tyler.durden
/
audk
mirror of https://github.com/acidanthera/audk.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
audk/CryptoPkg/Library/BaseCryptLib/SysCall
History
Long Qin cf8197a39d CryptoPkg/BaseCryptLib: Fix buffer overflow issue in realloc wrapper 
There is one long-standing problem in CRT realloc wrapper, which will
cause the obvious buffer overflow issue when re-allocating one bigger
memory block:
    void *realloc (void *ptr, size_t size)
    {
      //
      // BUG: hardcode OldSize == size! We have no any knowledge about
      // memory size of original pointer ptr.
      //
      return ReallocatePool ((UINTN) size, (UINTN) size, ptr);
    }
This patch introduces one extra header to record the memory buffer size
information when allocating memory block from malloc routine, and re-wrap
the realloc() and free() routines to remove this BUG.

Cc: Laszlo Ersek <lersek@redhat.com>
Cc: Ting Ye <ting.ye@intel.com>
Cc: Jian J Wang <jian.j.wang@intel.com>
Contributed-under: TianoCore Contribution Agreement 1.0
Signed-off-by: Qin Long <qin.long@intel.com>
Reviewed-by: Jian J Wang <jian.j.wang@intel.com>
Validated-by: Jian J Wang <jian.j.wang@intel.com>
 		2017-11-06 14:50:17 +08:00
..
BaseMemAllocation.c CryptoPkg/BaseCryptLib: Fix buffer overflow issue in realloc wrapper 2017-11-06 14:50:17 +08:00
ConstantTimeClock.c CryptoPkg/BaseCryptLib: Adding NULL checking in time() wrapper. 2017-04-07 00:28:56 +08:00
CrtWrapper.c CryptoPkg: Clean-up CRT Library Wrapper. 2017-03-29 16:13:58 +08:00
RuntimeMemAllocation.c CryptoPkg: Clean-up CRT Library Wrapper. 2017-03-29 16:13:58 +08:00
TimerWrapper.c CryptoPkg: Clean-up CRT Library Wrapper. 2017-03-29 16:13:58 +08:00