From mboxrd@z Thu Jan  1 00:00:00 1970
Authentication-Results: mx.groups.io;
 dkim=missing; spf=pass (domain: intel.com, ip: 134.134.136.126, mailfrom: chao.b.zhang@intel.com)
Received: from mga18.intel.com (mga18.intel.com [134.134.136.126])
 by groups.io with SMTP; Tue, 25 Jun 2019 18:59:02 -0700
X-Amp-Result: SKIPPED(no attachment in message)
X-Amp-File-Uploaded: False
Received: from orsmga005.jf.intel.com ([10.7.209.41])
  by orsmga106.jf.intel.com with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 25 Jun 2019 18:59:01 -0700
X-ExtLoop1: 1
X-IronPort-AV: E=Sophos;i="5.63,418,1557212400"; 
   d="scan'208,217";a="337052324"
Received: from fmsmsx104.amr.corp.intel.com ([10.18.124.202])
  by orsmga005.jf.intel.com with ESMTP; 25 Jun 2019 18:59:00 -0700
Received: from FMSMSX109.amr.corp.intel.com (10.18.116.9) by
 fmsmsx104.amr.corp.intel.com (10.18.124.202) with Microsoft SMTP Server (TLS)
 id 14.3.439.0; Tue, 25 Jun 2019 18:59:01 -0700
Received: from shsmsx108.ccr.corp.intel.com (10.239.4.97) by
 fmsmsx109.amr.corp.intel.com (10.18.116.9) with Microsoft SMTP Server (TLS)
 id 14.3.439.0; Tue, 25 Jun 2019 18:59:00 -0700
Received: from shsmsx102.ccr.corp.intel.com ([169.254.2.33]) by
 SHSMSX108.ccr.corp.intel.com ([169.254.8.236]) with mapi id 14.03.0439.000;
 Wed, 26 Jun 2019 09:58:58 +0800
From: "Zhang, Chao B" <chao.b.zhang@intel.com>
To: "devel@edk2.groups.io" <devel@edk2.groups.io>, "Gao, Liming"
	<liming.gao@intel.com>, "Dong, Eric" <eric.dong@intel.com>, "Gao, Zhichao"
	<zhichao.gao@intel.com>
CC: "Ni, Ray" <ray.ni@intel.com>, Laszlo Ersek <lersek@redhat.com>
Subject: Re: [edk2-devel] [PATCH V2] UefiCpuPkg/MpInitLib: MicrocodeDetect: Ensure checked range is valid
Thread-Topic: [edk2-devel] [PATCH V2] UefiCpuPkg/MpInitLib: MicrocodeDetect:
 Ensure checked range is valid
Thread-Index: AQHVK2jwaM0XPpsGk0WuPAu4kT5wkqaslLKAgAANXQCAAItqUA==
Date: Wed, 26 Jun 2019 01:58:58 +0000
Message-ID: <FF72C7E4248F3C4E9BDF19D4918E90F24DEDEF8B@shsmsx102.ccr.corp.intel.com>
References: <20190625151541.28632-1-zhichao.gao@intel.com>
 <ED077930C258884BBCB450DB737E662259E74914@shsmsx102.ccr.corp.intel.com>
 <4A89E2EF3DFEDB4C8BFDE51014F606A14E48D584@SHSMSX104.ccr.corp.intel.com>
In-Reply-To: <4A89E2EF3DFEDB4C8BFDE51014F606A14E48D584@SHSMSX104.ccr.corp.intel.com>
Accept-Language: en-US
X-MS-Has-Attach: 
X-MS-TNEF-Correlator: 
