[u-boot,1/2] tools: default_image: Verify header size

Message ID	20230129164411.9795-1-pali@kernel.org
State	Accepted
Commit	3f837b06b76d06189055a0fcdaee4d31c7758d9e
Delegated to:	Tom Rini
Headers	show Return-Path: <u-boot-bounces@lists.denx.de> From: =?utf-8?q?Pali_Roh=C3=A1r?= <pali@kernel.org> To: Simon Glass <sjg@chromium.org> Cc: u-boot@lists.denx.de Subject: [PATCH u-boot 1/2] tools: default_image: Verify header size Date: Sun, 29 Jan 2023 17:44:10 +0100 Message-Id: <20230129164411.9795-1-pali@kernel.org> MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Precedence: list Errors-To: u-boot-bounces@lists.denx.de Sender: "U-Boot" <u-boot-bounces@lists.denx.de>
Series	[u-boot,1/2] tools: default_image: Verify header size \| expand [u-boot,1/2] tools: default_image: Verify header size [u-boot,2/2] tools: default_image: Accept images with padding

Message ID

20230129164411.9795-1-pali@kernel.org

State

Accepted

Commit

3f837b06b76d06189055a0fcdaee4d31c7758d9e

Delegated to:

Tom Rini

Headers

show

Return-Path: <u-boot-bounces@lists.denx.de>
X-Original-To: incoming@patchwork.ozlabs.org
Delivered-To: patchwork-incoming@legolas.ozlabs.org
Authentication-Results: legolas.ozlabs.org;
 spf=pass (sender SPF authorized) smtp.mailfrom=lists.denx.de
 (client-ip=2a01:238:438b:c500:173d:9f52:ddab:ee01; helo=phobos.denx.de;
 envelope-from=u-boot-bounces@lists.denx.de; receiver=<UNKNOWN>)
Authentication-Results: legolas.ozlabs.org;
	dkim=pass (2048-bit key;
 unprotected) header.d=kernel.org header.i=@kernel.org header.a=rsa-sha256
 header.s=k20201202 header.b=eTvPlomb;
	dkim-atps=neutral
Received: from phobos.denx.de (phobos.denx.de
 [IPv6:2a01:238:438b:c500:173d:9f52:ddab:ee01])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
	 key-exchange X25519 server-signature ECDSA (P-384) server-digest SHA384)
	(No client certificate requested)
	by legolas.ozlabs.org (Postfix) with ESMTPS id 4P4cbq0LHyz1yhq
	for <incoming@patchwork.ozlabs.org>; Mon, 30 Jan 2023 03:44:39 +1100 (AEDT)
Received: from h2850616.stratoserver.net (localhost [IPv6:::1])
	by phobos.denx.de (Postfix) with ESMTP id 380DB8549C;
	Sun, 29 Jan 2023 17:44:36 +0100 (CET)
Authentication-Results: phobos.denx.de;
 dmarc=pass (p=none dis=none) header.from=kernel.org
Authentication-Results: phobos.denx.de;
 spf=pass smtp.mailfrom=u-boot-bounces@lists.denx.de
Authentication-Results: phobos.denx.de;
	dkim=pass (2048-bit key;
 unprotected) header.d=kernel.org header.i=@kernel.org header.b="eTvPlomb";
	dkim-atps=neutral
Received: by phobos.denx.de (Postfix, from userid 109)
 id 95925855A1; Sun, 29 Jan 2023 17:44:34 +0100 (CET)
X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on phobos.denx.de
X-Spam-Level: 
X-Spam-Status: No, score=-2.1 required=5.0 tests=BAYES_00,DKIMWL_WL_HIGH,
 DKIM_SIGNED,DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,SPF_HELO_NONE,
 SPF_PASS autolearn=ham autolearn_force=no version=3.4.2
Received: from ams.source.kernel.org (ams.source.kernel.org [145.40.68.75])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (No client certificate requested)
 by phobos.denx.de (Postfix) with ESMTPS id 4990F85351
 for <u-boot@lists.denx.de>; Sun, 29 Jan 2023 17:44:32 +0100 (CET)
Authentication-Results: phobos.denx.de;
 dmarc=pass (p=none dis=none) header.from=kernel.org
Authentication-Results: phobos.denx.de; spf=pass smtp.mailfrom=pali@kernel.org
Received: from smtp.kernel.org (relay.kernel.org [52.25.139.140])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (No client certificate requested)
 by ams.source.kernel.org (Postfix) with ESMTPS id CF18FB80D19;
 Sun, 29 Jan 2023 16:44:31 +0000 (UTC)
Received: by smtp.kernel.org (Postfix) with ESMTPSA id 5D2E9C433D2;
 Sun, 29 Jan 2023 16:44:30 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org;
 s=k20201202; t=1675010670;
 bh=LUJWeDKLWMuf6oVeMXDo1IBncCcZ8/kkrl45/cje5H4=;
 h=From:To:Cc:Subject:Date:From;
 b=eTvPlombebdyZJ6IDHWktYbhMm5smmYrp1+V043ZjzrRMjG9U4RQgKy2bIgPJZtqq
 nvNPFBcXg6tQUiUf5Rue9Mkpq6It0clb1UYtbP3RtLPKLnkjcujHNMLQypL36SMgoY
 dDOjqP078J/0vj1hFkB/cNoeTGebdHf0APNTB4a5B1Pm0EHeeIph/hK/4PSZQrVfdf
 NNhT8OpAJkjVQSA9qh2aC4elO84H94iJZspkwdf/b6wUc9jrMV472yA9/U5PBAsd1x
 cSRu/5CJoi9TzVVLndtoRTgekNUz6IQFdi/huqRYucQcd53Togeq2bs0YQc8uxQqyT
 etf1tZnBB4law==
Received: by pali.im (Postfix)
 id 597C2976; Sun, 29 Jan 2023 17:44:27 +0100 (CET)
From: =?utf-8?q?Pali_Roh=C3=A1r?= <pali@kernel.org>
To: Simon Glass <sjg@chromium.org>
Cc: u-boot@lists.denx.de
Subject: [PATCH u-boot 1/2] tools: default_image: Verify header size
Date: Sun, 29 Jan 2023 17:44:10 +0100
Message-Id: <20230129164411.9795-1-pali@kernel.org>
X-Mailer: git-send-email 2.20.1
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
X-BeenThere: u-boot@lists.denx.de
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: U-Boot discussion <u-boot.lists.denx.de>
List-Unsubscribe: <https://lists.denx.de/options/u-boot>,
 <mailto:u-boot-request@lists.denx.de?subject=unsubscribe>
List-Archive: <https://lists.denx.de/pipermail/u-boot/>
List-Post: <mailto:u-boot@lists.denx.de>
List-Help: <mailto:u-boot-request@lists.denx.de?subject=help>
List-Subscribe: <https://lists.denx.de/listinfo/u-boot>,
 <mailto:u-boot-request@lists.denx.de?subject=subscribe>
Errors-To: u-boot-bounces@lists.denx.de
Sender: "U-Boot" <u-boot-bounces@lists.denx.de>
X-Virus-Scanned: clamav-milter 0.103.6 at phobos.denx.de
X-Virus-Status: Clean

