disk: part_efi: range-check partition number Enhance get_partition_info_efi() to range-check the partition number. This prevents invalid partitions being accessed, and prevents access beyond the end of the gpt_pte[] array. Signed-off-by: Stephen Warren <swarren@nvidia.com>

commit: e47dbba7f09d666afc5ee3124ef7efbbb8a5da2d [log] [tgz]
author: Stephen Warren <swarren@nvidia.com> Fri Sep 21 09:50:58 2012 +0000
committer: Tom Rini <trini@ti.com> Tue Sep 25 14:58:51 2012 -0700
tree: a06620ac0682d9eaa1625d3ddf060e075a094dbd
parent: c87ff226d96e4ac79a59109f07a22b8247b90b81 [diff]
diff --git a/disk/part_efi.c b/disk/part_efi.c
index 02927a0..2962fd8 100644
--- a/disk/part_efi.c
+++ b/disk/part_efi.c

@@ -173,6 +173,13 @@
 		return -1;
 	}
 
+	if (part > le32_to_int(gpt_head->num_partition_entries) ||
+	    !is_pte_valid(&gpt_pte[part - 1])) {
+		printf("%s: *** ERROR: Invalid partition number %d ***\n",
+			__func__, part);
+		return -1;
+	}
+
 	/* The ulong casting limits the maximum disk size to 2 TB */
 	info->start = (ulong) le64_to_int(gpt_pte[part - 1].starting_lba);
 	/* The ending LBA is inclusive, to calculate size, add 1 to it */
commit	e47dbba7f09d666afc5ee3124ef7efbbb8a5da2d	[log] [tgz]
author	Stephen Warren <swarren@nvidia.com>	Fri Sep 21 09:50:58 2012 +0000
committer	Tom Rini <trini@ti.com>	Tue Sep 25 14:58:51 2012 -0700
tree	a06620ac0682d9eaa1625d3ddf060e075a094dbd
parent	c87ff226d96e4ac79a59109f07a22b8247b90b81 [diff]