coreboot September 2017

coreboot@coreboot.org

57 participants
132 discussions

Re: [coreboot] REPLY: INT 13H
by Peter Stuge 03 Sep '17

03 Sep '17

Zoran, Vincenzo, BIOS and UEFI have higher privilege in the system than the OS kernel, which has higher privilege than userland processes, which have higher privilege than the user. Any component with higher privilege can override, circumvent or contradict parts of the system and users with lower privilege levels. BIOS is x86-specific. UEFI is arguably not technically superior to BIOS. UEFI has sadly infected other platforms than x86. Interrupt services were introduced with the BIOS, and will continue to always be available on x86 platforms, for compatibility. Compatibility is the only actual value of x86. UEFI on x86 does not neccessarily have to, but in practice generally does include a CSM, which provides BIOS-compatible interrupt services also on systems with UEFI. Regardless of whether that's a 32 or 64 bit UEFI, the CSM always provides the legacy 16 bit interface. Vincenzo, if you are creating a secure system, you must first establish what is secure *enough* for your use case. Risk assessment and a threat model are essential, or you will never reach a working reliable system, because they define your goal. Security issues can exist pretty much everywhere, so an "ideal" secure system is not very practical. //Peter

3 4

New Defects reported by Coverity Scan for coreboot
by scan-admin＠coverity.com 01 Sep '17

01 Sep '17

Hi, Please find the latest report on new defect(s) introduced to coreboot found with Coverity Scan. 5 new defect(s) introduced to coreboot found with Coverity Scan. 2 defect(s), reported by Coverity Scan earlier, were marked fixed in the recent build analyzed by Coverity Scan. New defect(s) Reported-by: Coverity Scan Showing 5 of 5 defect(s) ** CID 1380296: Resource leaks (RESOURCE_LEAK) /src/arch/x86/acpi_device.c: 718 in acpi_dp_add_property_list() ________________________________________________________________________________________________________ *** CID 1380296: Resource leaks (RESOURCE_LEAK) /src/arch/x86/acpi_device.c: 718 in acpi_dp_add_property_list() 712 acpi_dp_add_string(dp, prop->name, prop->string); 713 break; 714 case ACPI_DP_TYPE_REFERENCE: 715 acpi_dp_add_reference(dp, prop->name, prop->string); 716 break; 717 case ACPI_DP_TYPE_ARRAY: >>> CID 1380296: Resource leaks (RESOURCE_LEAK) >>> Ignoring storage allocated by "acpi_dp_add_array(dp, (*prop).array)" leaks it. 718 acpi_dp_add_array(dp, prop->array); 719 break; 720 case ACPI_DP_TYPE_CHILD: 721 acpi_dp_add_child(dp, prop->name, prop->child); 722 break; 723 default: ** CID 1380295: Resource leaks (RESOURCE_LEAK) /src/arch/x86/acpi_device.c: 721 in acpi_dp_add_property_list() ________________________________________________________________________________________________________ *** CID 1380295: Resource leaks (RESOURCE_LEAK) /src/arch/x86/acpi_device.c: 721 in acpi_dp_add_property_list() 715 acpi_dp_add_reference(dp, prop->name, prop->string); 716 break; 717 case ACPI_DP_TYPE_ARRAY: 718 acpi_dp_add_array(dp, prop->array); 719 break; 720 case ACPI_DP_TYPE_CHILD: >>> CID 1380295: Resource leaks (RESOURCE_LEAK) >>> Ignoring storage allocated by "acpi_dp_add_child(dp, prop->name, (*prop).child)" leaks it. 721 acpi_dp_add_child(dp, prop->name, prop->child); 722 break; 723 default: 724 continue; 725 } 726 ** CID 1380294: Resource leaks (RESOURCE_LEAK) /src/arch/x86/acpi_device.c: 709 in acpi_dp_add_property_list() ________________________________________________________________________________________________________ *** CID 1380294: Resource leaks (RESOURCE_LEAK) /src/arch/x86/acpi_device.c: 709 in acpi_dp_add_property_list() 703 704 if (prop->type == ACPI_DP_TYPE_UNKNOWN || !prop->name) 705 continue; 706 707 switch (prop->type) { 708 case ACPI_DP_TYPE_INTEGER: >>> CID 1380294: Resource leaks (RESOURCE_LEAK) >>> Ignoring storage allocated by "acpi_dp_add_integer(dp, prop->name, (*prop).integer)" leaks it. 709 acpi_dp_add_integer(dp, prop->name, prop->integer); 710 break; 711 case ACPI_DP_TYPE_STRING: 712 acpi_dp_add_string(dp, prop->name, prop->string); 713 break; 714 case ACPI_DP_TYPE_REFERENCE: ** CID 1380293: Resource leaks (RESOURCE_LEAK) /src/arch/x86/acpi_device.c: 715 in acpi_dp_add_property_list() ________________________________________________________________________________________________________ *** CID 1380293: Resource leaks (RESOURCE_LEAK) /src/arch/x86/acpi_device.c: 715 in acpi_dp_add_property_list() 709 acpi_dp_add_integer(dp, prop->name, prop->integer); 710 break; 711 case ACPI_DP_TYPE_STRING: 712 acpi_dp_add_string(dp, prop->name, prop->string); 713 break; 714 case ACPI_DP_TYPE_REFERENCE: >>> CID 1380293: Resource leaks (RESOURCE_LEAK) >>> Ignoring storage allocated by "acpi_dp_add_reference(dp, prop->name, (*prop).string)" leaks it. 715 acpi_dp_add_reference(dp, prop->name, prop->string); 716 break; 717 case ACPI_DP_TYPE_ARRAY: 718 acpi_dp_add_array(dp, prop->array); 719 break; 720 case ACPI_DP_TYPE_CHILD: ** CID 1380292: Resource leaks (RESOURCE_LEAK) /src/arch/x86/acpi_device.c: 712 in acpi_dp_add_property_list() ________________________________________________________________________________________________________ *** CID 1380292: Resource leaks (RESOURCE_LEAK) /src/arch/x86/acpi_device.c: 712 in acpi_dp_add_property_list() 706 707 switch (prop->type) { 708 case ACPI_DP_TYPE_INTEGER: 709 acpi_dp_add_integer(dp, prop->name, prop->integer); 710 break; 711 case ACPI_DP_TYPE_STRING: >>> CID 1380292: Resource leaks (RESOURCE_LEAK) >>> Ignoring storage allocated by "acpi_dp_add_string(dp, prop->name, (*prop).string)" leaks it. 712 acpi_dp_add_string(dp, prop->name, prop->string); 713 break; 714 case ACPI_DP_TYPE_REFERENCE: 715 acpi_dp_add_reference(dp, prop->name, prop->string); 716 break; 717 case ACPI_DP_TYPE_ARRAY: ________________________________________________________________________________________________________ To view the defects in Coverity Scan visit, https://u2389337.ct.sendgrid.net/wf/click?upn=08onrYu34A-2BWcWUl-2F-2BfV0V0… To manage Coverity Scan email notifications for "coreboot(a)coreboot.org", click https://u2389337.ct.sendgrid.net/wf/click?upn=08onrYu34A-2BWcWUl-2F-2BfV0V0…

1 0

Jump to page:

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

2003

2002

coreboot September 2017