x-ctpclassification: CTP_NT
x-titus-metadata-40: eyJDYXRlZ29yeUxhYmVscyI6IiIsIk1ldGFkYXRhIjp7Im5zIjoiaHR0cDpcL1wvd3d3LnRpdHVzLmNvbVwvbnNcL0ludGVsMyIsImlkIjoiYTZhZTZhODUtMjdlYy00MGRlLWEzY2MtMzkwNzhmMzU0ZjJkIiwicHJvcHMiOlt7Im4iOiJDVFBDbGFzc2lmaWNhdGlvbiIsInZhbHMiOlt7InZhbHVlIjoiQ1RQX05UIn1dfV19LCJTdWJqZWN0TGFiZWxzIjpbXSwiVE1DVmVyc2lvbiI6IjE3LjEwLjE4MDQuNDkiLCJUcnVzdGVkTGFiZWxIYXNoIjoiaW5ybWtGYTdZOGE0NUFndlVZUk9yUHl4Z0ttbXBCa2FlSUFqU0FLSll3K1FwVWE2Zk9lRXRvNTJKQUNMWHBpRiJ9
dlp-product: dlpe-windows
dlp-version: 11.0.600.7
dlp-reaction: no-action
x-originating-ip: [10.239.127.40]
MIME-Version: 1.0
Return-Path: chao.b.zhang@intel.com
Content-Language: en-US
Content-Type: multipart/alternative;
	boundary="_000_FF72C7E4248F3C4E9BDF19D4918E90F24DEDEF8Bshsmsx102ccrcor_"

--_000_FF72C7E4248F3C4E9BDF19D4918E90F24DEDEF8Bshsmsx102ccrcor_
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable

Hi All:
Is that patch to fix potential overflow in MicroCodeEntryPoint + TotalSize=
?
Is there a clearer way to check it?  Like MAX_ADDRESS - TotalSize <=3D Mic=
roCodeEntryPoint.
And I suggest to add check before doing MicrroCodeEntryPoint + TotalSize.

From: devel@edk2.groups.io [mailto:devel@edk2.groups.io] On Behalf Of Limi=
ng Gao
Sent: Wednesday, June 26, 2019 9:36 AM
To: Dong, Eric <eric.dong@intel.com>; Gao, Zhichao <zhichao.gao@intel.com>=
; devel@edk2.groups.io
Cc: Ni, Ray <ray.ni@intel.com>; Laszlo Ersek <lersek@redhat.com>
Subject: Re: [edk2-devel] [PATCH V2] UefiCpuPkg/MpInitLib: MicrocodeDetect=
: Ensure checked range is valid

Zhichao:
  One generic comment, the commit message doesn't need to include V1, V2. =
It is just the change description.

Thanks
Liming
>-----Original Message-----
>From: Dong, Eric
>Sent: Wednesday, June 26, 2019 8:48 AM
>To: Gao, Zhichao <zhichao.gao@intel.com<mailto:zhichao.gao@intel.com>>; d=
evel@edk2.groups.io<mailto:devel@edk2.groups.io>
>Cc: Ni, Ray <ray.ni@intel.com<mailto:ray.ni@intel.com>>; Laszlo Ersek <le=
rsek@redhat.com<mailto:lersek@redhat.com>>; Gao,
>Liming <liming.gao@intel.com<mailto:liming.gao@intel.com>>
>Subject: RE: [PATCH V2] UefiCpuPkg/MpInitLib: MicrocodeDetect: Ensure
>checked range is valid
>
>Hi Zhichao,
>
>Reviewed-by: Eric Dong <eric.dong@intel.com<mailto:eric.dong@intel.com>>
>
>It's better to add some comments in the code to explain the change which
>make the code easy to be understood.
>
>Thanks,
>Eric
>
>> -----Original Message-----
>> From: Gao, Zhichao
>> Sent: Tuesday, June 25, 2019 11:16 PM
>> To: devel@edk2.groups.io<mailto:devel@edk2.groups.io>
>> Cc: Dong, Eric <eric.dong@intel.com<mailto:eric.dong@intel.com>>; Ni, R=
ay <ray.ni@intel.com<mailto:ray.ni@intel.com>>; Laszlo
>> Ersek <lersek@redhat.com<mailto:lersek@redhat.com>>; Gao, Liming <limin=
g.gao@intel.com<mailto:liming.gao@intel.com>>
>> Subject: [PATCH V2] UefiCpuPkg/MpInitLib: MicrocodeDetect: Ensure
>> checked range is valid
>>
>> REF: https://bugzilla.tianocore.org/show_bug.cgi?id=3D1934
>>
>> V1:
>> Originally, the checksum part would done before verfiy the microcode da=
ta.
>> Which meas the checksum would be done for a meaningless data.
>> It would cause a incorrect TotalSize (the size of microcode data), then
>> incorrect checksum and incorrect pointer increasing would happen.
>> To fix this, move the checksum part 1 section in 'if (MicrocodeEntryPoi=
nt-
>> >HeaderVersion =3D=3D 0x1)' section for a valid microcode data.
>>
>> V2:
>> 'if (MicrocodeEntryPoint->HeaderVersion =3D=3D 0x1)' condition doesn't =
make
>> sure the entry data is a valid microcode. So abandon it. Instead, make =
sure
>> the checked data is in the microcode data range. Because the DataSize o=
f
>non
>> microcde data may make (MicrocodeEntryPoint + TotalSize) larger than
>> 0xffffffff. For PEI driver, UINTN is 32bit and the result is overflow a=
nd it may
>> be a very small value. That means the checksum check would be done out =
of
>> the microcode range.
>>
>> Cc: Eric Dong <eric.dong@intel.com<mailto:eric.dong@intel.com>>
>> Cc: Ray Ni <ray.ni@intel.com<mailto:ray.ni@intel.com>>
>> Cc: Laszlo Ersek <lersek@redhat.com<mailto:lersek@redhat.com>>
>> Cc: Liming Gao <liming.gao@intel.com<mailto:liming.gao@intel.com>>
>> Signed-off-by: Zhichao Gao <zhichao.gao@intel.com<mailto:zhichao.gao@in=
tel.com>>
>> ---
>>  UefiCpuPkg/Library/MpInitLib/Microcode.c | 3 ++-
>>  1 file changed, 2 insertions(+), 1 deletion(-)
>>
>> diff --git a/UefiCpuPkg/Library/MpInitLib/Microcode.c
>> b/UefiCpuPkg/Library/MpInitLib/Microcode.c
>> index 4763dcfebe..6c0995cb0d 100644
>> --- a/UefiCpuPkg/Library/MpInitLib/Microcode.c
>> +++ b/UefiCpuPkg/Library/MpInitLib/Microcode.c
>> @@ -1,7 +1,7 @@
>>  /** @file
>>    Implementation of loading microcode on processors.
>>
>> -  Copyright (c) 2015 - 2018, Intel Corporation. All rights reserved.<B=
R>
>> +  Copyright (c) 2015 - 2019, Intel Corporation. All rights
>> + reserved.<BR>
>>    SPDX-License-Identifier: BSD-2-Clause-Patent
>>
>>  **/
>> @@ -170,6 +170,7 @@ MicrocodeDetect (
>>      /// Check overflow and whether TotalSize is aligned with 4 bytes.
