cbfstool: check potential microcode update earlier

The update-fit command takes in a parameter for number of slots in the FIT table. It then processes the microcobe blob in cbfs adding those entries to the FIT table. However, the tracking of the number of mircocode updates was incremented before validating the update. Therefore, move the sanity checking before an increment of the number of updates. BUG=chrome-os-partner:19035 BRANCH=none TEST=emerge-fox_wtm2 chromeos-coreboot-fox and inspected microcode FIT entries. Change-Id: Ie8290f53316b251e500b88829fdcf9b5735c1b0e Signed-off-by: Aaron Durbin <adurbin@chromium.org> Reviewed-on: https://gerrit.chromium.org/gerrit/50319 Reviewed-by: Duncan Laurie <dlaurie@chromium.org>
2013-05-07 11:14:01 -05:00 · 2013-05-07 11:14:01 -05:00 · b521867ee2
commit b521867ee2
parent d3f4dcc331
1 changed files with 4 additions and 4 deletions
--- a/util/cbfstool/fit.c
+++ b/util/cbfstool/fit.c
@ -206,6 +206,10 @@ static int parse_microcode_blob(struct cbfs_image *image,

 		mcu_header = rom_buffer_pointer(image, current_offset);

+		/* Quickly sanity check a prospective microcode update. */
+		if (mcu_header->total_size < sizeof(*mcu_header))
+			break;
+
 		/* FIXME: Should the checksum be validated? */
 		mcus[num_mcus].offset = current_offset;
 		mcus[num_mcus].size = mcu_header->total_size;
@ -215,10 +219,6 @@ static int parse_microcode_blob(struct cbfs_image *image,
 		num_mcus++;
 		file_length -= mcus[num_mcus].size;

-		/* Can't determine any more entries. */
-		if (!mcu_header->total_size)
-			break;
-
 		/* Reached limit of FIT entries. */
 		if (num_mcus == *total_mcus)
 			break;