Series

[u-boot,1/2] tools: default_image: Verify header size | expand

Before reading image header, verify that image size is at least size of the image header. Signed-off-by: Pali Rohár <pali@kernel.org> --- tools/default_image.c | 6 ++++++ 1 file changed, 6 insertions(+)

Comments

Simon Glass Jan. 30, 2023, 3:50 p.m. UTC | #1

On Sun, 29 Jan 2023 at 09:44, Pali Rohár <pali@kernel.org> wrote:
>
> Before reading image header, verify that image size is at least size of
> the image header.
>
> Signed-off-by: Pali Rohár <pali@kernel.org>
> ---
>  tools/default_image.c | 6 ++++++
>  1 file changed, 6 insertions(+)

Reviewed-by: Simon Glass <sjg@chromium.org>

Tom Rini Feb. 7, 2023, 4:52 p.m. UTC | #2

On Sun, Jan 29, 2023 at 05:44:10PM +0100, Pali Rohár wrote:

> Before reading image header, verify that image size is at least size of
> the image header.
> 
> Signed-off-by: Pali Rohár <pali@kernel.org>
> Reviewed-by: Simon Glass <sjg@chromium.org>

Applied to u-boot/master, thanks!

diff --git a/tools/default_image.c b/tools/default_image.c
index 4a067e65862e..4aa9a33241cb 100644
--- a/tools/default_image.c
+++ b/tools/default_image.c
@@ -49,6 +49,12 @@  static int image_verify_header(unsigned char *ptr, int image_size,
 	struct legacy_img_hdr header;
 	struct legacy_img_hdr *hdr = &header;
 
+	if (image_size < sizeof(struct legacy_img_hdr)) {
+		debug("%s: Bad image size: \"%s\" is no valid image\n",
+		      params->cmdname, params->imagefile);
+		return -FDT_ERR_BADSTRUCTURE;
+	}
+
 	/*
 	 * create copy of header so that we can blank out the
 	 * checksum field for checking - this can't be done

[u-boot,1/2] tools: default_image: Verify header size

Commit Message

Comments

Patch