Skip to content
Commit 6f3c2d8a authored by Simon Glass's avatar Simon Glass Committed by Tom Rini
Browse files

image: Add an option to do a full check of the FIT 



Some strange modifications of the FIT can introduce security risks. Add an
option to check it thoroughly, using libfdt's fdt_check_full() function.

Enable this by default if signature verification is enabled.

CVE-2021-27097

Signed-off-by: default avatarSimon Glass <sjg@chromium.org>
Reported-by: default avatarBruce Monroe <bruce.monroe@intel.com>
Reported-by: default avatarArie Haenel <arie.haenel@intel.com>
Reported-by: default avatarJulien Lenoir <julien.lenoir@intel.com>
parent c5819701
Show whitespace changes
Inline Side-by-side
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment