efi_loader: fix possible buffer overflow Variable "final" will have SHA512 digest, but currently the array size is not sufficient. Let's fix it. Signed-off-by: Masahisa Kojima <masahisa.kojima@linaro.org> Reviewed-by: Ilias Apalodimas <ilias.apalodimas@linaro.org> Reviewed-by: Heinrich Schuchardt <xypron.glpk@gmx.de>

commit: eb74a90b3b08a9ad3ba2c499d6b67eadee0434f9 [log] [tgz]
author: Masahisa Kojima <masahisa.kojima@linaro.org> Wed Apr 14 11:55:49 2021 +0900
committer: Heinrich Schuchardt <xypron.glpk@gmx.de> Sat Apr 17 20:01:32 2021 +0200
tree: 02db639be3785a1edd0bc552783a66fe88101c6c
parent: aa27e5de0e9d8e8294ed96ad90ec0704b617474e [diff]
diff --git a/lib/efi_loader/efi_tcg2.c b/lib/efi_loader/efi_tcg2.c
index ed86a22..d5eca68 100644
--- a/lib/efi_loader/efi_tcg2.c
+++ b/lib/efi_loader/efi_tcg2.c

@@ -515,7 +515,7 @@
 	sha1_context ctx;
 	sha256_context ctx_256;
 	sha512_context ctx_512;
-	u8 final[TPM2_ALG_SHA512];
+	u8 final[TPM2_SHA512_DIGEST_SIZE];
 	efi_status_t ret;
 	u32 active;
 	int i;
commit	eb74a90b3b08a9ad3ba2c499d6b67eadee0434f9	[log] [tgz]
author	Masahisa Kojima <masahisa.kojima@linaro.org>	Wed Apr 14 11:55:49 2021 +0900
committer	Heinrich Schuchardt <xypron.glpk@gmx.de>	Sat Apr 17 20:01:32 2021 +0200
tree	02db639be3785a1edd0bc552783a66fe88101c6c
parent	aa27e5de0e9d8e8294ed96ad90ec0704b617474e [diff]