Gitiles
Code Review Sign In
review.sourcearcade.org / flashprog / a54ceb1dbe76e76ca8701dbda3e5baf011b16d6d
commita54ceb1dbe76e76ca8701dbda3e5baf011b16d6d[log] [tgz]
authorYouness Alaoui <kakaroto@kakaroto.homelinux.net>Wed Jul 26 18:03:36 2017 -0400
committerNico Huber <nico.h@gmx.de>Thu Aug 10 15:18:11 2017 +0000
treef27ce3b104511a8b1598e77858cb42b41cb5e515
parent67d71792929f94d4638a3663f2fc19aea4918681 [diff]
rpci: Use pci_dev struct pointer to avoid API breaks

The pci_dev structure is never meant to be used as is, but always as a
pointer. By using the struct itself in undo_pci_write_data, we are risking
data corruption, or buffer overflows if the structure size changes.

This is especially apparent on my system where flashrom segfaults
because I compile it with pciutils 3.3.0 and I run it on a system
with pciutils 3.5.2. The struture size is different and causes a
struct with the wrong size to be sent to the library, with invalid
internal field values.

This has been discovered and discussed in Change ID 18925 [1]

[1] https://review.coreboot.org/#/c/18925/

Change-Id: Icde2e587992ba964d4ff92c33aa659850ba06298
Signed-off-by: Youness Alaoui <kakaroto@kakaroto.homelinux.net>
Reviewed-on: https://review.coreboot.org/20784
Tested-by: build bot (Jenkins) <no-reply@coreboot.org>
Reviewed-by: Nico Huber <nico.h@gmx.de>
3 files changed
tree: f27ce3b104511a8b1598e77858cb42b41cb5e515
  1. Documentation/
  2. util/
  3. .gitattributes
  4. .gitignore
  5. 82802ab.c
  6. amd_imc.c
  7. archtest.c
  8. at45db.c
  9. atahpt.c
  10. atapromise.c
  11. atavia.c
  12. bitbang_spi.c
  13. board_enable.c
  14. buspirate_spi.c
  15. cbtable.c
  16. ch341a_spi.c
  17. chipdrivers.h
  18. chipset_enable.c
  19. cli_classic.c
  20. cli_common.c
  21. cli_output.c
  22. COPYING
  23. coreboot_tables.h
  24. dediprog.c
  25. dmi.c
  26. Doxyfile
  27. drkaiser.c
  28. dummyflasher.c
  29. en29lv640b.c
  30. flash.h
  31. flashchips.c
  32. flashchips.h
  33. flashrom.8.tmpl
  34. flashrom.c
  35. ft2232_spi.c
  36. gfxnvidia.c
  37. helpers.c
  38. hwaccess.c
  39. hwaccess.h
  40. ich_descriptors.c
  41. ich_descriptors.h
  42. ichspi.c
  43. internal.c
  44. it8212.c
  45. it85spi.c
  46. it87spi.c
  47. jedec.c
  48. layout.c
  49. layout.h
  50. libflashrom.c
  51. libflashrom.h
  52. linux_spi.c
  53. Makefile
  54. mcp6x_spi.c
  55. mstarddc_spi.c
  56. nic3com.c
  57. nicintel.c
  58. nicintel_eeprom.c
  59. nicintel_spi.c
  60. nicnatsemi.c
  61. nicrealtek.c
  62. ogp_spi.c
  63. opaque.c
  64. os.h
  65. pcidev.c
  66. physmap.c
  67. pickit2_spi.c
  68. platform.h
  69. pony_spi.c
  70. print.c
  71. print_wiki.c
  72. processor_enable.c
  73. programmer.c
  74. programmer.h
  75. rayer_spi.c
  76. README
  77. satamv.c
  78. satasii.c
  79. sb600spi.c
  80. serial.c
  81. serprog.c
  82. serprog.h
  83. sfdp.c
  84. spi.c
  85. spi.h
  86. spi25.c
  87. spi25_statusreg.c
  88. sst28sf040.c
  89. sst49lfxxxc.c
  90. sst_fwhub.c
  91. stm50.c
  92. udelay.c
  93. usbblaster_spi.c
  94. w29ee011.c
  95. w39.c
  96. wbsio_spi.c