commit d7cd91c378cb4711c3b111e1d1190973fee52570
author Imre Kis <imre.kis@arm.com> Fri Apr 11 17:05:38 2025 +0200
committer Imre Kis <imre.kis@arm.com> Mon Apr 14 16:28:29 2025 +0200
tree 33a22c8ee0cd3420aa421ba9b158dd4b01c765a7
parent b2d3c88e021108c5bb7d9f0f3973025a7a7f2d39

Validate size when parsing BootInfoContents::Value

Check if the content size is between 1 and 8.

Signed-off-by: Imre Kis <imre.kis@arm.com>
Change-Id: I4ef432928f7d8d96ac9e1b054c2a9ed46a6a3f1e

src/boot_info.rs

diff --git a/src/boot_info.rs b/src/boot_info.rs
index 74e6806..6cccd20 100644
--- a/src/boot_info.rs
+++ b/src/boot_info.rs
@@ -524,10 +524,17 @@
                     }
                 }
 
-                BootInfoContentsFormat::Value => BootInfoContents::Value {
-                    val: desc_raw.contents,
-                    len: desc_raw.size as usize,
-                },
+                BootInfoContentsFormat::Value => {
+                    let len = desc_raw.size as usize;
+                    if (1..=8).contains(&len) {
+                        BootInfoContents::Value {
+                            val: desc_raw.contents,
+                            len,
+                        }
+                    } else {
+                        return Some(Err(Error::MalformedDescriptor));
+                    }
+                }
             };
 
             return Some(Ok(BootInfo {