>>      ///
>>      if ( ((UINTN)MicrocodeEntryPoint + TotalSize) > MicrocodeEnd ||
>> +         ((UINTN)MicrocodeEntryPoint + TotalSize) < (UINTN)
>> + CpuMpData->MicrocodePatchAddress ||
>>           (TotalSize & 0x3) !=3D 0
>>         ) {
>>        MicrocodeEntryPoint =3D (CPU_MICROCODE_HEADER *) (((UINTN)
>> MicrocodeEntryPoint) + SIZE_1KB);
>> --
>> 2.21.0.windows.1




--_000_FF72C7E4248F3C4E9BDF19D4918E90F24DEDEF8Bshsmsx102ccrcor_
Content-Type: text/html; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable

<html xmlns:v=3D"urn:schemas-microsoft-com:vml" xmlns:o=3D"urn:schemas-micr=
osoft-com:office:office" xmlns:w=3D"urn:schemas-microsoft-com:office:word" =
xmlns:m=3D"http://schemas.microsoft.com/office/2004/12/omml" xmlns=3D"http:=
//www.w3.org/TR/REC-html40">
<head>
<meta http-equiv=3D"Content-Type" content=3D"text/html; charset=3Dus-ascii=
">
<meta name=3D"Generator" content=3D"Microsoft Word 15 (filtered medium)">
<style><!--
/* Font Definitions */
@font-face
	{font-family:SimSun;
	panose-1:2 1 6 0 3 1 1 1 1 1;}
@font-face
	{font-family:"Cambria Math";
	panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
	{font-family:Calibri;
	panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
	{font-family:"\@SimSun";
	panose-1:2 1 6 0 3 1 1 1 1 1;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
	{margin:0cm;
	margin-bottom:.0001pt;
	font-size:12.0pt;
	font-family:"Times New Roman",serif;}
a:link, span.MsoHyperlink
	{mso-style-priority:99;
	color:#0563C1;
	text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
	{mso-style-priority:99;
	color:#954F72;
	text-decoration:underline;}
span.EmailStyle17
	{mso-style-type:personal-reply;
	font-family:"Calibri",sans-serif;
	color:black;}
.MsoChpDefault
	{mso-style-type:export-only;
	font-size:10.0pt;}
@page WordSection1
	{size:612.0pt 792.0pt;
	margin:72.0pt 72.0pt 72.0pt 72.0pt;}
div.WordSection1
	{page:WordSection1;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext=3D"edit" spidmax=3D"1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext=3D"edit">
<o:idmap v:ext=3D"edit" data=3D"1" />
</o:shapelayout></xml><![endif]-->
</head>
<body lang=3D"EN-US" link=3D"#0563C1" vlink=3D"#954F72">
<div class=3D"WordSection1">
<p class=3D"MsoNormal"><span style=3D"font-size:11.0pt;font-family:&quot;C=
alibri&quot;,sans-serif;color:black">Hi All:<o:p></o:p></span></p>
<p class=3D"MsoNormal" style=3D"margin-left:36.0pt"><span style=3D"font-si=
ze:11.0pt;font-family:&quot;Calibri&quot;,sans-serif;color:black">Is that p=
atch to fix potential overflow in MicroCodeEntryPoint &#43; TotalSize?<o:p>=
</o:p></span></p>
<p class=3D"MsoNormal" style=3D"margin-left:36.0pt"><span style=3D"font-si=
ze:11.0pt;font-family:&quot;Calibri&quot;,sans-serif;color:black">Is there =
a clearer way to check it? &nbsp;Like MAX_ADDRESS &#8211; TotalSize &lt;=3D=
 MicroCodeEntryPoint.
