777e Gerrit-Change-Number: 33383 Gerrit-PatchSet: 3 Gerrit-Owner: Jacob Garber jgarber1@ualberta.ca Gerrit-Reviewer: Arthur Heymans arthur@aheymans.xyz Gerrit-Reviewer: David Hendricks david.hendricks@gmail.com Gerrit-Reviewer: HAOUAS Elyes ehaouas@noos.fr Gerrit-Reviewer: Jacob Garber jgarber1@ualberta.ca Gerrit-Reviewer: Martin Roth martinroth@google.com Gerrit-Reviewer: Patrick Georgi pgeorgi@google.com Gerrit-Reviewer: build bot (Jenkins) no-reply@coreboot.org Gerrit-CC: Paul Menzel paulepanter@users.sourceforge.net Gerrit-Comment-Date: Mon, 24 Jun 2019 17:47:05 +0000 Gerrit-HasComments: No Gerrit-Has-Labels: Yes Gerrit-MessageType: comment

Angel Pons (Code Review)

25 Jun 25 Jun

1:07 p.m.

Angel Pons has posted comments on this change. ( https://review.coreboot.org/c/coreboot/+/33383 )

Change subject: nb/intel/nehalem: Prevent out of bounds read ......................................................................

Patch Set 3: Code-Review+1

(1 comment)

https://review.coreboot.org/#/c/33383/3/src/northbridge/intel/nehalem/ramini... File src/northbridge/intel/nehalem/raminit.c:

https://review.coreboot.org/#/c/33383/3/src/northbridge/intel/nehalem/ramini... PS3, Line 599: die("RAM init: Decoded SPD DRAM freq is slower than the controller minimum!");

...

line over 80 characters

Ugh... Maybe omit "DRAM" and change "is slower" to "lower". Shouldn't impact readability too much.

-- To view, visit https://review.coreboot.org/c/coreboot/+/33383 To unsubscribe, or for help writing mail filters, visit https://review.coreboot.org/settings Gerrit-Project: coreboot Gerrit-Branch: master Gerrit-Change-Id: Ic8ed1293adfe0866781bd638323977abd110777e Gerrit-Change-Number: 33383 Gerrit-PatchSet: 3 Gerrit-Owner: Jacob Garber jgarber1@ualberta.ca Gerrit-Reviewer: Angel Pons th3fanbus@gmail.com Gerrit-Reviewer: Arthur Heymans arthur@aheymans.xyz Gerrit-Reviewer: David Hendricks david.hendricks@gmail.com Gerrit-Reviewer: HAOUAS Elyes ehaouas@noos.fr Gerrit-Reviewer: Jacob Garber jgarber1@ualberta.ca Gerrit-Reviewer: Martin Roth martinroth@google.com Gerrit-Reviewer: Patrick Georgi pgeorgi@google.com Gerrit-Reviewer: build bot (Jenkins) no-reply@coreboot.org Gerrit-CC: Paul Menzel paulepanter@users.sourceforge.net Gerrit-Comment-Date: Tue, 25 Jun 2019 11:07:36 +0000 Gerrit-HasComments: Yes Gerrit-Has-Labels: Yes Comment-In-Reply-To: build bot (Jenkins) no-reply@coreboot.org Gerrit-MessageType: comment

Jacob Garber (Code Review)

6:06 p.m.

Jacob Garber has posted comments on this change. ( https://review.coreboot.org/c/coreboot/+/33383 )

Change subject: nb/intel/nehalem: Prevent out of bounds read ......................................................................

Patch Set 3:

(1 comment)

https://review.coreboot.org/#/c/33383/3/src/northbridge/intel/nehalem/ramini... File src/northbridge/intel/nehalem/raminit.c:

https://review.coreboot.org/#/c/33383/3/src/northbridge/intel/nehalem/ramini... PS3, Line 599: die("RAM init: Decoded SPD DRAM freq is slower than the controller minimum!");

...

Ugh... Maybe omit "DRAM" and change "is slower" to "lower". Shouldn't impact readability too much.

The line length was recently increased to 96 anyway, so I've kinda just been ignoring these warnings as long as it fits under that.

-- To view, visit https://review.coreboot.org/c/coreboot/+/33383 To unsubscribe, or for help writing mail filters, visit https://review.coreboot.org/settings Gerrit-Project: coreboot Gerrit-Branch: master Gerrit-Change-Id: Ic8ed1293adfe0866781bd638323977abd110777e Gerrit-Change-Number: 33383 Gerrit-PatchSet: 3 Gerrit-Owner: Jacob Garber jgarber1@ualberta.ca Gerrit-Reviewer: Angel Pons th3fanbus@gmail.com Gerrit-Reviewer: Arthur Heymans arthur@aheymans.xyz Gerrit-Reviewer: David Hendricks david.hendricks@gmail.com Gerrit-Reviewer: HAOUAS Elyes ehaouas@noos.fr Gerrit-Reviewer: Jacob Garber jgarber1@ualberta.ca Gerrit-Reviewer: Martin Roth martinroth@google.com Gerrit-Reviewer: Patrick Georgi pgeorgi@google.com Gerrit-Reviewer: build bot (Jenkins) no-reply@coreboot.org Gerrit-CC: Paul Menzel paulepanter@users.sourceforge.net Gerrit-Comment-Date: Tue, 25 Jun 2019 16:06:44 +0000 Gerrit-HasComments: Yes Gerrit-Has-Labels: No Comment-In-Reply-To: Angel Pons th3fanbus@gmail.com Comment-In-Reply-To: build bot (Jenkins) no-reply@coreboot.org Gerrit-MessageType: comment

Angel Pons (Code Review)

16 Jul 16 Jul

2:09 a.m.

