Add a checker for signature boundary in verifier am: 54ea136fde am: 0a34b17c8b am: fb80b4f72d am: d3d5e54a45 am: 6ea9888d51 am: a055eb93c3 am: 15ca2a4763 am: ca50d7b66a am: 64f0de7a13 am: e4ec60e045 am: e0d3b0ceab
am: f127896675
Change-Id: I08b867c83803ad28cf524af3f81eec7dd8b9a121
This commit is contained in:
@@ -147,6 +147,12 @@ int verify_file(unsigned char* addr, size_t length,
|
|||||||
LOG(INFO) << "comment is " << comment_size << " bytes; signature is " << signature_start
|
LOG(INFO) << "comment is " << comment_size << " bytes; signature is " << signature_start
|
||||||
<< " bytes from end";
|
<< " bytes from end";
|
||||||
|
|
||||||
|
if (signature_start > comment_size) {
|
||||||
|
LOGE("signature start: %zu is larger than comment size: %zu\n", signature_start,
|
||||||
|
comment_size);
|
||||||
|
return VERIFY_FAILURE;
|
||||||
|
}
|
||||||
|
|
||||||
if (signature_start <= FOOTER_SIZE) {
|
if (signature_start <= FOOTER_SIZE) {
|
||||||
LOG(ERROR) << "Signature start is in the footer";
|
LOG(ERROR) << "Signature start is in the footer";
|
||||||
return VERIFY_FAILURE;
|
return VERIFY_FAILURE;
|
||||||
|
|||||||
Reference in New Issue
Block a user