<o:p></o:p></span></p>
<p class=3D"MsoNormal" style=3D"margin-left:36.0pt"><span style=3D"font-si=
ze:11.0pt;font-family:&quot;Calibri&quot;,sans-serif;color:black">And I sug=
gest to add check before doing MicrroCodeEntryPoint &#43; TotalSize.<o:p></=
o:p></span></p>
<p class=3D"MsoNormal"><a name=3D"_MailEndCompose"><span style=3D"font-siz=
e:11.0pt;font-family:&quot;Calibri&quot;,sans-serif;color:black"><o:p>&nbsp=
;</o:p></span></a></p>
<div>
<div style=3D"border:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0cm=
 0cm 0cm">
<p class=3D"MsoNormal"><a name=3D"_____replyseparator"></a><b><span style=
=3D"font-size:11.0pt;font-family:&quot;Calibri&quot;,sans-serif">From:</sp=
an></b><span style=3D"font-size:11.0pt;font-family:&quot;Calibri&quot;,sans=
-serif"> devel@edk2.groups.io [mailto:devel@edk2.groups.io]
<b>On Behalf Of </b>Liming Gao<br>
<b>Sent:</b> Wednesday, June 26, 2019 9:36 AM<br>
<b>To:</b> Dong, Eric &lt;eric.dong@intel.com&gt;; Gao, Zhichao &lt;zhicha=
o.gao@intel.com&gt;; devel@edk2.groups.io<br>
<b>Cc:</b> Ni, Ray &lt;ray.ni@intel.com&gt;; Laszlo Ersek &lt;lersek@redha=
t.com&gt;<br>
<b>Subject:</b> Re: [edk2-devel] [PATCH V2] UefiCpuPkg/MpInitLib: Microcod=
eDetect: Ensure checked range is valid<o:p></o:p></span></p>
</div>
</div>
<p class=3D"MsoNormal"><o:p>&nbsp;</o:p></p>
<p class=3D"MsoNormal"><span style=3D"font-size:11.0pt;font-family:&quot;C=
alibri&quot;,sans-serif;color:black">Zhichao:</span><span style=3D"font-siz=
e:11.0pt;font-family:&quot;Calibri&quot;,sans-serif"><br>
<span style=3D"color:black">&nbsp;&nbsp;One&nbsp;generic&nbsp;comment,&nbs=
p;the&nbsp;commit&nbsp;message&nbsp;doesn't&nbsp;need&nbsp;to&nbsp;include&=
nbsp;V1,&nbsp;V2.&nbsp;It&nbsp;is&nbsp;just&nbsp;the&nbsp;change&nbsp;descr=
iption.&nbsp;</span><br>
<br>
<span style=3D"color:black">Thanks</span><br>
<span style=3D"color:black">Liming</span><br>
<span style=3D"color:purple">&gt;-----Original&nbsp;Message-----</span><br=
>
<span style=3D"color:purple">&gt;From:&nbsp;Dong,&nbsp;Eric</span><br>
<span style=3D"color:purple">&gt;Sent:&nbsp;Wednesday,&nbsp;June&nbsp;26,&=
nbsp;2019&nbsp;8:48&nbsp;AM</span><br>
<span style=3D"color:purple">&gt;To:&nbsp;Gao,&nbsp;Zhichao&nbsp;&lt;<a hr=
ef=3D"mailto:zhichao.gao@intel.com">zhichao.gao@intel.com</a>&gt;;&nbsp;<a =
href=3D"mailto:devel@edk2.groups.io">devel@edk2.groups.io</a></span><br>
<span style=3D"color:purple">&gt;Cc:&nbsp;Ni,&nbsp;Ray&nbsp;&lt;<a href=3D=
"mailto:ray.ni@intel.com">ray.ni@intel.com</a>&gt;;&nbsp;Laszlo&nbsp;Ersek&=
nbsp;&lt;<a href=3D"mailto:lersek@redhat.com">lersek@redhat.com</a>&gt;;&nb=
sp;Gao,</span><br>
<span style=3D"color:purple">&gt;Liming&nbsp;&lt;<a href=3D"mailto:liming.=
gao@intel.com">liming.gao@intel.com</a>&gt;</span><br>
<span style=3D"color:purple">&gt;Subject:&nbsp;RE:&nbsp;[PATCH&nbsp;V2]&nb=
sp;UefiCpuPkg/MpInitLib:&nbsp;MicrocodeDetect:&nbsp;Ensure</span><br>
<span style=3D"color:purple">&gt;checked&nbsp;range&nbsp;is&nbsp;valid</sp=
an><br>
<span style=3D"color:purple">&gt;</span><br>
<span style=3D"color:purple">&gt;Hi&nbsp;Zhichao,</span><br>
