Make sure the variables are not broken

2025-08-08 12:14:29 +00:00 · 2012-09-21 16:44:56 +08:00 · 2012-09-21 16:44:56 +08:00 · 6919a3f7c7
commit 6919a3f7c7
parent 6306b495c5
2 changed files with 8 additions and 2 deletions
--- a/MokManager.c
+++ b/MokManager.c
@ -101,6 +101,9 @@ static MokListNode *build_mok_list(UINT32 num, void *Data, UINTN DataSize) {
 	int i;
 	void *ptr;
 	if (DataSize < sizeof(UINT32))
 		return NULL;
 	list = AllocatePool(sizeof(MokListNode) * num);
 	if (!list) {
@ -478,7 +481,7 @@ static EFI_STATUS check_mok_request(EFI_HANDLE image_handle)
 	efi_status = get_variable(L"MokNew", shim_lock_guid, &attributes,
 				  &MokNewSize, &MokNew);
-	if (efi_status != EFI_SUCCESS) {
+	if (efi_status != EFI_SUCCESS || MokNewSize < sizeof(UINT32)) {
 		goto error;
 	}
--- a/shim.c
+++ b/shim.c
@ -107,6 +107,9 @@ static MokListNode *build_mok_list(UINT32 num, void *Data, UINTN DataSize) {
 	int i, remain = DataSize;
 	void *ptr;
 	if (DataSize < sizeof(UINT32))
 		return NULL;
 	list = AllocatePool(sizeof(MokListNode) * num);
 	if (!list) {
@ -601,7 +604,7 @@ static EFI_STATUS verify_buffer (char *data, int datasize,
 	status = get_variable(L"MokList", shim_lock_guid, &attributes,
 			      &MokListDataSize, &MokListData);
-	if (status != EFI_SUCCESS) {
+	if (status != EFI_SUCCESS || MokListDataSize < sizeof(UINT32)) {
 		status = EFI_ACCESS_DENIED;
 		Print(L"Invalid signature\n");
 		goto done;