[PATCH v3 0/4] platform/x86/amd/pmf: Fix policy binary handling

From: Armin Wolf
Date: Mon Mar 04 2024 - 15:50:40 EST

Next message: Armin Wolf: "[PATCH v3 2/4] platform/x86/amd/pmf: Do not use readl() for policy buffer access"
Previous message: Armin Wolf: "[PATCH v3 1/4] platform/x86/amd/pmf: Fix return value of amd_pmf_start_policy_engine()"
Next in thread: Armin Wolf: "[PATCH v3 1/4] platform/x86/amd/pmf: Fix return value of amd_pmf_start_policy_engine()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This patch series fixes various issues inside the policy binary
handling code.
The first patch makes sure that a valid error code is returned upon
failing to start the policy engine, while the second patch drops the
usage of readl() on non-io memory.
The last two patches fix a possible out-of-bounds memory access when
parsing the policy binary header.

All patches are compile-tested only.

Changes since v2:
- add patches 1 and 3

Changes since v1:
- get the full dword instead of only 8 bits when reading the header
- check if the policy buffer also has enough room for storing the length

Armin Wolf (4):
platform/x86/amd/pmf: Fix return value of
amd_pmf_start_policy_engine()
platform/x86/amd/pmf: Do not use readl() for policy buffer access
platform/x86/amd/pmf: Use struct for cookie header
platform/x86/amd/pmf: Fix possible out-of-bound memory accesses

drivers/platform/x86/amd/pmf/pmf.h | 6 +++++-
drivers/platform/x86/amd/pmf/tee-if.c | 21 +++++++++++++--------
2 files changed, 18 insertions(+), 9 deletions(-)

--
2.39.2

Next message: Armin Wolf: "[PATCH v3 2/4] platform/x86/amd/pmf: Do not use readl() for policy buffer access"
Previous message: Armin Wolf: "[PATCH v3 1/4] platform/x86/amd/pmf: Fix return value of amd_pmf_start_policy_engine()"
Next in thread: Armin Wolf: "[PATCH v3 1/4] platform/x86/amd/pmf: Fix return value of amd_pmf_start_policy_engine()"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]