<span style=3D"color:purple">&gt;</span><br>
<span style=3D"color:purple">&gt;Reviewed-by:&nbsp;Eric&nbsp;Dong&nbsp;&lt=
;<a href=3D"mailto:eric.dong@intel.com">eric.dong@intel.com</a>&gt;</span><=
br>
<span style=3D"color:purple">&gt;</span><br>
<span style=3D"color:purple">&gt;It's&nbsp;better&nbsp;to&nbsp;add&nbsp;so=
me&nbsp;comments&nbsp;in&nbsp;the&nbsp;code&nbsp;to&nbsp;explain&nbsp;the&n=
bsp;change&nbsp;which</span><br>
<span style=3D"color:purple">&gt;make&nbsp;the&nbsp;code&nbsp;easy&nbsp;to=
&nbsp;be&nbsp;understood.</span><br>
<span style=3D"color:purple">&gt;</span><br>
<span style=3D"color:purple">&gt;Thanks,</span><br>
<span style=3D"color:purple">&gt;Eric</span><br>
<span style=3D"color:purple">&gt;</span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;-----Original&nbsp;Message-----</=
span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;From:&nbsp;Gao,&nbsp;Zhichao</spa=
n><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;Sent:&nbsp;Tuesday,&nbsp;June&nbs=
p;25,&nbsp;2019&nbsp;11:16&nbsp;PM</span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;To:&nbsp;<a href=3D"mailto:devel@=
edk2.groups.io">devel@edk2.groups.io</a></span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;Cc:&nbsp;Dong,&nbsp;Eric&nbsp;&lt=
;<a href=3D"mailto:eric.dong@intel.com">eric.dong@intel.com</a>&gt;;&nbsp;N=
i,&nbsp;Ray&nbsp;&lt;<a href=3D"mailto:ray.ni@intel.com">ray.ni@intel.com</=
a>&gt;;&nbsp;Laszlo</span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;Ersek&nbsp;&lt;<a href=3D"mailto:=
lersek@redhat.com">lersek@redhat.com</a>&gt;;&nbsp;Gao,&nbsp;Liming&nbsp;&l=
t;<a href=3D"mailto:liming.gao@intel.com">liming.gao@intel.com</a>&gt;</spa=
n><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;Subject:&nbsp;[PATCH&nbsp;V2]&nbs=
p;UefiCpuPkg/MpInitLib:&nbsp;MicrocodeDetect:&nbsp;Ensure</span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;checked&nbsp;range&nbsp;is&nbsp;v=
alid</span><br>
<span style=3D"color:blue">&gt;&gt;</span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;REF:&nbsp;<a href=3D"https://bugz=
illa.tianocore.org/show_bug.cgi?id=3D1934">https://bugzilla.tianocore.org/s=
how_bug.cgi?id=3D1934</a></span><br>
<span style=3D"color:blue">&gt;&gt;</span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;V1:</span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;Originally,&nbsp;the&nbsp;checksu=
m&nbsp;part&nbsp;would&nbsp;done&nbsp;before&nbsp;verfiy&nbsp;the&nbsp;micr=
ocode&nbsp;data.</span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;Which&nbsp;meas&nbsp;the&nbsp;che=
cksum&nbsp;would&nbsp;be&nbsp;done&nbsp;for&nbsp;a&nbsp;meaningless&nbsp;da=
ta.</span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;It&nbsp;would&nbsp;cause&nbsp;a&n=
bsp;incorrect&nbsp;TotalSize&nbsp;(the&nbsp;size&nbsp;of&nbsp;microcode&nbs=
p;data),&nbsp;then</span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;incorrect&nbsp;checksum&nbsp;and&=
nbsp;incorrect&nbsp;pointer&nbsp;increasing&nbsp;would&nbsp;happen.</span><=
br>
<span style=3D"color:blue">&gt;&gt;&nbsp;To&nbsp;fix&nbsp;this,&nbsp;move&=
