tools: kwboot: Check for v1 header size

Too small invalid headers may cause kwboot to crash. Check for header size of v1 images. Signed-off-by: Pali Rohár <pali@kernel.org> Reviewed-by: Marek Behún <marek.behun@nic.cz> Reviewed-by: Stefan Roese <sr@denx.de> Reviewed-by: Chris Packham <judge.packham@gmail.com> Tested-by: Chris Packham <judge.packham@gmail.com>
author: Pali Rohár <pali@kernel.org> 2021-07-23 12:14:21 +0300
committer: Stefan Roese <sr@denx.de> 2021-07-31 10:49:32 +0300
commit: 825a2ca023202f73a09660db7a49ac1109917ce8 (patch)
tree: bccace9fd8fb11ffe27079df26f825a266fe618f /tools
parent: b943eee915d79cbbaf7b4fc6c4c40dec4839380a (diff)
download: u-boot-825a2ca023202f73a09660db7a49ac1109917ce8.tar.xz
1 files changed, 5 insertions, 0 deletions
diff --git a/tools/kwboot.c b/tools/kwboot.c
index c0ac4ce19e..1d32c1b7ad 100644
--- a/tools/kwboot.c
+++ b/tools/kwboot.c
@@ -645,6 +645,11 @@ kwboot_img_patch_hdr(void *img, size_t size)
 	else
 		hdrsz = KWBHEADER_V1_SIZE(hdr);
 
+	if (size < hdrsz) {
+		errno = EINVAL;
+		goto out;
+	}
+
 	csum = kwboot_img_csum8(hdr, hdrsz) - hdr->checksum;
 	if (csum != hdr->checksum) {
 		errno = EINVAL;
author	Pali Rohár <pali@kernel.org>	2021-07-23 12:14:21 +0300
committer	Stefan Roese <sr@denx.de>	2021-07-31 10:49:32 +0300
commit	825a2ca023202f73a09660db7a49ac1109917ce8 (patch)
tree	bccace9fd8fb11ffe27079df26f825a266fe618f /tools
parent	b943eee915d79cbbaf7b4fc6c4c40dec4839380a (diff)
download	u-boot-825a2ca023202f73a09660db7a49ac1109917ce8.tar.xz