[PATCH master 1/4] FIT: fix potential uninitialized read during fuzzing
Ahmad Fatoum
a.fatoum at pengutronix.de
Mon Feb 16 00:41:36 PST 2026
fit_find_last_unit should return -ENOENT when conf_node is NULL
instead of returning 0 without writing *out_unit, as that left
the caller's unit variable uninitialized.
Reported-by: GCC 14.2 -fanalyzer
Co-Authored-By: Claude Opus 4.6 <noreply at anthropic.com>
Signed-off-by: Ahmad Fatoum <a.fatoum at pengutronix.de>
---
common/image-fit.c | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/common/image-fit.c b/common/image-fit.c
index 26bd8e265b25..104a01b73658 100644
--- a/common/image-fit.c
+++ b/common/image-fit.c
@@ -860,7 +860,7 @@ static int fit_find_last_unit(struct fit_handle *handle,
const char *unit = NULL;
if (!conf_node)
- return 0;
+ return -ENOENT;
for_each_child_of_node(conf_node, child)
unit = child->name;
--
2.47.3
More information about the barebox
mailing list