nbsp;the&nbsp;checksum&nbsp;part&nbsp;1&nbsp;section&nbsp;in&nbsp;'if&nbsp;=
(MicrocodeEntryPoint-</span><br>
<span style=3D"color:green">&gt;&gt;&nbsp;&gt;HeaderVersion&nbsp;=3D=3D&nb=
sp;0x1)'&nbsp;section&nbsp;for&nbsp;a&nbsp;valid&nbsp;microcode&nbsp;data.<=
/span><br>
<span style=3D"color:blue">&gt;&gt;</span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;V2:</span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;'if&nbsp;(MicrocodeEntryPoint-&gt=
;HeaderVersion&nbsp;=3D=3D&nbsp;0x1)'&nbsp;condition&nbsp;doesn't&nbsp;make=
</span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;sure&nbsp;the&nbsp;entry&nbsp;dat=
a&nbsp;is&nbsp;a&nbsp;valid&nbsp;microcode.&nbsp;So&nbsp;abandon&nbsp;it.&n=
bsp;Instead,&nbsp;make&nbsp;sure</span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;the&nbsp;checked&nbsp;data&nbsp;i=
s&nbsp;in&nbsp;the&nbsp;microcode&nbsp;data&nbsp;range.&nbsp;Because&nbsp;t=
he&nbsp;DataSize&nbsp;of</span><br>
<span style=3D"color:purple">&gt;non</span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;microcde&nbsp;data&nbsp;may&nbsp;=
make&nbsp;(MicrocodeEntryPoint&nbsp;&#43;&nbsp;TotalSize)&nbsp;larger&nbsp;=
than</span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;0xffffffff.&nbsp;For&nbsp;PEI&nbs=
p;driver,&nbsp;UINTN&nbsp;is&nbsp;32bit&nbsp;and&nbsp;the&nbsp;result&nbsp;=
is&nbsp;overflow&nbsp;and&nbsp;it&nbsp;may</span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;be&nbsp;a&nbsp;very&nbsp;small&nb=
sp;value.&nbsp;That&nbsp;means&nbsp;the&nbsp;checksum&nbsp;check&nbsp;would=
&nbsp;be&nbsp;done&nbsp;out&nbsp;of</span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;the&nbsp;microcode&nbsp;range.</s=
pan><br>
<span style=3D"color:blue">&gt;&gt;</span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;Cc:&nbsp;Eric&nbsp;Dong&nbsp;&lt;=
<a href=3D"mailto:eric.dong@intel.com">eric.dong@intel.com</a>&gt;</span><b=
r>
<span style=3D"color:blue">&gt;&gt;&nbsp;Cc:&nbsp;Ray&nbsp;Ni&nbsp;&lt;<a =
href=3D"mailto:ray.ni@intel.com">ray.ni@intel.com</a>&gt;</span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;Cc:&nbsp;Laszlo&nbsp;Ersek&nbsp;&=
lt;<a href=3D"mailto:lersek@redhat.com">lersek@redhat.com</a>&gt;</span><br=
>
<span style=3D"color:blue">&gt;&gt;&nbsp;Cc:&nbsp;Liming&nbsp;Gao&nbsp;&lt=
;<a href=3D"mailto:liming.gao@intel.com">liming.gao@intel.com</a>&gt;</span=
><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;Signed-off-by:&nbsp;Zhichao&nbsp;=
Gao&nbsp;&lt;<a href=3D"mailto:zhichao.gao@intel.com">zhichao.gao@intel.com=
</a>&gt;</span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;---</span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;&nbsp;UefiCpuPkg/Library/MpInitLi=
b/Microcode.c&nbsp;|&nbsp;3&nbsp;&#43;&#43;-</span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;&nbsp;1&nbsp;file&nbsp;changed,&n=
bsp;2&nbsp;insertions(&#43;),&nbsp;1&nbsp;deletion(-)</span><br>
<span style=3D"color:blue">&gt;&gt;</span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;diff&nbsp;--git&nbsp;a/UefiCpuPkg=
/Library/MpInitLib/Microcode.c</span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;b/UefiCpuPkg/Library/MpInitLib/Mi=