New subject: Change in coreboot[master]: nb/intel/nehalem: Prevent out of bounds read

Angel Pons has posted comments on this change. ( https://review.coreboot.org/c/coreboot/+/33383 )

Change subject: nb/intel/nehalem: Prevent out of bounds read ......................................................................

Patch Set 3: Code-Review+2

(1 comment)

https://review.coreboot.org/c/coreboot/+/33383/3/src/northbridge/intel/nehal... File src/northbridge/intel/nehalem/raminit.c:

https://review.coreboot.org/c/coreboot/+/33383/3/src/northbridge/intel/nehal... PS3, Line 599: die("RAM init: Decoded SPD DRAM freq is slower than the controller minimum!");

...

The line length was recently increased to 96 anyway, so I've kinda just been ignoring these warnings […]

Ack

-- To view, visit https://review.coreboot.org/c/coreboot/+/33383 To unsubscribe, or for help writing mail filters, visit https://review.coreboot.org/settings Gerrit-Project: coreboot Gerrit-Branch: master Gerrit-Change-Id: Ic8ed1293adfe0866781bd638323977abd110777e Gerrit-Change-Number: 33383 Gerrit-PatchSet: 3 Gerrit-Owner: Jacob Garber jgarber1@ualberta.ca Gerrit-Reviewer: Angel Pons th3fanbus@gmail.com Gerrit-Reviewer: Arthur Heymans arthur@aheymans.xyz Gerrit-Reviewer: David Hendricks david.hendricks@gmail.com Gerrit-Reviewer: HAOUAS Elyes ehaouas@noos.fr Gerrit-Reviewer: Jacob Garber jgarber1@ualberta.ca Gerrit-Reviewer: Martin Roth martinroth@google.com Gerrit-Reviewer: Patrick Georgi pgeorgi@google.com Gerrit-Reviewer: build bot (Jenkins) no-reply@coreboot.org Gerrit-CC: Paul Menzel paulepanter@users.sourceforge.net Gerrit-Comment-Date: Tue, 16 Jul 2019 00:09:32 +0000 Gerrit-HasComments: Yes Gerrit-Has-Labels: Yes Comment-In-Reply-To: Angel Pons th3fanbus@gmail.com Comment-In-Reply-To: Jacob Garber jgarber1@ualberta.ca Comment-In-Reply-To: build bot (Jenkins) no-reply@coreboot.org Gerrit-MessageType: comment

Martin Roth (Code Review)

17 Jul 17 Jul

6:04 p.m.

New subject: Change in coreboot[master]: nb/intel/nehalem: Prevent out of bounds read

Martin Roth has submitted this change and it was merged. ( https://review.coreboot.org/c/coreboot/+/33383 )

Change subject: nb/intel/nehalem: Prevent out of bounds read ......................................................................

nb/intel/nehalem: Prevent out of bounds read

Change-Id: Ic8ed1293adfe0866781bd638323977abd110777e Signed-off-by: Jacob Garber jgarber1@ualberta.ca Found-by: Coverity CID 1229675 Reviewed-on: https://review.coreboot.org/c/coreboot/+/33383 Tested-by: build bot (Jenkins) no-reply@coreboot.org Reviewed-by: HAOUAS Elyes ehaouas@noos.fr Reviewed-by: Angel Pons th3fanbus@gmail.com --- M src/northbridge/intel/nehalem/raminit.c 1 file changed, 2 insertions(+), 0 deletions(-)

Approvals: build bot (Jenkins): Verified HAOUAS Elyes: Looks good to me, but someone else must approve Angel Pons: Looks good to me, approved

diff --git a/src/northbridge/intel/nehalem/raminit.c b/src/northbridge/intel/nehalem/raminit.c index b4ff85c..fadf0e0 100644 --- a/src/northbridge/intel/nehalem/raminit.c +++ b/src/northbridge/intel/nehalem/raminit.c @@ -595,6 +595,8 @@ info-> spd[channel][slot][CAS_LATENCY_TIME]); } + if (cycletime > min_cycletime[0]) + die("RAM init: Decoded SPD DRAM freq is slower than the controller minimum!"); for (clock_speed_index = 0; clock_speed_index < 3; clock_speed_index++) { if (cycletime == min_cycletime[clock_speed_index]) break;

-- To view, visit https://review.coreboot.org/c/coreboot/+/33383 To unsubscribe, or for help writing mail filters, visit https://review.coreboot.org/settings Gerrit-Project: coreboot Gerrit-Branch: master Gerrit-Change-Id: Ic8ed1293adfe0866781bd638323977abd110777e Gerrit-Change-Number: 33383 Gerrit-PatchSet: 4 Gerrit-Owner: Jacob Garber jgarber1@ualberta.ca Gerrit-Reviewer: Angel Pons th3fanbus@gmail.com Gerrit-Reviewer: Arthur Heymans arthur@aheymans.xyz Gerrit-Reviewer: David Hendricks david.hendricks@gmail.com Gerrit-Reviewer: HAOUAS Elyes ehaouas@noos.fr Gerrit-Reviewer: Jacob Garber jgarber1@ualberta.ca Gerrit-Reviewer: Martin Roth martinroth@google.com Gerrit-Reviewer: Patrick Georgi pgeorgi@google.com Gerrit-Reviewer: build bot (Jenkins) no-reply@coreboot.org Gerrit-CC: Paul Menzel paulepanter@users.sourceforge.net Gerrit-MessageType: merged

1894

days inactive

1930

days old

coreboot-gerrit@coreboot.org

14 comments

6 participants

tags (0)

participants (6)

Angel Pons (Code Review)
Arthur Heymans (Code Review)
build bot (Jenkins) (Code Review)
HAOUAS Elyes (Code Review)
Jacob Garber (Code Review)
Martin Roth (Code Review)