Change in coreboot[master]: cbfs: Make sure all cases of single file header corruption are isolated - coreboot-gerrit

31 Aug 2021


      Attention is currently required from: Furquan Shaikh, Jakub Czapiga.
Julius Werner has posted comments on this change. ( https://review.coreboot.org/c/coreboot/+/57271 )
Change subject: cbfs: Make sure all cases of single file header corruption are isolated
......................................................................
Patch Set 1:
(1 comment)
File src/commonlib/bsd/cbfs_private.c:
https://review.coreboot.org/c/coreboot/+/57271/comment/2e23b75c_5f09f2f7 
PS1, Line 54: data_length > devsize
...
The second condition will be true only if file data is larger than whole rdev. […]
The second condition is an overflow check. Without that, a data_length of 0xffffffff (like you might see if a data block got accidentally erased just after the beginning of the file header) would not be caught by this check.
-- 
To view, visit https://review.coreboot.org/c/coreboot/+/57271
To unsubscribe, or for help writing mail filters, visit https://review.coreboot.org/settings

Gerrit-Project: coreboot
Gerrit-Branch: master
Gerrit-Change-Id: Ice2b6960284bd0c19be35b0607e5e32791e7a64c
Gerrit-Change-Number: 57271
Gerrit-PatchSet: 1
Gerrit-Owner: Julius Werner jwerner@chromium.org
Gerrit-Reviewer: Furquan Shaikh furquan@google.com
Gerrit-Reviewer: Jakub Czapiga jacz@semihalf.com
Gerrit-Reviewer: build bot (Jenkins) no-reply@coreboot.org
Gerrit-Attention: Furquan Shaikh furquan@google.com
Gerrit-Attention: Jakub Czapiga jacz@semihalf.com
Gerrit-Comment-Date: Tue, 31 Aug 2021 21:22:55 +0000
Gerrit-HasComments: Yes
Gerrit-Has-Labels: No
Comment-In-Reply-To: Jakub Czapiga jacz@semihalf.com
Gerrit-MessageType: comment