Home Verkennen Help
Inloggen
PUBLIC_REPOS
/
buildroot
spiegel van git://git.buildroot.net/buildroot
2
1
Vork 0
Bestanden
Aftakking: master
Aftakkingen Labels
buildroot
/
boot
/
grub2
/
0068-loader-i386-bsd-Use-safe-math-to-avoid-underflow.patch

0068-loader-i386-bsd-Use-safe-math-to-avoid-underflow.patch 2.1 KB
Permalink Geschiedenis Ruwe

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061 
  1. From 02a0365799f5ca3d70c4e28b5d11ade56c4c1652 Mon Sep 17 00:00:00 2001
    2. 

  2. From: Alec Brown <alec.r.brown@oracle.com>
    3. 

  3. Date: Wed, 5 Feb 2025 22:04:08 +0000
    4. 

  4. Subject: [PATCH] loader/i386/bsd: Use safe math to avoid underflow
    5. 

  5. 

  6. The operation kern_end - kern_start may underflow when we input it into
    7. 

  7. grub_relocator_alloc_chunk_addr() call. To avoid this we can use safe
    8. 

  8. math for this subtraction.
    9. 

  9. 

  10. Fixes: CID 73845
    11. 

  11. 

  12. Signed-off-by: Alec Brown <alec.r.brown@oracle.com>
    13. 

  13. Reviewed-by: Daniel Kiper <daniel.kiper@oracle.com>
    14. 

  14. Upstream: 4dc6166571645780c459dde2cdc1b001a5ec844c
    15. 

  15. Signed-off-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
    16. 

  16. ---
    17. 

  17.  grub-core/loader/i386/bsd.c | 14 ++++++++++----
    18. 

  18.  1 file changed, 10 insertions(+), 4 deletions(-)
    19. 

  19. 

  20. diff --git a/grub-core/loader/i386/bsd.c b/grub-core/loader/i386/bsd.c
    21. 

  21. index 1f9128f6f..578433402 100644
    22. 

  22. --- a/grub-core/loader/i386/bsd.c
    23. 

  23. +++ b/grub-core/loader/i386/bsd.c
    24. 

  24. @@ -1340,6 +1340,7 @@ static grub_err_t
    25. 

  25.  grub_bsd_load_elf (grub_elf_t elf, const char *filename)
    26. 

  26.  {
    27. 

  27.    grub_err_t err;
    28. 

  28. +  grub_size_t sz;
    29. 

  29.  
    30. 

  30.    kern_end = 0;
    31. 

  31.    kern_start = ~0;
    32. 

  32. @@ -1370,8 +1371,11 @@ grub_bsd_load_elf (grub_elf_t elf, const char *filename)
    33. 

  33.  
    34. 

  34.        if (grub_errno)
    35. 

  35.  	return grub_errno;
    36. 

  36. -      err = grub_relocator_alloc_chunk_addr (relocator, &ch,
    37. 

  37. -					     kern_start, kern_end - kern_start);
    38. 

  38. +
    39. 

  39. +      if (grub_sub (kern_end, kern_start, &sz))
    40. 

  40. +	return grub_error (GRUB_ERR_OUT_OF_RANGE, "underflow detected while determining size of kernel for relocator");
    41. 

  41. +
    42. 

  42. +      err = grub_relocator_alloc_chunk_addr (relocator, &ch, kern_start, sz);
    43. 

  43.        if (err)
    44. 

  44.  	return err;
    45. 

  45.  
    46. 

  46. @@ -1431,8 +1435,10 @@ grub_bsd_load_elf (grub_elf_t elf, const char *filename)
    47. 

  47.        {
    48. 

  48.  	grub_relocator_chunk_t ch;
    49. 

  49.  
    50. 

  50. -	err = grub_relocator_alloc_chunk_addr (relocator, &ch, kern_start,
    51. 

  51. -					       kern_end - kern_start);
    52. 

  52. +	if (grub_sub (kern_end, kern_start, &sz))
    53. 

  53. +	  return grub_error (GRUB_ERR_OUT_OF_RANGE, "underflow detected while determining size of kernel for relocator");
    54. 

  54. +
    55. 

  55. +	err = grub_relocator_alloc_chunk_addr (relocator, &ch, kern_start, sz);
    56. 

  56.  	if (err)
    57. 

  57.  	  return err;
    58. 

  58.  	kern_chunk_src = get_virtual_current_address (ch);
    59. 

  59. -- 
    60. 

  60. 2.50.1
    61. 

  61.