image: Adjust the workings of fit_check_format()

At present this function does not accept a size for the FIT. This means that it must be read from the FIT itself, introducing potential security risk. Update the function to include a size parameter, which can be invalid, in which case fit_check_format() calculates it. For now no callers pass the size, but this can be updated later. Also adjust the return value to an error code so that all the different types of problems can be distinguished by the user. Signed-off-by: Simon Glass <sjg@chromium.org> Reported-by: Bruce Monroe <bruce.monroe@intel.com> Reported-by: Arie Haenel <arie.haenel@intel.com> Reported-by: Julien Lenoir <julien.lenoir@intel.com>
author: Simon Glass <sjg@chromium.org> 2021-02-15 17:08:09 -0700
committer: Tom Rini <trini@konsulko.com> 2021-02-15 22:31:52 -0500
commit: c5819701a3de61e2ba2ef7ad0b616565b32305e5 (patch)
tree: 2d78afc29b784d5477102dabfc94215781126ae0 /cmd/bootefi.c
parent: d5f3aadacbc63df3b690d6fd9f0aa3f575b43356 (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/cmd/bootefi.c b/cmd/bootefi.c
index 1583a96be1..271b385ede 100644
--- a/cmd/bootefi.c
+++ b/cmd/bootefi.c
@@ -73,7 +73,7 @@ void efi_set_bootdev(const char *dev, const char *devnr, const char *path,
 	/* Remember only PE-COFF and FIT images */
 	if (efi_check_pe(buffer, buffer_size, NULL) != EFI_SUCCESS) {
 #ifdef CONFIG_FIT
-		if (!fit_check_format(buffer))
+		if (fit_check_format(buffer, IMAGE_SIZE_INVAL))
 			return;
 		/*
 		 * FIT images of type EFI_OS are started via command bootm.
author	Simon Glass <sjg@chromium.org>	2021-02-15 17:08:09 -0700
committer	Tom Rini <trini@konsulko.com>	2021-02-15 22:31:52 -0500
commit	c5819701a3de61e2ba2ef7ad0b616565b32305e5 (patch)
tree	2d78afc29b784d5477102dabfc94215781126ae0 /cmd/bootefi.c
parent	d5f3aadacbc63df3b690d6fd9f0aa3f575b43356 (diff)