PawletOS/android_bootable_recovery
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Add a checker for signature boundary in verifier

Browse Source 
am: 54ea136fde

Change-Id: Ide2da96e322c6a913b7f2e950e43c4d11278338e
This commit is contained in:
Tianjie Xu
2017-01-18 22:22:16 +00:00
committed by android-build-merger
parent 1f814d7630 54ea136fde
commit 0a34b17c8b
1 changed files with 6 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
verifier.cpp
+6
View File
@@ -143,6 +143,12 @@ int verify_file(unsigned char* addr, size_t length,
LOGI("comment is %zu bytes; signature %zu bytes from end\n", LOGI("comment is %zu bytes; signature %zu bytes from end\n",
comment_size, signature_start); comment_size, signature_start);
if (signature_start > comment_size) {
LOGE("signature start: %zu is larger than comment size: %zu\n", signature_start,
comment_size);
return VERIFY_FAILURE;
}
if (signature_start <= FOOTER_SIZE) { if (signature_start <= FOOTER_SIZE) {
LOGE("Signature start is in the footer"); LOGE("Signature start is in the footer");
return VERIFY_FAILURE; return VERIFY_FAILURE;