[PATCH master 2/4] FIT: fix potential underflow of stack array
Ahmad Fatoum
a.fatoum at pengutronix.de
Mon Feb 16 00:41:37 PST 2026
Add a bounds check on depth before decrementing to prevent
stack underflow when a malformed FDT has END_NODE before BEGIN_NODE.
Reported-by: clang-analyzer 19.1.7
Co-Authored-By: Claude Opus 4.6 <noreply at anthropic.com>
Signed-off-by: Ahmad Fatoum <a.fatoum at pengutronix.de>
---
common/image-fit.c | 2 ++
1 file changed, 2 insertions(+)
diff --git a/common/image-fit.c b/common/image-fit.c
index 104a01b73658..a5d0a189f27c 100644
--- a/common/image-fit.c
+++ b/common/image-fit.c
@@ -153,6 +153,8 @@ static int fit_digest(struct fit_handle *handle, struct digest *digest,
case FDT_END_NODE:
dt_struct = dt_struct_advance(&f, dt_struct, FDT_TAGSIZE);
+ if (depth < 0)
+ return -ESPIPE;
include = want;
want = stack[depth--];
while (end > path && *--end != '/')
--
2.47.3
More information about the barebox
mailing list