diff options
| author | Peter Jones <pjones@redhat.com> | 2015-02-06 17:48:07 -0500 |
|---|---|---|
| committer | Peter Jones <pjones@redhat.com> | 2015-04-13 19:55:25 -0400 |
| commit | d01421eb5ae67daa9a2d341099b3e58fdb2f9f9e (patch) | |
| tree | c542b2b0ba991886330c7706dc73850d692a32a5 | |
| parent | 361716dd4a612e8be58e755102eceefffd3a54c5 (diff) | |
| download | efi-boot-shim-d01421eb5ae67daa9a2d341099b3e58fdb2f9f9e.tar.gz efi-boot-shim-d01421eb5ae67daa9a2d341099b3e58fdb2f9f9e.zip | |
Align the sections we're loading, and check for validity /after/ discarding.
Turns out a) the codegen on aarch64 generates code that has real
alignment needs, and b) if we check the length of discardable sections
before discarding them, we error for no reason.
So do the error checking in the right order, and always enforce some
alignment because we know we have to.
Signed-off-by: Peter Jones <pjones@redhat.com>
| -rw-r--r-- | include/PeImage.h | 1 | ||||
| -rw-r--r-- | shim.c | 28 |
2 files changed, 18 insertions, 11 deletions
diff --git a/include/PeImage.h b/include/PeImage.h index 133e11e6..05f32ea2 100644 --- a/include/PeImage.h +++ b/include/PeImage.h @@ -778,6 +778,7 @@ typedef struct { UINTN SizeOfHeaders;
UINT16 ImageType;
UINT16 NumberOfSections;
+ UINT32 SectionAlignment;
EFI_IMAGE_SECTION_HEADER *FirstSection;
EFI_IMAGE_DATA_DIRECTORY *RelocDir;
EFI_IMAGE_DATA_DIRECTORY *SecDir;
@@ -1002,14 +1002,18 @@ static EFI_STATUS read_header(void *data, unsigned int datasize, context->NumberOfRvaAndSizes = PEHdr->Pe32Plus.OptionalHeader.NumberOfRvaAndSizes; context->SizeOfHeaders = PEHdr->Pe32Plus.OptionalHeader.SizeOfHeaders; context->ImageSize = PEHdr->Pe32Plus.OptionalHeader.SizeOfImage; + context->SectionAlignment = PEHdr->Pe32Plus.OptionalHeader.SectionAlignment; OptHeaderSize = sizeof(EFI_IMAGE_OPTIONAL_HEADER64); } else { context->NumberOfRvaAndSizes = PEHdr->Pe32.OptionalHeader.NumberOfRvaAndSizes; context->SizeOfHeaders = PEHdr->Pe32.OptionalHeader.SizeOfHeaders; context->ImageSize = (UINT64)PEHdr->Pe32.OptionalHeader.SizeOfImage; + context->SectionAlignment = PEHdr->Pe32.OptionalHeader.SectionAlignment; OptHeaderSize = sizeof(EFI_IMAGE_OPTIONAL_HEADER32); } + if (context->SectionAlignment < 0x1000) + context->SectionAlignment = 0x1000; context->NumberOfSections = PEHdr->Pe32.FileHeader.NumberOfSections; if (EFI_IMAGE_NUMBER_OF_DIRECTORY_ENTRIES < context->NumberOfRvaAndSizes) { @@ -1128,7 +1132,8 @@ static EFI_STATUS handle_image (void *data, unsigned int datasize, } } - buffer = AllocatePool(context.ImageSize); + buffer = AllocatePool(context.ImageSize + context.SectionAlignment); + buffer = ALIGN_POINTER(buffer, context.SectionAlignment); if (!buffer) { perror(L"Failed to allocate image buffer\n"); @@ -1159,16 +1164,6 @@ static EFI_STATUS handle_image (void *data, unsigned int datasize, base = ImageAddress (buffer, context.ImageSize, Section->VirtualAddress); end = ImageAddress (buffer, context.ImageSize, Section->VirtualAddress + size - 1); - if (!base || !end) { - perror(L"Invalid section size\n"); - return EFI_UNSUPPORTED; - } - - if (Section->VirtualAddress < context.SizeOfHeaders || - Section->PointerToRawData < context.SizeOfHeaders) { - perror(L"Section is inside image headers\n"); - return EFI_UNSUPPORTED; - } /* We do want to process .reloc, but it's often marked * discardable, so we don't want to memcpy it. */ @@ -1194,6 +1189,17 @@ static EFI_STATUS handle_image (void *data, unsigned int datasize, continue; } + if (!base || !end) { + perror(L"Section %d has invalid size\n", i); + return EFI_UNSUPPORTED; + } + + if (Section->VirtualAddress < context.SizeOfHeaders || + Section->PointerToRawData < context.SizeOfHeaders) { + perror(L"Section %d is inside image headers\n", i); + return EFI_UNSUPPORTED; + } + if (Section->SizeOfRawData > 0) CopyMem(base, data + Section->PointerToRawData, size); |