crocode.c</span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;index&nbsp;4763dcfebe..6c0995cb0d=
&nbsp;100644</span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;---&nbsp;a/UefiCpuPkg/Library/MpI=
nitLib/Microcode.c</span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;&#43;&#43;&#43;&nbsp;b/UefiCpuPkg=
/Library/MpInitLib/Microcode.c</span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;@@&nbsp;-1,7&nbsp;&#43;1,7&nbsp;@=
@</span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;&nbsp;/**&nbsp;@file</span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;&nbsp;&nbsp;&nbsp;Implementation&=
nbsp;of&nbsp;loading&nbsp;microcode&nbsp;on&nbsp;processors.</span><br>
<span style=3D"color:blue">&gt;&gt;</span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;-&nbsp;&nbsp;Copyright&nbsp;(c)&n=
bsp;2015&nbsp;-&nbsp;2018,&nbsp;Intel&nbsp;Corporation.&nbsp;All&nbsp;right=
s&nbsp;reserved.&lt;BR&gt;</span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;&#43;&nbsp;&nbsp;Copyright&nbsp;(=
c)&nbsp;2015&nbsp;-&nbsp;2019,&nbsp;Intel&nbsp;Corporation.&nbsp;All&nbsp;r=
ights</span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;&#43;&nbsp;reserved.&lt;BR&gt;</s=
pan><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;&nbsp;&nbsp;&nbsp;SPDX-License-Id=
entifier:&nbsp;BSD-2-Clause-Patent</span><br>
<span style=3D"color:blue">&gt;&gt;</span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;&nbsp;**/</span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;@@&nbsp;-170,6&nbsp;&#43;170,7&nb=
sp;@@&nbsp;MicrocodeDetect&nbsp;(</span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;///=
&nbsp;Check&nbsp;overflow&nbsp;and&nbsp;whether&nbsp;TotalSize&nbsp;is&nbsp=
;aligned&nbsp;with&nbsp;4&nbsp;bytes.</span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;///=
</span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;if&=
nbsp;(&nbsp;((UINTN)MicrocodeEntryPoint&nbsp;&#43;&nbsp;TotalSize)&nbsp;&gt=
;&nbsp;MicrocodeEnd&nbsp;||</span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;&#43;&nbsp;&nbsp;&nbsp;&nbsp;&nbs=
p;&nbsp;&nbsp;&nbsp;&nbsp;((UINTN)MicrocodeEntryPoint&nbsp;&#43;&nbsp;Total=
Size)&nbsp;&lt;&nbsp;(UINTN)</span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;&#43;&nbsp;CpuMpData-&gt;Microcod=
ePatchAddress&nbsp;||</span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb=
sp;&nbsp;&nbsp;&nbsp;&nbsp;(TotalSize&nbsp;&amp;&nbsp;0x3)&nbsp;!=3D&nbsp;0=
</span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb=
sp;&nbsp;&nbsp;)&nbsp;{</span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nb=
sp;&nbsp;MicrocodeEntryPoint&nbsp;=3D&nbsp;(CPU_MICROCODE_HEADER&nbsp;*)&nb=
sp;(((UINTN)</span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;MicrocodeEntryPoint)&nbsp;&#43;&n=
bsp;SIZE_1KB);</span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;--</span><br>
<span style=3D"color:blue">&gt;&gt;&nbsp;2.21.0.windows.1</span><br>
<br>
<br>
<span style=3D"color:black"></span><o:p></o:p></span></p>
</div>
</body>
</html>

--_000_FF72C7E4248F3C4E9BDF19D4918E90F24DEDEF8Bshsmsx102ccrcor_--