fix(intel): update memcpy to memcpy_s memcpy does not check the dst_size which may create vulnerable issue as it can overflow the buffer. Using memcpy_s which check the dst_size will help to reduce the risk. Also, this memcpy is always 4 bytes each time. Signed-off-by: Jit Loon Lim <jit.loon.lim@intel.com> Signed-off-by: Sieu Mun Tang <sieu.mun.tang@intel.com> Change-Id: I413e6ae2ee9330501703c4cd63b7943c6f55b4c7

commit: ebca51501d2bc543a3d914776c012b224bcc5dc3 [log] [tgz]
author: Sieu Mun Tang <sieu.mun.tang@intel.com> Mon Aug 26 07:59:10 2024 +0800
committer: Sieu Mun Tang <sieu.mun.tang@intel.com> Mon Aug 26 07:59:10 2024 +0800
tree: 5c0b1749668287f86768218f62b28ed7238c1cda
parent: 6a22225c77d71dab1e539b1025b4f388fbddc767 [diff] [blame]
diff --git a/plat/intel/soc/common/socfpga_psci.c b/plat/intel/soc/common/socfpga_psci.c
index c93e13f..623843e 100644
--- a/plat/intel/soc/common/socfpga_psci.c
+++ b/plat/intel/soc/common/socfpga_psci.c

@@ -1,6 +1,7 @@
 /*
  * Copyright (c) 2019-2023, ARM Limited and Contributors. All rights reserved.
  * Copyright (c) 2019-2023, Intel Corporation. All rights reserved.
+ * Copyright (c) 2024, Altera Corporation. All rights reserved.
  *
  * SPDX-License-Identifier: BSD-3-Clause
  */
@@ -183,8 +184,9 @@
 {
 	uint32_t addr_buf[2];
 
-	memcpy(addr_buf, &intel_rsu_update_address,
-			sizeof(intel_rsu_update_address));
+	memcpy_s(addr_buf, sizeof(intel_rsu_update_address),
+		&intel_rsu_update_address, sizeof(intel_rsu_update_address));
+
 	if (intel_rsu_update_address) {
 		mailbox_rsu_update(addr_buf);
 	} else {
commit	ebca51501d2bc543a3d914776c012b224bcc5dc3	[log] [tgz]
author	Sieu Mun Tang <sieu.mun.tang@intel.com>	Mon Aug 26 07:59:10 2024 +0800
committer	Sieu Mun Tang <sieu.mun.tang@intel.com>	Mon Aug 26 07:59:10 2024 +0800
tree	5c0b1749668287f86768218f62b28ed7238c1cda
parent	6a22225c77d71dab1e539b1025b4f388fbddc767 [diff] [blame]